CVE-2003-1000
xchat 2.0.6 allows remote attackers to cause a denial of service (crash) via a passive DCC request w
xchat 2.0.6 allows remote attackers to cause a denial of service (crash) via a passive DCC request w
SQL injection vulnerability in profile.php in PHPenpals allows remote attackers to execute arbitrary
SQL injection vulnerability in Timecan CMS allows remote attackers to execute arbitrary SQL commands
Multiple SQL injection vulnerabilities in OnePlug Solutions OnePlug CMS allow remote attackers to ex
SQL injection vulnerability in showthread.php in 427BB 2.2 and 2.2.1 allows remote attackers to exec
Multiple SQL injection vulnerabilities in Rialto 1.6 allow remote attackers to execute arbitrary SQL
Geckovich TaskTracker Pro 1.5 and earlier allows remote attackers to add administrative or other acc
SQL injection vulnerability in main.asp in LocazoList 2.01a beta5 and earlier allows remote attacker
SQL injection vulnerability in orange.asp in ShopStoreNow E-commerce Shopping Cart allows remote att
IMP Webmail Client 4.1.5, Horde Application Framework 3.1.5, and Horde Groupware Webmail Edition 1.0
SQL injection vulnerability in admin/login.asp in Netchemia oneSCHOOL allows remote attackers to exe
SQL injection vulnerability in uprofile.php in ClipShare allows remote attackers to execute arbitrar
dnsserver in Cisco Application Control Engine Global Site Selector (GSS) before 3.0(1) allows remote
SQL injection vulnerability in inc/rubriques.php in SPIP 1.8 before 1.8.3b, 1.9 before 1.9.2g, and 2
SQL injection vulnerability in index.php in My PHP Baseball Stats (MyPBS) allows remote attackers to
Directory traversal vulnerability in Yerba SACphp 6.3 allows remote attackers to read arbitrary file
SQL injection vulnerability in login.asp in Citrix Application Gateway - Broadcast Server (BCS) befo
Multiple SQL injection vulnerabilities in ClickAndEmail allow remote attackers to execute arbitrary
Belgian eID middleware (eidlib) 2.6.0 and earlier does not properly check the return value from the
ZXID 0.29 and earlier does not properly check the return value from the OpenSSL DSA_verify function,
Cisco IOS before 15.0(1)XA does not properly handle IRC traffic during a specific time period after
Memory leak in the gk_circuit_info_do_in_acf function in the H.323 implementation in Cisco IOS befor
CallManager Express (CME) on Cisco IOS before 15.0(1)XA allows remote authenticated users to cause a
** UNSUPPORTED WHEN ASSIGNED ** A vulnerability classified as problematic has been found in SimpleSA
The Neighbor Discovery (ND) protocol implementation in the IPv6 stack on Cisco Adaptive Security App
The Neighbor Discovery (ND) protocol implementation in the IPv6 stack in Cisco IOS before 15.0(1)XA5
Cisco Adaptive Security Appliances (ASA) 5500 series devices with software 8.2(3) and earlier allow
Cisco Adaptive Security Appliances (ASA) 5500 series devices with software 8.2(4) and earlier allow
Unspecified vulnerability on Cisco Adaptive Security Appliances (ASA) 5500 series devices with softw
Cisco Adaptive Security Appliances (ASA) 5500 series devices with software before 8.2(3) do not prop
Unspecified vulnerability on Cisco Adaptive Security Appliances (ASA) 5500 series devices with softw
emWEB on Cisco Adaptive Security Appliances (ASA) 5500 series devices with software before 8.2(3) al
Cisco Adaptive Security Appliances (ASA) 5500 series devices with software before 8.2(3) permit pack
Cisco Adaptive Security Appliances (ASA) 5500 series devices with software before 8.2(3) do not prop
The WebVPN implementation on Cisco Adaptive Security Appliances (ASA) 5500 series devices with softw
Unspecified vulnerability on Cisco Adaptive Security Appliances (ASA) 5500 series devices with softw
Memory leak on Cisco Adaptive Security Appliances (ASA) 5500 series devices with software before 8.2
Memory leak in Cisco IOS before 15.0(1)XA5 might allow remote attackers to cause a denial of service
Cisco IOS before 15.0(1)XA1, when certain TFTP debugging is enabled, allows remote attackers to caus
Cisco IOS before 15.0(1)XA1 does not clear the public key cache upon a change to a certificate map,
CallManager Express (CME) on Cisco IOS before 15.0(1)XA1 does not properly handle SIP TRUNK traffic
STCAPP (aka the SCCP telephony control application) on Cisco IOS before 15.0(1)XA1 does not properly
Unspecified vulnerability in the SIP inspection feature on Cisco Adaptive Security Appliances (ASA)
Cisco Adaptive Security Appliances (ASA) 5500 series devices with software before 8.3(2) do not prop
The Mobile User Security (MUS) service on Cisco Adaptive Security Appliances (ASA) 5500 series devic
Unspecified vulnerability on Cisco Adaptive Security Appliances (ASA) 5500 series devices with softw
eEye Audit ID 2499 in eEye Digital Security Audits 2406 through 2423 for eEye Retina Network Securit
An SQL Injection vulnerability exists in the ID parameter in Online TV Database 2011.
