Export limit exceeded: 29880 CVEs match your query. Please refine your search to export 10,000 CVEs or fewer.
Search
Search Results (29880 CVEs found)
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2002-0299 | 1 Cnet | 1 Catchup | 2025-04-03 | N/A |
| CNet CatchUp before 1.3.1 allows attackers to execute arbitrary code via a .RVP file that creates a file with an arbitrary extension (such as .BAT), which is executed during a scan. | ||||
| CVE-2002-0300 | 1 Gnujsp | 1 Gnujsp | 2025-04-03 | N/A |
| gnujsp 1.0.0 and 1.0.1 allows remote attackers to list directories, read source code of certain scripts, and bypass access restrictions by directly requesting the target file from the gnujsp servlet, which does not work around a limitation of JServ and does not process the requested file. | ||||
| CVE-2002-0303 | 1 Novell | 1 Groupwise | 2025-04-03 | N/A |
| GroupWise 6, when using LDAP authentication and when Post Office has a blank username and password, allows attackers to gain privileges of other users by logging in without a password. | ||||
| CVE-2002-0304 | 1 Summit Computer Networks | 1 Lil Http Server | 2025-04-03 | N/A |
| Lil HTTP Server 2.1 allows remote attackers to read password-protected files via a /./ in the HTTP request. | ||||
| CVE-2002-0305 | 1 Zero One Tech | 1 P100s | 2025-04-03 | N/A |
| Zero One Tech (ZOT) P100s print server does not properly disable the SNMP service or change the default password, which could leave the server open to attack without the administrator's knowledge. | ||||
| CVE-2002-0306 | 1 Avengers News System | 1 Avengers News System | 2025-04-03 | N/A |
| ans.pl in Avenger's News System (ANS) 2.11 and earlier allows remote attackers to execute arbitrary commands via shell metacharacters in the p (plugin) parameter. | ||||
| CVE-2002-0308 | 1 Stefan Holmberg | 1 Admentor | 2025-04-03 | N/A |
| admin.asp in AdMentor 2.11 allows remote attackers to bypass authentication and gain privileges via a SQL injection attack on the Login and Password arguments. | ||||
| CVE-2002-0316 | 1 Xmb Software | 1 Xmb Forum | 2025-04-03 | N/A |
| Cross-site scripting vulnerability in eXtreme message board (XMB) 1.6x and earlier allows remote attackers to execute script as other XMB users by inserting the script into an IMG tag. | ||||
| CVE-2002-0312 | 1 Essen | 1 Essentia Web Server | 2025-04-03 | N/A |
| Directory traversal vulnerability in Essentia Web Server 2.1 allows remote attackers to read arbitrary files via a .. (dot dot) in a URL. | ||||
| CVE-2002-0317 | 1 Gator | 1 Gator | 2025-04-03 | N/A |
| Gator ActiveX component (IEGator.dll) 3.0.6.1 allows remote web sites to install arbitrary software by specifying a Trojan Gator installation file (setup.ex_) in the src parameter. | ||||
| CVE-2002-0313 | 1 Essen | 1 Essentia Web Server | 2025-04-03 | N/A |
| Buffer overflow in Essentia Web Server 2.1 allows remote attackers to cause a denial of service, and possibly execute arbitrary code, via a long URL. | ||||
| CVE-2002-0322 | 1 Yahoo | 1 Messenger | 2025-04-03 | N/A |
| Yahoo! Messenger 4.0 sends user passwords in cleartext, which could allow remote attackers to gain privileges of other users via sniffing. | ||||
| CVE-2002-0323 | 1 Nombas | 1 Scriptease Webserver | 2025-04-03 | N/A |
| comment2.jse in ScriptEase:WebServer allows remote attackers to read arbitrary files by specifying the target file as an argument in the URL. | ||||
| CVE-2002-0325 | 1 Working Resources Inc. | 1 Badblue | 2025-04-03 | N/A |
| Directory traversal vulnerability in BadBlue before 1.6.1 allows remote attackers to read arbitrary files via a ... (modified dot dot) in the URL. | ||||
| CVE-2002-0326 | 1 Working Resources Inc. | 1 Badblue | 2025-04-03 | N/A |
| Cross-site scripting vulnerability in BadBlue before 1.6.1 beta allows remote attackers to execute arbitrary script and possibly additional commands via a URL that contains Javascript. | ||||
| CVE-2002-0331 | 1 Alcatech Gmbh | 1 Bpm Studio Pro | 2025-04-03 | N/A |
| Directory traversal vulnerability in the HTTP server for BPM Studio Pro 4.2 allows remote attackers to read arbitrary files via a .. (dot dot) in the HTTP request. | ||||
| CVE-2002-0333 | 1 Xtell | 1 Xtell | 2025-04-03 | N/A |
| Directory traversal vulnerability in xtell (xtelld) 1.91.1 and earlier, and 2.x before 2.7, allows remote attackers to read files with short names, and local users to read more files using a symlink with a short name, via a .. in the TTY argument. | ||||
| CVE-2002-0334 | 1 Xtell | 1 Xtell | 2025-04-03 | N/A |
| xtell (xtelld) 1.91.1 and earlier, and 2.x before 2.7, allows local users to modify files via a symlink attack on the .xtell-log file. | ||||
| CVE-2002-0335 | 1 Galacticomm Technologies | 2 Worldgroup, Worldgroup Lite Personal Server | 2025-04-03 | N/A |
| Buffer overflow in Galacticomm Worldgroup web server 3.20 and earlier allows remote attackers to cause a denial of service, and possibly execute arbitrary code, via a long HTTP GET request. | ||||
| CVE-2002-0338 | 1 Ritlabs | 1 The Bat | 2025-04-03 | N/A |
| The Bat! 1.53d and 1.54beta, and possibly other versions, allows remote attackers to cause a denial of service (crash) via an attachment whose name includes an MS-DOS device name. | ||||