Services
CVE Board
Type de vulnerabilité
CVE
Authentication Issues
110
Buffer Errors
740
Code Injection
499
Configuration
55
Credentials Management
54
Cross-Site Request Forgery (CSRF)
75
Cross-Site Scripting (XSS)
817
Cryptographic Issues
37
Design Error
300
Format String Vulnerability
38
Information Leak / Disclosure
175
Input Validation
377
Insufficient Information
367
Link Following
12
Not in CWE
6
Numeric Errors
143
OS Command Injections
7
Other
14
Path Traversal
355
Permissions, Privileges, and Access Control
295
Race Conditions
13
Resource Management Errors
168
SQL Injection
700
The BIDIB.BIDIBCtrl.1 ActiveX control in BIDIB.ocx ...
The HTTP service on the Cisco Linksys WRH54G with ...
Unrestricted file upload vulnerability in admin/Ed ...
Skype 3.6.0.248, and other versions before 3.8.0.1 ...
Mozilla Firefox 2.0.0.14 allows remote attackers t ...
Sun Java Active Server Pages (ASP) Server before 4 ...
The Admin Server in Sun Java Active Server Pages ( ...
SubSonic allows remote attackers to bypass pagesiz ...
IDAutomation allows remote attackers to overwrite ...
Incomplete blacklist vulnerability in javaUpload.p ...
Multiple stack-based buffer overflows in the Comma ...
robotd in the Library Manager in EMC AlphaStor 3.1 ...
The Journal module in Tru-Zone Nuke ET 3.x allows ...
Asterisk Open Source 1.0.x and 1.2.x before 1.2.29 ...
Call of Duty 4 (CoD4) 1.5 and earlier allows remot ...
Buffer overflow in the openwsman management servic ...
Cisco Adaptive Security Appliance (ASA) and Cisco ...
Cisco Adaptive Security Appliance (ASA) and Cisco ...
The FTP service in Acritum Femitter Server 1.03 al ...
Apple iCal 3.0.1 on Mac OS X allows remote CalDAV ...
The Discovery Service (casdscvc) in CA ARCserve Ba ...
The _gnutls_recv_client_kx_message function in lib ...
Foxit Reader 2.2 allows remote attackers to cause ...
NMMediaServer.exe in Nero MediaHome 3.3.3.0 and ea ...
A certain ActiveX control in WkImgSrv.dll 7.03.061 ...
ExBB Italia 0.22 and earlier only checks GET reque ...
plugins/maps/db_handler.php in LinPHA 1.3.3 and ea ...
ClamAV before 0.93 allows remote attackers to bypa ...
Incomplete blacklist vulnerability in Skype 3.6.0. ...
delete.php in Prozilla Top 100 1.2 allows remote a ...
Cisco Unified Communications Manager 4.1 before 4. ...
Unspecified vulnerability in Cisco Unified Communi ...
The SNMP Trap Agent service in Cisco Unified Commu ...
Cisco Unified Communications Manager (CUCM) 5.x be ...
The Certificate Authority Proxy Function (CAPF) se ...
The SIP Proxy (SIPD) service in Cisco Unified Pres ...
The Presence Engine (PE) service in Cisco Unified ...
Multiple integer overflows in (1) filter/image-png ...
Absolute path traversal vulnerability in dload.php ...
Stack-based buffer overflow in ovwparser.dll in HP ...
The CairoFont::create function in CairoFontEngine. ...
Unspecified vulnerability in SLMail.exe in SLMail ...
OpenSSL 0.9.8f and 0.9.8g allows remote attackers ...
Sympa before 5.4 allows remote attackers to cause ...
The ChilkatHttp.ChilkatHttp.1 and ChilkatHttp.Chil ...
CuteFlow 2.10.0 allow remote authenticated users ...
login.php in CuteFlow 1.5.0 and 2.10.0 allows rem ...
Cross-site scripting (XSS) vulnerability in PHPkrm ...
eggBlog before 4.0.1 allows remote attackers to e ...
Directory traversal vulnerability in v2demo/page.p ...
admin_view_image.php in Smoothflash allows remote ...
Multiple PHP remote file inclusion vulnerabilities ...
Multiple cross-site scripting (XSS) vulnerabilitie ...