The BrowserID (Mozilla Persona) module 7.x-1.x before 7.x-1.3 for Drupal allows remote attackers to
The Windows Forms (aka WinForms) component in Microsoft .NET Framework 1.0 SP3, 1.1 SP1, 2.0 SP2, 3.
Stack-based buffer overflow in the MrSID plugin (MrSID.dll) before 4.37 for IrfanView allows remote
The MrSID plugin (MrSID.dll) before 4.37 for IrfanView allows remote attackers to execute arbitrary
Heap-based buffer overflow in the MrSID plugin (MrSID.dll) before 4.37 for IrfanView allows remote a
Cross-site scripting (XSS) vulnerability in the frontend in Open-Xchange (OX) AppSuite 6.22.3 before
Interaction error in OpenStack Nova and Neutron before Havana 2013.2.1 and icehouse-1 does not valid
Cross-site scripting (XSS) vulnerability in the web interface in Cisco Secure Access Control System
The BGP implementation in Cisco NX-OS 6.2(2a) and earlier does not properly handle the interaction o
The administrative interface in Cisco Context Directory Agent (CDA) does not properly enforce author
Cross-site scripting (XSS) vulnerability in the Mappings page in Cisco Context Directory Agent (CDA)
The Identity Firewall (IDFW) functionality in Cisco Adaptive Security Appliance (ASA) Software allow
Cisco Context Directory Agent (CDA) allows remote attackers to modify the cache via a replay attack
The Identity Firewall (IDFW) functionality in Cisco Adaptive Security Appliance (ASA) Software allow
Cisco Context Directory Agent (CDA) allows remote authenticated users to trigger the omission of cer
The administration portal in Cisco Unified Communications Manager (Unified CM) 9.1(1) and earlier do
Cisco 9900 Unified IP phones allow remote attackers to cause a denial of service (unregistration) vi
Cross-site scripting (XSS) vulnerability in the web framework in Cisco Secure Access Control System
The server in Cisco Unity Connection allows remote authenticated users to cause a denial of service
Cross-site scripting (XSS) vulnerability in the web-based device management interface in Palo Alto N
DOMPDF before 0.6.2 allows Information Disclosure.
An Information Disclosure vulnerability exists in NTP 4.2.7p25 private (mode 6/7) messages via a GET
Cisco Unified Communication Domain Manager Platform Software allows remote attackers to cause a deni
Cross-site request forgery (CSRF) vulnerability in Cisco WebEx Meetings Server allows remote attacke
The play/modules component in Cisco WebEx Meetings Server allows remote attackers to obtain administ
The web framework in Cisco WebEx Meetings Server produces different returned messages for URL reques
The outlookpa component in Cisco WebEx Meetings Server does not properly validate API input, which a
Multiple SQL injection vulnerabilities in Absolut Engine 1.73 allow remote authenticated users to ex
SQL injection vulnerability in execute.php in InfiniteWP Admin Panel before 2.4.4 allows remote atta
A Denial of Service vulnerability exists in Google Android 4.4.4, 5.0.2, and 5.1.1, which allows mal
The High Availability (HA) subsystem in Cisco NX-OS on MDS 9000 devices allows remote attackers to c
An Information Disclosure vulnerability exists in the Google Pixel/Pixel SL Qualcomm Avtimer Driver
An Information Disclosure vulnerability exists in the mid.dat file stored on the SD card in Symantec
Using an ID that can be controlled by a compromised renderer which allows any frame to overwrite the
A vulnerability classified as problematic has been found in rofl0r MacGeiger. Affected is the functi
Rock RMS version before 8.6 is vulnerable to account takeover by tampering with the user ID paramete
GitLab Enterprise Edition (EE) 9.0 and later through 12.5 allows Information Disclosure.
