Search Results (366877 CVEs found)

CVE Vendors Products Updated CVSS v3.1
CVE-2005-0884 1 Digitalhive 1 Digitalhive 2026-04-16 N/A
DigitalHive 2.0 allows remote attackers to re-install the product by directly accessing the install script.
CVE-2005-0885 1 Xmb Forum 1 Xmb 2026-04-16 N/A
Multiple cross-site scripting (XSS) vulnerabilities in XMB Forum 1.9.1 allow remote attackers to inject arbitrary web script or HTML via the (1) Mood or (2) "Send To" fields.
CVE-2005-0886 1 Invision Power Services 1 Invision Board 2026-04-16 N/A
Cross-site scripting (XSS) vulnerability in Invision Power Board 2.0.2 and earlier allows remote attackers to inject arbitrary web script or HTML via an HTTP POST request.
CVE-2005-0887 1 Michael Dean 1 Double Choco Latte 2026-04-16 N/A
Eval injection vulnerability in Double Choco Latte before 0.9.4.3 allows remote attackers to execute arbitrary PHP code via the menuAction variable in (1) functions.inc.php or (2) main.php, which causes code to be injected into an eval statement.
CVE-2005-0888 1 Michael Dean 1 Double Choco Latte 2026-04-16 N/A
Multiple cross-site scripting (XSS) vulnerabilities in functions.inc.php for Double Choco Latte 0.9.4.3 allow remote attackers to inject arbitrary web script or HTML via the (1) class or (2) method name.
CVE-2005-0889 1 Dream4 1 Koobi Cms 2026-04-16 N/A
Cross-site scripting (XSS) vulnerability in index.php for Dream4 Koobi CMS 4.2.3 allows remote attackers to inject arbitrary web script or HTML via the area parameter.
CVE-2005-0890 1 Dream4 1 Koobi Cms 2026-04-16 N/A
SQL injection vulnerability in Dream4 Koobi CMS 4.2.3 allows remote attackers to execute arbitrary SQL commands via the area parameter.
CVE-2005-0891 2 Gnome, Redhat 2 Gtk, Enterprise Linux 2026-04-16 7.5 High
Double free vulnerability in gtk 2 (gtk2) before 2.2.4 allows remote attackers to cause a denial of service (crash) via a crafted BMP image.
CVE-2005-0892 1 Smail 1 Smail 2026-04-16 N/A
Buffer overflow in smail 3.2.0.120 allows remote attackers or local users to execute arbitrary code via a long string in the MAIL FROM command and possibly other SMTP commands.
CVE-2005-0893 1 Smail 1 Smail 2026-04-16 N/A
modes.c in smail 3.2.0.120 implements signal handlers with certain unsafe library calls, which may allow attackers to execute arbitrary code via signal handler race conditions, possibly using xmalloc.
CVE-2005-0894 1 Openmosixview 1 Openmosixview 2026-04-16 N/A
OpenmosixCollector and OpenMosixView in OpenMosixView 1.5 allow local users to overwrite or delete arbitrary files via a symlink attack on (1) temporary files in the openmosixcollector directory or (2) nodes.tmp.
CVE-2005-0895 1 Netcomm 1 Nb1300 2026-04-16 N/A
Netcomm 1300NB DSL Modem allows remote attackers to cause a denial of service (device hang) via a large number of ping packets.
CVE-2005-0896 1 Accomplishtechnology 1 Phpmydirectory 2026-04-16 N/A
Multiple cross-site scripting (XSS) vulnerabilities in review.php in phpMyDirectory 10.1.3-rel allow remote attackers to inject arbitrary web script or HTML via the (1) subcat, (2) page, or (3) subsubcat parameter.
CVE-2005-0897 1 Magicscripts 1 E-store Kit-2 2026-04-16 N/A
PHP remote file inclusion vulnerability in catalog.php in E-Store Kit-2 PayPal Edition allows remote attackers to execute arbitrary PHP code by modifying the menu and main parameters to reference a URL on a remote web server that contains the code.
CVE-2005-0898 1 Magicscripts 1 E-store Kit-2 2026-04-16 N/A
Cross-site scripting (XSS) vulnerability in downloadform.php in E-Store Kit-2 PayPal Edition allows remote attackers to inject arbitrary web script or HTML via the txn_id parameter.
CVE-2005-0899 1 Ibm 1 Os 400 2026-04-16 N/A
AS/400 running OS400 5.2 installs and enables LDAP by default, which allows remote authenticated users to obtain OS/400 user profiles by performing a search.
CVE-2005-0900 1 Nukebookmarks 1 Nukebookmarks 2026-04-16 N/A
marks.php in NukeBookmarks 0.6 for PHP-Nuke allows remote attackers to obtain sensitive information via an invalid (1) file or (2) category parameter, which reveal the path in an error message.
CVE-2005-0901 1 Nukebookmarks 1 Nukebookmarks 2026-04-16 N/A
Multiple cross-site scripting (XSS) vulnerabilities in NukeBookmarks 0.6 for PHP-Nuke allow remote attackers to inject arbitrary web script or HTML via the (1) catname, (2) markname, (3) comment, or (4) category parameter.
CVE-2005-0902 1 Nukebookmarks 1 Nukebookmarks 2026-04-16 N/A
SQL injection vulnerability in marks.php in NukeBookmarks 0.6 for PHP-Nuke allows remote attackers to execute arbitrary SQL commands via the category parameter.
CVE-2005-0903 1 Apple 1 Quicktime Pictureviewer 2026-04-16 N/A
Buffer overflow in QuickTime PictureViewer 6.5.1 allows remote attackers to cause a denial of service (application crash) via a JPEG file with crafted Huffman Table (marker DHT) data.