The arrayShrink function (lib/Array.c) in Squid 2. ...
The (1) ltmmCaptureCtrl Class, (2) ltmmConvertCtrl ...
Apple QuickTime before 7.5 allows remote attackers ...
comix 3.6.4 allows attackers to execute arbitrary ...
The setRequestHeader method of the XMLHttpRequest ...
The setRequestHeader method of the XMLHttpRequest ...
Directory traversal vulnerability in cgi-bin/his-w ...
the Datsogallery (com_datsogallery) 1.3.1 module ...
includes/dynamic_titles.php in PHP-Nuke Platinum ...
Cross-site scripting (XSS) vulnerability in search ...
Directory traversal vulnerability in pb_inc/adminc ...
Cross-site scripting (XSS) vulnerability in index. ...
Perlbal before 1.70, when buffered upload is enabl ...
Unrestricted file upload vulnerability in administ ...
Multiple directory traversal vulnerabilities in Co ...
Home FTP Server 1.4.5.89 allows remote attackers t ...
Active Directory on Microsoft Windows 2000 Server ...
Microsoft Windows XP SP2 and SP3, Server 2003 SP1 ...
Microsoft Windows XP SP2 and SP3, and Server 2003 ...
Xiph.org libvorbis 1.2.0 and earlier does not prop ...
Unspecified vulnerability in multiple F-Secure ant ...
The PXE Server (pxesrv.exe) in Acronis Snap Deploy ...
Trend Micro OfficeScan Corporate Edition 8.0 Patch ...
The instant message service in Timbuktu Pro 8.6.5 ...
Unspecified vulnerability in OmniPCX Office with I ...
The TFTP server in PacketTrap pt360 Tool Suite PRO ...
The Perforce service (p4s.exe) in Perforce Server ...
Acronis True Image Windows Agent 1.0.0.54 and earl ...
Acronis True Image Group Server 1.5.19.191 and ear ...
The RemotelyAnywhere.exe service in the Remotely A ...
The IMAP service (MEIMAPS.exe) in MailEnable Profe ...
snomControl.swf in the central phone server for th ...
cgi-bin/setup_virtualserver.exe on the Belkin F5D7 ...
Unrestricted file upload vulnerability in JSPWiki ...
IBM Lotus Quickr 8.0 server, and possibly QuickPla ...
The Presence Engine (PE) service in Cisco Unified ...
Cisco CiscoWorks Internetwork Performance Monitor ...
The Utils::runScripts function in src/utils.cpp in ...
Timbuktu Pro 8.6.5 for Windows, and possibly 8.7 f ...
Opera before 9.26 allows user-assisted remote atta ...
The modifier.regex_replace.php plugin in Smarty be ...
InterVideo IMC Server (aka IMCSvr.exe) and InterVi ...
Use-after-free vulnerability in Apple iCal 3.0.1 o ...
Apple QuickTime before 7.4.5 does not properly han ...
Unspecified vulnerability in Apple AirPort Extreme ...
Apple Mac OS X 10.5.2 allows user-assisted attacke ...
Spyce - Python Server Pages (PSP) 2.1.3 allows rem ...
diatheke.pl in The SWORD Project Diatheke 1.5.9 an ...
The replication monitor CGI script (repl-monitor-c ...
Unspecified vulnerability in the SEWB3 messaging s ...
Multiple stack-based buffer overflows in Now SMS/M ...
The Digital Photo Access Protocol (DPAP) server fo ...
ipdsserver.exe in Intermate WinIPDS 3.3 G52-33-021 ...
The process_chat_input function in TinTin++ 1.97.9 ...
Unrestricted file upload vulnerability in dmclTrac ...
Multiple ActiveX controls in MailBee.dll in MailBe ...
The OpenID 5.x-1.0 and earlier module for Drupal d ...
The ExpandCert function in Apache-SSL before apach ...
The SSH server in (1) Cisco Service Control Engine ...
The HTTP server in Cisco Unified IP Phone 7935 and ...
Cisco Unified IP Phone 7940, 7940G, 7960, and 7960 ...
include/imageObjectIM.class.php in Coppermine Phot ...
ManageEngine Applications Manager 8.1 build 8100 a ...