An out-of-bounds memory write issue was found in the Linux Kernel, version 3.13 through 5.4, in the
D-Link DIR-859 routers before v1.07b03_beta allow Unauthenticated Information Disclosure via the AUT
An issue was discovered in Foxit Reader and PhantomPDF before 9.4 on Windows. It is an Out-of-Bounds
A flaw was found in JBCS httpd in version 2.4.37 SP3, where it uses a back-end worker SSL certificat
Reflected XSS in Quest Policy Authority version 8.1.2.200 allows attackers to inject malicious code
mwifiex_cmd_802_11_ad_hoc_start in drivers/net/wireless/marvell/mwifiex/join.c in the Linux kernel t
The OpenID Connect reference implementation for MITREid Connect through 1.3.3 allows XSS due to user
Baidu Rust SGX SDK through 1.0.8 has an enclave ID race. There are non-deterministic results in whic
Windows DNS Query Information Disclosure Vulnerability
Windows Docker Information Disclosure Vulnerability
TPM Device Driver Information Disclosure Vulnerability
Windows Projected File System FS Filter Driver Information Disclosure Vulnerability
Windows Projected File System FS Filter Driver Information Disclosure Vulnerability
Windows Projected File System FS Filter Driver Information Disclosure Vulnerability
Windows NT Lan Manager Datagram Receiver Driver Information Disclosure Vulnerability
Windows Graphics Component Information Disclosure Vulnerability
Windows (modem.sys) Information Disclosure Vulnerability
Windows GDI+ Information Disclosure Vulnerability
Bot Framework SDK Information Disclosure Vulnerability
A Stack-based buffer overflow in the SonicOS SessionID HTTP response header allows a remote authenti
When security guidelines for SAP NetWeaver Master Data Management running on windows have not been t
Possible null pointer dereference in thread profile trap handler due to lack of thread ID validation
Possible null pointer dereference in trap handler due to lack of thread ID validation before derefer
There is a Configuration defects in Smartphone.Successful exploitation of this vulnerability may ele
The bone voice ID TA has a heap overflow vulnerability.Successful exploitation of this vulnerability
The bone voice ID trusted application (TA) has a heap overflow vulnerability. Successful exploitatio
The eID module has a null pointer reference vulnerability. Successful exploitation of this vulnerabi
The eID module has an out-of-bounds memory write vulnerability,Successful exploitation of this vulne
The eID module has a vulnerability that causes the memory to be used without being initialized,Succe
The bone voice ID TA has a vulnerability in calculating the buffer length,Successful exploitation of
The eID module has an out-of-bounds memory write vulnerability,Successful exploitation of this vulne
The bone voice ID TA has a vulnerability in information management,Successful exploitation of this v
Affected versions of Atlassian Jira Service Management Server and Data Center allow authenticated re
If an OpenID Connect provider supports the 'none' algorithm (i.e., tokens with no signature), pac4j
In Sourcecodetester Printable Staff ID Card Creator System 1.0 after compromising the database via S
Jenkins Credentials Binding Plugin 1.27 and earlier does not perform a permission check in a method
Win32k Information Disclosure Vulnerability
Storage Spaces Controller Information Disclosure Vulnerability
Windows GDI+ Information Disclosure Vulnerability
Windows GDI Information Disclosure Vulnerability
Windows GDI+ Information Disclosure Vulnerability
Remote Desktop Licensing Diagnoser Information Disclosure Vulnerability
The dnslib package through 0.9.16 for Python does not verify that the ID value in a DNS reply matche
kenny2automate is a Discord bot. In the web interface for server settings, form elements were genera