Total
254124 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2000-1212 | 1 Zope | 1 Zope | 2024-02-04 | 5.0 MEDIUM | N/A |
| Zope 2.2.0 through 2.2.4 does not properly protect a data updating method on Image and File objects, which allows attackers with DTML editing privileges to modify the raw data of these objects. | |||||
| CVE-2004-1855 | 1 Mythic Entertainment | 1 Dark Age Of Camelot | 2024-02-04 | 5.0 MEDIUM | N/A |
| Dark Age of Camelot before 1.68 live patch does not sign the RSA public key, which could allow remote malicious servers to gain sensitive information via a man-in-the-middle attack. | |||||
| CVE-2000-0174 | 1 Sun | 1 Staroffice | 2024-02-04 | 5.0 MEDIUM | N/A |
| StarOffice StarScheduler web server allows remote attackers to read arbitrary files via a .. (dot dot) attack. | |||||
| CVE-2002-0731 | 1 Vqsoft | 1 Vqserver | 2024-02-04 | 7.5 HIGH | N/A |
| Cross-site scripting vulnerability in demonstration scripts for vqServer allows remote attackers to execute arbitrary script via a link that contains the script in arguments to demo scripts such as respond.pl. | |||||
| CVE-2003-1031 | 1 Jelsoft | 1 Vbulletin | 2024-02-04 | 4.3 MEDIUM | N/A |
| Cross-site scripting (XSS) vulnerability in register.php for vBulletin 3.0 Beta 2 allows remote attackers to inject arbitrary HTML or web script via optional fields such as (1) "Interests-Hobbies", (2) "Biography", or (3) "Occupation." | |||||
| CVE-2002-1841 | 1 Noguska | 1 Nola | 2024-02-04 | 5.0 MEDIUM | N/A |
| The document management module in NOLA 1.1.1 and 1.1.2 does not restrict the types of files that are uploaded, which allows remote attackers to upload and execute arbitrary PHP files with extensions such as .php4. | |||||
| CVE-2003-1126 | 1 Sun | 1 One Web Server | 2024-02-04 | 5.0 MEDIUM | N/A |
| Unknown vulnerability in SunOne/iPlanet Web Server SP3 through SP5 on Windows platforms allows remote attackers to cause a denial of service. | |||||
| CVE-2000-0694 | 1 Tech-source | 1 Raptor Gfx Pgx32 | 2024-02-04 | 7.2 HIGH | N/A |
| pgxconfig in the Raptor GFX configuration tool allows local users to gain privileges via a symlink attack. | |||||
| CVE-1999-0217 | 1 Sun | 1 Sunos | 2024-02-04 | 5.0 MEDIUM | N/A |
| Malicious option settings in UDP packets could force a reboot in SunOS 4.1.3 systems. | |||||
| CVE-2003-0279 | 1 Francisco Burzi | 1 Php-nuke | 2024-02-04 | 2.6 LOW | N/A |
| Multiple SQL injection vulnerabilities in the Web_Links module for PHP-Nuke 5.x through 6.5 allows remote attackers to steal sensitive information via numeric fields, as demonstrated using (1) the viewlink function and cid parameter, or (2) index.php. | |||||
| CVE-2002-0739 | 1 Postnuke Software Foundation | 1 Postcalendar | 2024-02-04 | 7.5 HIGH | N/A |
| Cross-site scripting in PostCalendar 3.02 allows remote attackers to insert arbitrary HTML and script, and steal cookies, by modifying a calendar entry in its preview page. | |||||
| CVE-2001-0963 | 1 Pi-soft | 1 Spoonftp | 2024-02-04 | 7.5 HIGH | N/A |
| Directory traversal vulnerability in SpoonFTP 1.1 allows local and sometimes remote attackers to access files outside of the FTP root via a ... (modified dot dot) in the CD (CWD) command. | |||||
| CVE-2002-1258 | 1 Microsoft | 8 Windows 2000, Windows 2000 Terminal Services, Windows 95 and 5 more | 2024-02-04 | 5.0 MEDIUM | N/A |
| Two vulnerabilities in Microsoft Virtual Machine (VM) up to and including build 5.0.3805, as used in Internet Explorer and other applications, allow remote attackers to read files via a Java applet with a spoofed location in the CODEBASE parameter in the APPLET tag, possibly due to a parsing error. | |||||
| CVE-2000-0717 | 1 Goodtech | 2 Ftp Server 95 98, Ftp Server Nt 2000 | 2024-02-04 | 5.0 MEDIUM | N/A |
| GoodTech FTP server allows remote attackers to cause a denial of service via a large number of RNTO commands. | |||||
| CVE-2004-1978 | 1 Moodle | 1 Moodle | 2024-02-04 | 4.3 MEDIUM | N/A |
| Cross-site scripting (XSS) vulnerability in help.php in Moodle before 1.3 allows remote attackers to inject arbitrary HTML and web script via the text parameter. | |||||
| CVE-2003-0785 | 1 Brian Bassett | 1 Ipmasq | 2024-02-04 | 7.5 HIGH | N/A |
| ipmasq before 3.5.12, in certain configurations, may forward packets to the external interface even if the packets are not associated with an established connection, which could allow remote attackers to bypass intended filtering. | |||||
| CVE-1999-0139 | 1 Sun | 2 Solaris, Sunos | 2024-02-04 | 7.2 HIGH | N/A |
| Buffer overflow in Solaris x86 mkcookie allows local users to obtain root access. | |||||
| CVE-2001-1530 | 1 Webmin | 1 Webmin | 2024-02-04 | 4.6 MEDIUM | N/A |
| run.cgi in Webmin 0.80 and 0.88 creates temporary files with world-writable permissions, which allows local users to execute arbitrary commands. | |||||
| CVE-2001-1406 | 1 Mozilla | 1 Bugzilla | 2024-02-04 | 2.1 LOW | N/A |
| process_bug.cgi in Bugzilla before 2.14 does not set the "groupset" bit when a bug is moved between product groups, which will cause the bug to have the old group's restrictions, which might not be as stringent. | |||||
| CVE-2004-0269 | 1 Francisco Burzi | 1 Php-nuke | 2024-02-04 | 6.4 MEDIUM | N/A |
| SQL injection vulnerability in PHP-Nuke 6.9 and earlier, and possibly 7.x, allows remote attackers to inject arbitrary SQL code and gain sensitive information via (1) the category variable in the Search module or (2) the admin variable in the Web_Links module. | |||||