RTE_popup_save_file.asp in Web Wiz Rich Text Edito ...
Unrestricted file upload vulnerability in the File ...
Mozilla Firefox before 2.0.0.12 and SeaMonkey befo ...
HTTP File Server (HFS) before 2.2c, when account n ...
Xdg-utils 1.0.2 and earlier allows user-assisted r ...
Unrestricted file upload vulnerability in PHP F1 M ...
Unspecified vulnerability in Funkwerk System Softw ...
Symantec Decomposer, as used in certain Symantec a ...
Unspecified vulnerability in the Fileshare module ...
Unspecified vulnerability in the Meta Tags (aka No ...
minimal Gallery 0.8 allows remote attackers to obt ...
Unrestricted file upload vulnerability in PhotoPos ...
SAP MaxDB 7.6.03 build 007 and earlier allows remo ...
The Microsoft Rich Textbox ActiveX Control (RICHTX ...
PRO-Search 0.17 and earlier allows remote attacker ...
The get_repeat_type function in basic_regex_creato ...
regex/v4/perl_matcher_non_recursive.hpp in the Boo ...
Format string vulnerability in the swDebugf functi ...
Format string vulnerability in the log function in ...
Unspecified vulnerability in Active Directory on M ...
Foundation in Apple Mac OS X 10.4.11 might allow c ...
Menalto Gallery before 2.2.4 does not properly che ...
The RTSP module in VideoLAN VLC 0.8.6d allows remo ...
ClamAV 0.92 does not recognize Base64 UUEncoded ar ...
QK SMTP Server 3 allows remote attackers to cause ...
TotalPlayer 3.0 allows user-assisted remote attack ...
Multiple unspecified vulnerabilities in Microsoft ...
uploadimg.php in the Automatic Image Upload with T ...
Unspecified vulnerability in Appian Enterprise Bus ...
The IMWeb.IMWebControl.1 ActiveX control in IMWeb. ...
The IMWeb.IMWebControl.1 ActiveX control in IMWeb. ...
Multiple PHP remote file inclusion vulnerabilities ...
Balabit syslog-ng 2.0.x before 2.0.6 and 2.1.x bef ...
The getRenderedEjbql method in the org.jboss.seam. ...
Unspecified vulnerability in Juniper JUNOS 7.3 thr ...
Nokia N95 cell phone with RM-159 12.0.013 firmware ...
Sergey Lyubka Simple HTTPD (shttpd) 1.3 on Windows ...
PHP remote file inclusion vulnerability in adminbe ...
BarracudaDrive Web Server before 3.8 allows remote ...
Drupal and vbDrupal 4.7.x before 4.7.9 and 5.x be ...
Free Lossless Audio Codec (FLAC) libFLAC before 1. ...
The accept_connections function in the virtual pri ...
Absolute News Manager.NET 5.1 allows remote attack ...
The dataconn function in ftpd.c in netkit ftpd (ne ...
Unspecified vulnerability in Adobe Flash Player 9. ...
The "cache update reply processing" functionality ...
A certain ActiveX control in RealNetworks RealPlay ...
Multiple PHP remote file inclusion vulnerabilities ...
Multiple PHP remote file inclusion vulnerabilities ...
Unspecified vulnerability in Wesnoth 1.2.x before ...
Multiple PHP remote file inclusion vulnerabilities ...
Multiple PHP remote file inclusion vulnerabilities ...
kb_whois.cgi in K+B-Bestellsystem (aka KB-Bestells ...
Mail in Apple Mac OS X Leopard (10.5.1) allows use ...
Hitachi JP1/File Transmission Server/FTP 01-00 thr ...
PHP remote file inclusion vulnerability in admin/k ...
Directory traversal vulnerability in scripts/inclu ...
The default_encrypt function in encrypt.c in IRC S ...
I Hear U (IHU) 0.5.6 and earlier allows remote att ...
Ability Mail Server before 2.61 allows remote auth ...
The IPsec module in the VPN component in Ingate Fi ...
The SRTP implementation in Ingate Firewall before ...
irc-channel.c in ngIRCd before 0.10.3 allows remot ...
AhnLab Antivirus 3 Internet Security 2008 Platinum ...
