Export limit exceeded: 29948 CVEs match your query. Please refine your search to export 10,000 CVEs or fewer.

Search

Search Results (29948 CVEs found)

CVE Vendors Products Updated CVSS v3.1
CVE-2005-4832 1 Oracle 1 Oracle10g 2026-04-16 N/A
SQL injection vulnerability in the Oracle Database Server 10g allows remote authenticated users to execute arbitrary SQL commands with elevated privileges via the SUBSCRIPTION_NAME parameter in the (1) SYS.DBMS_CDC_SUBSCRIBE and (2) SYS.DBMS_CDC_ISUBSCRIBE packages, a different vector than CVE-2005-1197.
CVE-2006-3976 1 Broadcom 1 Etrust Antivirus Webscan 2026-04-16 N/A
Unspecified vulnerability in CA eTrust Antivirus WebScan before 1.1.0.1048 allows remote attackers to install arbitrary files.
CVE-2005-4827 2 Canon, Microsoft 3 Network Camera Server Vb101, Ie, Internet Explorer 2026-04-16 N/A
Internet Explorer 6.0, and possibly other versions, allows remote attackers to bypass the same origin security policy and make requests outside of the intended domain by calling open on an XMLHttpRequest object (Microsoft.XMLHTTP) and using tab, newline, and carriage return characters within the first argument (method name), which is supported by some proxy servers that convert tabs to spaces. NOTE: this issue can be leveraged to conduct referer spoofing, HTTP Request Smuggling, and other attacks.
CVE-2005-4821 1 Neocrome 1 Land Down Under 2026-04-16 N/A
Multiple SQL injection vulnerabilities in Land Down Under (LDU) v801 and earlier allow remote attackers to execute arbitrary SQL commands via parameters including (1) the m parameter in auth.php, (2) the f parameter in events.php, or (3) the e parameter in plug.php.
CVE-2005-4817 1 Tmsnc 1 Tmsnc 2026-04-16 N/A
Format string vulnerability in ui.c in Textbased MSN Client (TMSNC) before 0.2.5 allows attackers to cause a denial of service and possibly execute arbitrary code via unknown attack vectors that cause format strings to be injected into the wprintw function.
CVE-2005-4813 1 Businessobjects 4 Crystal Enterprise Xi, Crystal Reports Server Xi, Crystal Reports Xi and 1 more 2026-04-16 N/A
Unspecified vulnerability in Report Application Server (Crystalras.exe) before 11.0.0.1370, as used in Business Objects Crystal Reports XI, Crystal Reports Server XI, and BusinessObjects Enterprise XI, allows remote attackers to cause a denial of service (application hang) via certain network traffic, possibly involving multiple simultaneous TCP connections.
CVE-2005-4812 1 Sisco 4 Ax-s4 Iccp, Ax-s4 Mms, Iccp Toolkit For Mms-ease and 1 more 2026-04-16 N/A
The SISCO OSI stack for Windows, as used by MMS-EASE 7.10 and earlier, AX-S4 MMS 5.01 and earlier, AX-S4 ICCP 3.0103 and earlier, and the ICCP Toolkit for MMS-EASE 4.10 and earlier, allows remote attackers to cause a denial of service (process crash) via certain network traffic, as demonstrated using a Nessus scan.
CVE-2005-4801 1 Yapig 1 Yapig 2026-04-16 N/A
Multiple cross-site request forgery (CSRF) vulnerabilities in Yet Another PHP Image Gallery (YaPIG) 0.95b and earlier allow remote attackers to perform unauthorized actions as a logged-in user, as demonstrated by tricking the administrator to access a web page that performs a mod_info action in modify_gallery.php.
CVE-2005-4799 1 Yapig 1 Yapig 2026-04-16 N/A
Multiple cross-site scripting (XSS) vulnerabilities in Yet Another PHP Image Gallery (YaPIG) 0.95b and earlier allow remote attackers to inject arbitrary web script or HTML via (1) the Homepage field (aka the Website field) in an "image-related comment" and (2) the img_size field in view.php. NOTE: due to lack of details from the researcher, it is not clear whether the comment vector overlaps CVE-2005-1886.
CVE-2001-0409 1 Vim Development Group 1 Vim 2026-04-16 N/A
vim (aka gvim) allows local users to modify files being edited by other users via a symlink attack on the backup and swap files, when the victim is editing the file in a world writable directory.
CVE-1999-0404 1 Smartmax Software 1 Mailmax 2026-04-16 N/A
Buffer overflow in the Mail-Max SMTP server for Windows systems allows remote command execution.
CVE-1999-0367 1 Netbsd 1 Netbsd 2026-04-16 N/A
NetBSD netstat command allows local users to access kernel memory.
CVE-1999-0294 1 Microsoft 1 Wins 2026-04-16 N/A
All records in a WINS database can be deleted through SNMP for a denial of service.
CVE-1999-0285 1 Microsoft 1 Windows Nt 2026-04-16 N/A
Denial of service in telnet from the Windows NT Resource Kit, by opening then immediately closing a connection.
CVE-1999-0268 1 Metainfo 1 Metaweb 2026-04-16 N/A
MetaInfo MetaWeb web server allows users to upload, execute, and read scripts.
CVE-1999-0251 1 Talkd 1 Talkd 2026-04-16 N/A
Denial of service in talk program allows remote attackers to disrupt a user's display.
CVE-1999-0218 1 Livingston Portmaster 1 Portmaster 2026-04-16 N/A
Livingston portmaster machines could be rebooted via a series of commands.
CVE-1999-0215 1 Sgi 1 Irix 2026-04-16 N/A
Routed allows attackers to append data to files.
CVE-1999-0195 2 Linux, Sgi 2 Linux Kernel, Irix 2026-04-16 N/A
Denial of service in RPC portmapper allows attackers to register or unregister RPC services or spoof RPC services using a spoofed source IP address such as 127.0.0.1.
CVE-1999-0182 1 Samba 1 Samba 2026-04-16 N/A
Samba has a buffer overflow which allows a remote attacker to obtain root access by specifying a long password.