Export limit exceeded: 339475 CVEs match your query. Please refine your search to export 10,000 CVEs or fewer.
Export limit exceeded: 29880 CVEs match your query. Please refine your search to export 10,000 CVEs or fewer.
Search
Search Results (29880 CVEs found)
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2005-0854 | 1 Betaparticle | 1 Betaparticle Blog | 2025-04-03 | N/A |
| betaparticle blog (bp blog), posisbly before version 4, allows remote attackers to bypass authentication and (1) upload files via a direct request to upload.asp or (2) delete files via a direct request to myFiles.asp. | ||||
| CVE-2005-0852 | 1 Microsoft | 1 Windows Xp | 2025-04-03 | N/A |
| Microsoft Windows XP SP1 allows local users to cause a denial of service (system crash) via an empty datagram to a raw IP over IP socket (IP protocol 4), as originally demonstrated using code in Python 2.3. | ||||
| CVE-2005-0858 | 1 Coolforum | 1 Coolforum | 2025-04-03 | N/A |
| Multiple SQL injection vulnerabilities in CoolForum 0.8 and earlier allow remote attackers to execute arbitrary SQL commands via (1) the pseudo parameter to entete.php or (2) the login parameter to register.php. | ||||
| CVE-2005-0860 | 1 The Rusted Gate | 1 Trg News | 2025-04-03 | N/A |
| PHP remote file inclusion vulnerability in TRG News Script 3.0 allows remote attackers to execute arbitrary PHP code via the dir parameter to (1) article.php, (2) authorall.php, (3) comment.php, (4) display.php, or (5) displayall.php. | ||||
| CVE-2005-0866 | 1 Cdrtools | 1 Cdrecord | 2025-04-03 | N/A |
| cdrecord before 4:2.0, when DEBUG is enabled, allows local users to overwrite arbitrary files via a symlink attack on temporary files. | ||||
| CVE-2005-0867 | 2 Linux, Redhat | 2 Linux Kernel, Enterprise Linux | 2025-04-03 | N/A |
| Integer overflow in Linux kernel 2.6 allows local users to overwrite kernel memory by writing to a sysfs file. | ||||
| CVE-2005-0869 | 1 Phpsysinfo | 1 Phpsysinfo | 2025-04-03 | N/A |
| phpSysInfo 2.3 allows remote attackers to obtain sensitive information via a direct request to (1) class.OpenBSD.inc.php, (2) class.NetBSD.inc.php, (3) class.FreeBSD.inc.php, (4) class.Darwin.inc.php, (5) XPath.class.php, (6) system_header.php, or (7) system_footer.php, which reveal the path in a PHP error message. | ||||
| CVE-2005-0870 | 1 Phpsysinfo | 1 Phpsysinfo | 2025-04-03 | N/A |
| Multiple cross-site scripting (XSS) vulnerabilities in phpSysInfo 2.3, when register_globals is enabled, allow remote attackers to inject arbitrary web script or HTML via the (1) sensor_program parameter to index.php, (2) text[language], (3) text[template], or (4) hide_picklist parameter to system_footer.php. | ||||
| CVE-2005-0874 | 1 Cerulean Studios | 1 Trillian | 2025-04-03 | N/A |
| Multiple buffer overflows in the (1) AIM, (2) MSN, (3) RSS, and other plug-ins for Trillian 2.0 allow remote web servers to cause a denial of service (application crash) via a long string in an HTTP 1.1 response header. | ||||
| CVE-2005-0876 | 1 Dnsmasq | 1 Dnsmasq | 2025-04-03 | N/A |
| Off-by-one buffer overflow in Dnsmasq before 2.21 may allow attackers to execute arbitrary code via the DHCP lease file. | ||||
| CVE-2005-0875 | 1 Cerulean Studios | 1 Trillian | 2025-04-03 | N/A |
| Multiple buffer overflows in the Yahoo plug-in for Trillian 2.0, 3.0, and 3.1 allow remote web servers to cause a denial of service (application crash) via a long string in an HTTP 1.1 response header. | ||||
| CVE-2005-0878 | 1 Mercuryboard | 1 Mercuryboard Message Board | 2025-04-03 | N/A |
| Cross-site scripting (XSS) vulnerability in MercuryBoard before 1.1.3 allows remote attackers to inject arbitrary web script or HTML via the title field of a PM (private message). | ||||
| CVE-2005-0879 | 1 Vortex Portal | 1 Vortex Portal | 2025-04-03 | N/A |
| PHP remote file include vulnerability in (1) content.php and (2) index.php for Vortex Portal allows remote attackers to execute arbitrary PHP code via a URL in the act parameter. | ||||
| CVE-2005-0884 | 1 Digitalhive | 1 Digitalhive | 2025-04-03 | N/A |
| DigitalHive 2.0 allows remote attackers to re-install the product by directly accessing the install script. | ||||
| CVE-2005-0885 | 1 Xmb Forum | 1 Xmb | 2025-04-03 | N/A |
| Multiple cross-site scripting (XSS) vulnerabilities in XMB Forum 1.9.1 allow remote attackers to inject arbitrary web script or HTML via the (1) Mood or (2) "Send To" fields. | ||||
| CVE-2005-0886 | 1 Invision Power Services | 1 Invision Board | 2025-04-03 | N/A |
| Cross-site scripting (XSS) vulnerability in Invision Power Board 2.0.2 and earlier allows remote attackers to inject arbitrary web script or HTML via an HTTP POST request. | ||||
| CVE-2005-0893 | 1 Smail | 1 Smail | 2025-04-03 | N/A |
| modes.c in smail 3.2.0.120 implements signal handlers with certain unsafe library calls, which may allow attackers to execute arbitrary code via signal handler race conditions, possibly using xmalloc. | ||||
| CVE-2005-0894 | 1 Openmosixview | 1 Openmosixview | 2025-04-03 | N/A |
| OpenmosixCollector and OpenMosixView in OpenMosixView 1.5 allow local users to overwrite or delete arbitrary files via a symlink attack on (1) temporary files in the openmosixcollector directory or (2) nodes.tmp. | ||||
| CVE-2005-0895 | 1 Netcomm | 1 Nb1300 | 2025-04-03 | N/A |
| Netcomm 1300NB DSL Modem allows remote attackers to cause a denial of service (device hang) via a large number of ping packets. | ||||
| CVE-2005-0900 | 1 Nukebookmarks | 1 Nukebookmarks | 2025-04-03 | N/A |
| marks.php in NukeBookmarks 0.6 for PHP-Nuke allows remote attackers to obtain sensitive information via an invalid (1) file or (2) category parameter, which reveal the path in an error message. | ||||