The parseRTSPRequestString function in LIVE555 Med ...
The PVATLCalendar.PVCalendar.1 ActiveX control in ...
Unspecified vulnerability in pioneers (formerly gn ...
classes/Url.php in Justin Hagstrom AutoIndex PHP S ...
Bandersnatch 0.4 allows remote attackers to obtain ...
Pioneers (formerly gnocatan) before 0.11.3 allows ...
OpenBase 10.0.5 and earlier allows remote authenti ...
The convert_search_mode_to_innobase function in ha ...
HTTPSocket.cpp in the C++ Sockets Library before 2 ...
Unspecified vulnerability in selectLanguage.do in ...
Unspecified vulnerability in the administrative in ...
webserver.c in mt-dappd in Firefly Media Server 0. ...
Hitachi Web Server 01-00 through 03-00-01, as used ...
The FlashUpload component in Korean GHBoard uses a ...
Unrestricted file upload vulnerability in componen ...
Unrestricted file upload vulnerability in upload.p ...
Unrestricted file upload vulnerability in eFileMan ...
Unrestricted file upload vulnerability in upload/u ...
Massive Entertainment World in Conflict 1.001 and ...
ParseFTPList.cpp in Mozilla Firefox 2.0.0.7 allows ...
Heap-based buffer overflow in TIBCO SmartSockets R ...
TIBCO SmartSockets RTserver 6.8.0 and earlier, RTw ...
Cisco Firewall Services Module (FWSM) 3.2(1), and ...
Cisco PIX and ASA appliances with 7.1 and 7.2 soft ...
Cisco PIX and ASA appliances with 7.0 through 8.0 ...
Unspecified vulnerability in VirtueMart before 1.0 ...
Unspecified vulnerability in the NEC mobile handse ...
Unspecified vulnerability in the Avaya VoIP Handse ...
Unspecified vulnerability in Opera before 9.24, wh ...
Unspecified vulnerability in Opera before 9.24 all ...
The GIOP service in TNS Listener in the Oracle Net ...
Unspecified vulnerability in the Sun Solaris RPC s ...
Madwifi 0.9.3.2 and earlier allows remote attacker ...
** DISPUTED ** Multiple PHP remote file inclusion ...
Interpretation conflict in the Sun Java Virtual Ma ...
Multiple vulnerabilities in Mozilla Firefox before ...
Unspecified vulnerability in preview.php in TYPOli ...
The TSC Domain Manager in Hitachi TPBroker Object ...
Hitachi Cosminexus Agent 03-00 through 03-05, and ...
The Adobe Macromedia Flash 9 plug-in allows remote ...
Certain chunk handlers in libpng before 1.0.29 and ...
PHP remote file inclusion vulnerability in log.php ...
c32web.exe in McMurtrey/Whitaker Cart32 before 6.4 ...
Unrestricted file upload vulnerability in admin/up ...
irc_server.c in dircproxy 1.2.0 and earlier allows ...
hpssd in Hewlett-Packard Linux Imaging and Printin ...
Multiple PHP remote file inclusion vulnerabilities ...
IceGUI.DLL in ICEOWS 4.20b invokes a function with ...
SimpGB 1.46.02 allows remote attackers to obtain s ...
SimpNews 2.41.03 on Windows, when PHP before 5.0.0 ...
JSPWiki 2.4.103 and 2.5.139-beta allows remote att ...
Microsoft Windows Media Player (WMP) 9 on Windows ...
Unspecified vulnerability in Webmin before 1.370 o ...
Multiple buffer overflows in the AirDefense Airsen ...
The TSrvOptIA_NA::rebind method in SrvOptions/SrvO ...
Dibbler 0.6.0 does not verify that certain length ...
libpurple in Pidgin 2.1.0 through 2.2.1, when usin ...
WinImage 8.10 and earlier allows remote attackers ...
admin.php in Shop-Script FREE 2.0 and earlier send ...
axis-cgi/buffer/command.cgi on the AXIS 207W camer ...
The ewirePC_Decrypt function in ewirepcfunctions.p ...
The Open Phone Abstraction Library (opal), as used ...
The Intersil isl3893 extensions for Boa 0.93.15, a ...
Unspecified vulnerability in the subscriptions man ...
