Total
29750 CVE
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2004-1182 | 1 Hylafax | 1 Hylafax | 2025-04-03 | N/A |
| hfaxd in HylaFAX before 4.2.1, when installed with a "weak" hosts.hfaxd file, allows remote attackers to authenticate and bypass intended access restrictions via a crafted (1) username or (2) hostname that satisfies a regular expression that is matched against a hosts.hfaxd entry without a password. | ||||
| CVE-2005-1035 | 1 Pavuk | 1 Pavuk | 2025-04-03 | N/A |
| Multiple buffer overflows in Pavuk before 0.9.32 have unknown attack vectors and impact. | ||||
| CVE-2004-1205 | 1 Pntresmailer | 1 Pntresmailer | 2025-04-03 | N/A |
| codebrowserpntm.php in PnTresMailer 6.03 allows remote attackers to gain sensitive information via an invalid filetohighlight parameter, which reveals the full path in an error message. | ||||
| CVE-2004-1206 | 1 Pntresmailer | 1 Pntresmailer | 2025-04-03 | N/A |
| Directory traversal vulnerability in codebrowserpntm.php in pnTresMailer 6.0.3 allows remote attackers to read arbitrary files via a .. (dot dot) in the filetodownload parameter. | ||||
| CVE-2004-1208 | 1 21-6 Productions | 1 Orbz | 2025-04-03 | N/A |
| Buffer overflow in Orbz 2.10 and earlier allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a long password field in a join request. | ||||
| CVE-2004-1209 | 1 Verisign | 1 Payflow Link | 2025-04-03 | N/A |
| Verisign Payflow Link, when running with empty Accepted URL fields, does not properly verify the data in the hidden AMOUNT field, which allows remote attackers to modify the price of the items that they purchase. | ||||
| CVE-2004-1210 | 1 Ipcop | 1 Ipcop | 2025-04-03 | N/A |
| Cross-site scripting (XSS) vulnerability in proxylog.dat in IPCop 1.4.1 and possibly other versions, allows remote attackers to inject arbitrary web script or HTML via the (1) url or (2) part variables. | ||||
| CVE-2004-1229 | 1 Gadu-gadu | 1 Gadu-gadu Instant Messenger | 2025-04-03 | N/A |
| Cross-site scripting vulnerability in the parser for Gadu-Gadu allows remote attackers to inject arbitrary web script or HTML via (1) http:// or (2) news:// URLs, a different vulnerability than CVE-2004-1410. | ||||
| CVE-2006-2981 | 1 Arantius | 1 Vice Stats | 2025-04-03 | N/A |
| SQL injection vulnerability in vs_search.php in Arantius Vice Stats before 1.0.1 allows remote attackers to execute arbitrary SQL commands via unknown vectors, a different issue than CVE-2006-2972. | ||||
| CVE-2004-1254 | 1 Rarlab | 1 Winrar | 2025-04-03 | N/A |
| WinRAR 3.40, and possibly earlier versions, allows remote attackers to execute arbitrary code via a ZIP file containing a file with a long filename, possibly causing an integer overflow that leads to a buffer overflow. | ||||
| CVE-2004-1255 | 1 2fax | 1 2fax | 2025-04-03 | N/A |
| Buffer overflow in the expandtabs function in 2fax 3.04 allows remote attackers to execute arbitrary code via a text file that is converted to TIFF. | ||||
| CVE-2004-1256 | 1 Abcmidi | 1 Abcmidi | 2025-04-03 | N/A |
| Multiple buffer overflows in the (1) event_text and (2) event_specific functions in abc2midi 2004.12.04 allow remote attackers to execute arbitrary code via crafted ABC files. | ||||
| CVE-2004-1257 | 1 Abc2mtex | 1 Abc2mtex | 2025-04-03 | N/A |
| Buffer overflow in the process_abc function in abc.c for abc2mtex 1.6.1 allows remote attackers to execute arbitrary code via crafted ABC files. | ||||
| CVE-2004-1261 | 1 Asp2php | 1 Asp2php | 2025-04-03 | N/A |
| Multiple buffer overflows in the preparse function in asp2php 0.76.23 allow remote attackers to execute arbitrary code via crafted ASP scripts. | ||||
| CVE-2006-2983 | 1 Enterprise Payroll Systems | 1 Enterprise Payroll Systems | 2025-04-03 | N/A |
| PHP remote file inclusion vulnerability in Enterprise Timesheet and Payroll Systems (EPS) 1.1 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the absolutepath parameter in cal.php. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information. | ||||
| CVE-2004-1283 | 1 Mesh Viewer | 1 Mesh Viewer | 2025-04-03 | N/A |
| Buffer overflow in the Mesh::type method in mesh.c for the mview program in Mesh Viewer 0.2.2 allows remote attackers to execute arbitrary code via crafted mesh files. | ||||
| CVE-2004-1284 | 1 Mpg123 | 1 Mpg123 | 2025-04-03 | N/A |
| Buffer overflow in the find_next_file function in playlist.c for mpg123 0.59r allows remote attackers to execute arbitrary code via a crafted MP3 playlist. | ||||
| CVE-2004-1285 | 1 Mplayer | 1 Mplayer | 2025-04-03 | N/A |
| Buffer overflow in the get_header function in asf_mmst_streaming.c for MPlayer 1.0pre5 allows remote attackers to execute arbitrary code via a crafted ASF video stream. | ||||
| CVE-2004-1286 | 1 Napshare | 1 Napshare | 2025-04-03 | N/A |
| Buffer overflow in the auto_filter_extern function in auto.c for NapShare 1.2, with the extern filter enabled, allows remote attackers to execute arbitrary code via a crafted gnutella response. | ||||
| CVE-2004-1288 | 1 Siag | 1 O3read | 2025-04-03 | N/A |
| Buffer overflow in the parse_html function in o3read.c for o3read 0.0.3 allows remote attackers to execute arbitrary code via a crafted SXW file. | ||||