Search
153,552 CVEs · Medium severity
CVEs (153,552, showing first 500)
Only the first 500 CVEs (by current sort) are shown when searching without a keyword. Add a search term above to narrow the results.
Showing 301–325 of 153,552 (capped at 500)
| CVE ID | Severity | Patch | CVSS | Published ↑ | Description |
|---|---|---|---|---|---|
| CVE-1999-0467 | MEDIUM | 5.0 | 1999-04-01 | The Webcom CGI Guestbook programs wguest.exe and rguest.exe allow a remote attacker to read arbitrary files using the "template" parameter. | |
| CVE-1999-0469 | MEDIUM | 5.0 | 1999-04-01 | Internet Explorer 5.0 allows window spoofing, allowing a remote attacker to spoof a legitimate web site and capture information from the client. | |
| CVE-1999-0605 | MEDIUM | 5.0 | 1999-04-01 | An incorrect configuration of the Order Form 1.0 shopping cart CGI program could disclose private information. | |
| CVE-1999-0606 | MEDIUM | 5.0 | 1999-04-01 | An incorrect configuration of the EZMall 2000 shopping cart CGI program "mall2000.cgi" could disclose private information. | |
| CVE-1999-0608 | MEDIUM | 5.0 | 1999-04-01 | An incorrect configuration of the PDG Shopping Cart CGI program "shopper.cgi" could disclose private information. | |
| CVE-1999-0609 | MEDIUM | 5.0 | 1999-04-01 | An incorrect configuration of the SoftCart CGI program "SoftCart.exe" could disclose private information. | |
| CVE-1999-0610 | MEDIUM | 5.0 | 1999-04-01 | An incorrect configuration of the Webcart CGI program could disclose private information. | |
| CVE-1999-0921 | MEDIUM | 5.0 | 1999-04-01 | BMC Patrol allows any remote attacker to flood its UDP port, causing a denial of service. | |
| CVE-1999-0474 | MEDIUM | 5.0 | 1999-04-05 | The ICQ Webserver allows remote attackers to use .. to access arbitrary files outside of the user's personal directory. | |
| CVE-1999-1245 | MEDIUM | 5.0 | 1999-04-06 | vacm ucd-snmp SNMP server, version 3.52, does not properly disable access to the public community string, which could allow remote attackers to obtain sensitive information. | |
| CVE-1999-0472 | MEDIUM | 5.0 | 1999-04-07 | The SNMP default community name "public" is not properly removed in NetApps C630 Netcache, even if the administrator tries to disable it. | |
| CVE-1999-1196 | MEDIUM | 5.0 | 1999-04-07 | Hummingbird Exceed X version 5 allows remote attackers to cause a denial of service via malformed data to port 6000. | |
| CVE-1999-0470 | MEDIUM | 5.0 | 1999-04-09 | A weak encryption algorithm is used for passwords in Novell Remote.NLM, allowing them to be easily decrypted. | |
| CVE-1999-0471 | MEDIUM | 5.0 | 1999-04-09 | The remote proxy server in Winroute allows a remote attacker to reconfigure the proxy without authentication through the "cancel" button. | |
| CVE-1999-1323 | MEDIUM | Patched | 4.6 | 1999-04-09 | Norton AntiVirus for Internet Email Gateways (NAVIEG) 1.0.1.7 and earlier, and Norton AntiVirus for MS Exchange (NAVMSE) 1.5 and earlier, store the administrator password i… |
| CVE-1999-0444 | MEDIUM | 5.0 | 1999-04-12 | Remote attackers can perform a denial of service in Windows machines using malicious ARP packets, forcing a message box display for each packet or filling up log files. | |
| CVE-1999-1369 | MEDIUM | 4.6 | 1999-04-14 | Real Media RealServer (rmserver) 6.0.3.353 stores a password in plaintext in the world-readable rmserver.cfg file, which allows local users to gain privileges. | |
| CVE-1999-0684 | MEDIUM | 5.0 | 1999-04-19 | Denial of service in Sendmail 8.8.6 in HPUX. | |
| CVE-1999-0491 | MEDIUM | Patched | 4.6 | 1999-04-20 | The prompt parsing in bash allows a local user to execute commands as another user by creating a directory with the name of the command to execute. |
| CVE-1999-0604 | MEDIUM | 5.0 | 1999-04-20 | An incorrect configuration of the WebStore 1.0 shopping cart CGI program "web_store.cgi" could disclose private information. | |
| CVE-1999-0607 | MEDIUM | 5.0 | 1999-04-20 | quikstore.cgi in QuikStore shopping cart stores quikstore.cfg under the web document root with insufficient access control, which allows remote attackers to obtain the clea… | |
| CVE-1999-0711 | MEDIUM | 4.6 | 1999-04-29 | The oratclsh interpreter in Oracle 8.x Intelligent Agent for Unix allows local users to execute Tcl commands as root. | |
| CVE-1999-0194 | MEDIUM | 5.0 | 1999-05-01 | Denial of service in in.comsat allows attackers to generate messages. | |
| CVE-1999-0763 | MEDIUM | 6.4 | 1999-05-01 | NetBSD on a multi-homed host allows ARP packets on one network to modify ARP entries on another connected network. | |
| CVE-1999-0764 | MEDIUM | 6.4 | 1999-05-01 | NetBSD allows ARP packets to overwrite static ARP entries. |