Services
CVE Board
Type de vulnerabilité
CVE
Authentication Issues
110
Buffer Errors
740
Code Injection
499
Configuration
55
Credentials Management
54
Cross-Site Request Forgery (CSRF)
75
Cross-Site Scripting (XSS)
817
Cryptographic Issues
37
Design Error
300
Format String Vulnerability
38
Information Leak / Disclosure
175
Input Validation
377
Insufficient Information
367
Link Following
12
Not in CWE
6
Numeric Errors
143
OS Command Injections
7
Other
14
Path Traversal
355
Permissions, Privileges, and Access Control
295
Race Conditions
13
Resource Management Errors
168
SQL Injection
700
Unspecified vulnerability in Citrix Access Gateway ...
BlogPHP 2.0 allows remote attackers to bypass auth ...
The administration application server in Sun Java ...
MyPicGallery 1.0 allows remote attackers to bypass ...
Admin.php in Web Slider 0.6 allows remote attacker ...
admin.php in Internet Photoshow and Internet Photo ...
AustinSmoke GasTracker (AS-GasTracker) 1.0.0 allow ...
The cookie authentication method in WordPress 2.5 ...
Cicoandcico CcMail 1.0.1 and earlier does not veri ...
The server in Blackboard Academic Suite 7.x stores ...
admin/sauvBase.php in Blog Pixel Motion (aka Blog ...
KnowledgeQuest 2.5 and 2.6 does not require authen ...
CuteFlow 2.10.0 allow remote authenticated users ...
login.php in CuteFlow 1.5.0 and 2.10.0 allows rem ...
ZyXEL Prestige routers, including P-660, P-661, an ...
Gallarific Free Edition 1.1 does not require authe ...
cgi/b on the BT Home Hub router allows remote atta ...
Gallarific does not require authentication for (1) ...
The FxIAList service in ASG-Sentry Network Manager ...
cp06_wifi_m_nocifr.cgi in the admin panel on the A ...
The FTP server on the Linksys WRT54G 7 router with ...
The Linksys WRT54G router has "admin" as its defau ...
The administration panel on the Airspan WiMax ProS ...
cgi-bin/setup_dns.exe on the Belkin F5D7230-4 rout ...
Mozilla Firefox before 2.0.0.13 and SeaMonkey befo ...
The Disaster Recovery Framework (DRF) master serve ...
OMEGA (aka Omegasoft) INterneSErvicesLosungen (INS ...
The management interface in Akamai Client (formerl ...
The scheduler in CUPS in Apple Mac OS X 10.5 befor ...
SNMPv3 HMAC verification in (1) Net-SNMP 5.2.x bef ...
The SOAP interface to the eMBox module in Novell e ...
BEA WebLogic Server and WebLogic Express 6.1 throu ...
Unspecified vulnerability in the Header Image Modu ...
Symantec Ghost Solution Suite 1.1 before 1.1 patch ...
The ExpandCert function in Apache-SSL before apach ...
Unspecified vulnerability in the SSH server in (1) ...
ManageEngine Applications Manager 8.1 build 8100 d ...
Web Wiz RTE_file_browser.asp in, as used in Web Wi ...
HTTP File Server (HFS) before 2.2c allows remote a ...
HTTP File Server (HFS) before 2.2c allows remote a ...
HTTP File Server (HFS) before 2.2c tags HTTP reque ...
The web server in Belkin Wireless G Plus MIMO Rout ...
inc/elementz.php in aliTalk 1.9.1.1 does not prope ...
MicroNews allows remote attackers to bypass authen ...
admin/config.php in Evilsentinel 1.0.9 and earlier ...
Open System Consultants (OSC) Radiator before 4.0 ...
The telnet service in LevelOne WBR-3460 4-Port ADS ...
Uebimiau Webmail 2.7.10 and 2.7.2 does not protect ...
Unspecified vulnerability in the LDAP authenticati ...
