Total
345544 CVE
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2006-0420 | 1 Bea | 1 Weblogic Server | 2026-04-16 | N/A |
| BEA WebLogic Server and WebLogic Express 8.1 through SP4 and 7.0 through SP6 does not properly handle when servlets use relative forwarding, which allows remote attackers to cause a denial of service (slowdown) via unknown attack vectors that cause "looping stack overflow errors." | ||||
| CVE-2005-1020 | 1 Cisco | 1 Ios | 2026-04-16 | N/A |
| Secure Shell (SSH) 2 in Cisco IOS 12.0 through 12.3 allows remote attackers to cause a denial of service (device reload) (1) via a username that contains a domain name when using a TACACS+ server to authenticate, (2) when a new SSH session is in the login phase and a currently logged in user issues a send command, or (3) when IOS is logging messages and an SSH session is terminated while the server is sending data. | ||||
| CVE-2005-4259 | 1 Aspbb | 1 Aspbb | 2026-04-16 | N/A |
| Multiple SQL injection vulnerabilities in ASPBB 0.4 allow remote attackers to execute arbitrary SQL commands via the (1) TID parameter in topic.asp, (2) FORUM_ID parameter in forum.asp, and (3) PROFILE_ID parameter in profile.asp. NOTE: the provenance of this issue is unknown; the details are obtained solely from the BID. | ||||
| CVE-1999-0166 | 1 Sun | 1 Nfs | 2026-04-16 | N/A |
| NFS allows users to use a "cd .." command to access other directories besides the exported file system. | ||||
| CVE-1999-0167 | 1 Sun | 1 Sunos | 2026-04-16 | N/A |
| In SunOS, NFS file handles could be guessed, giving unauthorized access to the exported file system. | ||||
| CVE-1999-0175 | 1 Novell | 1 Web Server | 2026-04-16 | N/A |
| The convert.bas program in the Novell web server allows a remote attackers to read any file on the system that is internally accessible by the web server. | ||||
| CVE-1999-0176 | 1 Webgais Development Team | 1 Webgais | 2026-04-16 | N/A |
| The Webgais program allows a remote user to execute arbitrary commands. | ||||
| CVE-2005-4260 | 1 Francisco Burzi | 1 Php-nuke | 2026-04-16 | N/A |
| Interpretation conflict in includes/mainfile.php in PHP-Nuke 7.9 and later allows remote attackers to perform cross-site scripting (XSS) attacks by replacing the ">" in the tag with a "<", which bypasses the regular expressions that sanitize the data, but is automatically corrected by many web browsers. NOTE: it could be argued that this vulnerability is due to a design limitation of many web browsers; if so, then this should not be treated as a vulnerability in PHP-Nuke. | ||||
| CVE-1999-0182 | 1 Samba | 1 Samba | 2026-04-16 | N/A |
| Samba has a buffer overflow which allows a remote attacker to obtain root access by specifying a long password. | ||||
| CVE-2005-4263 | 1 Envolution | 1 Envolution | 2026-04-16 | N/A |
| SQL injection vulnerability in the News module in Envolution allows remote attackers to execute arbitrary SQL commands via the (1) startrow and (2) catid parameter. | ||||
| CVE-1999-0195 | 2 Linux, Sgi | 2 Linux Kernel, Irix | 2026-04-16 | N/A |
| Denial of service in RPC portmapper allows attackers to register or unregister RPC services or spoof RPC services using a spoofed source IP address such as 127.0.0.1. | ||||
| CVE-2006-0423 | 1 Oracle | 1 Weblogic Portal | 2026-04-16 | N/A |
| BEA WebLogic Portal 8.1 through SP3 stores the password for the RDBMS Authentication provider in cleartext in the config.xml file, which allows attackers to gain privileges. | ||||
| CVE-2005-1067 | 1 Access User Class | 1 Access User Class | 2026-04-16 | N/A |
| Vulnerability in Access_user Class before 1.75 allows local users to gain access as other users via the password "new". | ||||
| CVE-1999-0228 | 1 Microsoft | 1 Windows Nt | 2026-04-16 | N/A |
| Denial of service in RPCSS.EXE program (RPC Locator) in Windows NT. | ||||
| CVE-2006-0424 | 1 Bea | 1 Weblogic Server | 2026-04-16 | N/A |
| BEA WebLogic Server and WebLogic Express 8.1 through SP4, 7.0 through SP6, and 6.1 through SP7 allows remote authenticated guest users to read the server log and obtain sensitive configuration information. | ||||
| CVE-1999-0235 | 1 Ncsa | 1 Ncsa Web Server | 2026-04-16 | N/A |
| Buffer overflow in NCSA WebServer (1.4.1 and below) gives remote access. | ||||
| CVE-2002-0863 | 1 Microsoft | 5 .net Windows Server, Windows 2000, Windows 2000 Terminal Services and 2 more | 2026-04-16 | N/A |
| Remote Data Protocol (RDP) version 5.0 in Microsoft Windows 2000 and RDP 5.1 in Windows XP does not encrypt the checksums of plaintext session data, which could allow a remote attacker to determine the contents of encrypted sessions via sniffing, aka "Weak Encryption in RDP Protocol." | ||||
| CVE-2005-1091 | 1 Maxthon | 1 Maxthon | 2026-04-16 | N/A |
| Maxthon 1.2.0 and 1.2.1 allows remote attackers to bypass the security ID and use restricted plugin API functions via script that includes the max.src file into the source page. | ||||
| CVE-1999-0237 | 1 Webcom | 1 Cgi Guestbook | 2026-04-16 | N/A |
| Remote execution of arbitrary commands through Guestbook CGI program. | ||||
| CVE-2005-1106 | 1 Apple | 1 Quicktime Pictureviewer | 2026-04-16 | N/A |
| PictureViewer in QuickTime for Windows 6.5.2 allows remote attackers to cause a denial of service (application crash) via a GIF image with the maximum depth start value, possibly triggering an integer overflow. | ||||