The DNS client in Microsoft Windows 2000 SP4, XP S ...
DBMail before 2.2.9, when using authldap with an L ...
Asterisk Open Source 1.2.x before 1.2.26 and 1.4.x ...
Flat PHP Board 1.2 and earlier allows remote attac ...
Unspecified vulnerability in the Image Converter f ...
cp.php in DeluxeBB 1.09 does not verify that the m ...
index.php in FTP Admin 0.1.0 allows remote attacke ...
The American Power Conversion (APC) AP7932 0u 30am ...
Unspecified vulnerability in Hitachi JP1/File Tran ...
gnump3d 2.9final does not apply password protectio ...
Unspecified vulnerability in main.php of BugHotel ...
TestLink before 1.7.1 does not enforce an unspecif ...
blocks/shoutbox_block.php in BtiTracker 1.4.4 does ...
details.php in BtiTracker before 1.4.5, when torre ...
dirsys/modules/auth.php in JBC Explorer 7.20 RC1 a ...
Java in Mac OS X 10.4 through 10.4.11 allows remot ...
Mail in Apple Mac OS X 10.4.11 and 10.5.1, when an ...
SQLLoginModule in Apache Geronimo 2.0 through 2.1 ...
The Vonage Motorola Phone Adapter VT 2142-VD does ...
The (1) Net::ftptls, (2) Net::telnets, (3) Net::im ...
adduser.php in PHP-AGTC Membership (AGTC-Membershi ...
The Gentoo ebuild of MLDonkey before 2.9.0-r3 has ...
Basic Analysis and Security Engine (BASE) before 1 ...
Unspecified vulnerability in HP Select Identity 4. ...
The Thomson/Alcatel SpeedTouch 7G router, as used ...
cp_memberedit.php in LightBlog 8.4.1.1 does not ch ...
The connect method in lib/net/http.rb in the (1) N ...
Sun Java System Access Manager 7.1, when installed ...
report.cgi in Google Urchin allows remote attacker ...
Unspecified vulnerability in the management EJB (M ...
NetSupport Manager Client before 10.20.0004 allows ...
The logins command in HP-UX B.11.31, B.11.23, and ...
Multiple command handlers in CA (Computer Associat ...
The telnet service in Cisco Video Surveillance IP ...
Directory traversal vulnerability in Ragnarok Onli ...
The tabbed browsing feature in Apple Safari 3 befo ...
CFNetwork in Apple Mac OS X 10.3.9 and 10.4 throug ...
The login method in LoginModule implementations in ...
Admin.php in Olate Download (od) 3.4.1 uses an MD5 ...
Fedora Commons before 2.2.1 does not properly hand ...
Mail in Apple iPhone 1.1.1, when using SSL, does n ...
Ingate Firewall and SIParator before 4.5.2 allow r ...
webSPELL 4.0, and possibly later versions, allows ...
SleeperChat 0.3f and earlier allows remote attacke ...
Advantage Century Telecommunication (ACT) P202S IP ...
functions.php in Ragnarok Online Control Panel (RO ...
mtnpeak.net File Upload Manager does not properly ...
Polar HelpDesk 3.0 allows remote attackers to bypa ...
webadmin-apache.conf in Novell Web Manager of Nove ...
LionMax Software Chat Anywhere 2.72a allows remote ...
edituser.php3 in PHPMyChat 0.14.5 allow remote att ...
BEA WebLogic Server and WebLogic Express 6.1, 7.0, ...
The default installation of Cisco voice products, ...
upload.php in Truegalerie 1.0 allows remote attack ...
The web administration page for the Ericsson HM220 ...
login_ldap 3.1 and 3.2 allows remote attackers to ...
Epic Games Unreal Engine 226f through 436 does not ...
Trend Micro ScanMail for Exchange (SMEX) before 3. ...
acFTP 1.4 does not properly handle when an invalid ...
Sygate personal firewall 5.0 could allow remote at ...
The default configuration of Oracle 9i Application ...
