Latest CVE Feed
-
6.8
MEDIUMCVE-2003-0278
Cross-site scripting (XSS) vulnerability in normal_html.cgi in Happycgi.com Happymall 4.3 and 4.4 allows remote attackers to insert arbitrary web script via the file parameter.... Read more
Affected Products : happymall- EPSS Score: %0.57
- Published: Jun. 16, 2003
- Modified: Apr. 03, 2025
-
5.0
MEDIUMCVE-2003-0302
The IMAP Client for Eudora 5.2.1 allows remote malicious IMAP servers to cause a denial of service and possibly execute arbitrary code via certain large literal size values that cause either integer signedness errors or integer overflow errors.... Read more
Affected Products : eudora- EPSS Score: %0.86
- Published: Jun. 16, 2003
- Modified: Apr. 03, 2025
-
6.8
MEDIUMCVE-2003-0283
Cross-site scripting (XSS) vulnerability in Phorum before 3.4.3 allows remote attackers to inject arbitrary web script and HTML tags via a message with a "<<" before a tag name in the (1) subject, (2) author's name, or (3) author's e-mail.... Read more
Affected Products : phorum- EPSS Score: %0.72
- Published: Jun. 16, 2003
- Modified: Apr. 03, 2025
-
4.6
MEDIUMCVE-2003-0372
Signed integer vulnerability in libnasl in Nessus before 2.0.6 allows local users with plugin upload privileges to cause a denial of service (core dump) and possibly execute arbitrary code by causing a negative argument to be provided to the insstr functi... Read more
Affected Products : nessus- EPSS Score: %0.17
- Published: Jun. 16, 2003
- Modified: Apr. 03, 2025
-
4.4
MEDIUMCVE-2003-0373
Multiple buffer overflows in libnasl in Nessus before 2.0.6 allow local users with plugin upload privileges to cause a denial of service (core dump) and possibly execute arbitrary code via (1) a long proto argument to the scanner_add_port function, (2) a ... Read more
Affected Products : nessus- EPSS Score: %0.09
- Published: Jun. 16, 2003
- Modified: Apr. 03, 2025
-
6.8
MEDIUMCVE-2003-0295
Cross-site scripting (XSS) vulnerability in private.php for vBulletin 3.0.0 Beta 2 allows remote attackers to inject arbitrary web script and HTML via the "Preview Message" capability.... Read more
Affected Products : vbulletin- EPSS Score: %0.42
- Published: Jun. 16, 2003
- Modified: Apr. 03, 2025
-
5.0
MEDIUMCVE-2003-0316
Venturi Client before 2.2, as used in certain Fourelle and Venturi Wireless products, can be used as an open proxy for various protocols, including an open relay for SMTP, which allows it to be abused by spammers.... Read more
Affected Products : venturi_client- EPSS Score: %0.49
- Published: Jun. 16, 2003
- Modified: Apr. 03, 2025
-
6.4
MEDIUMCVE-2003-0314
Snowblind Web Server 1.0 allows remote attackers to cause a denial of service (crash) via a URL that ends in a "</" sequence.... Read more
Affected Products : snowblind_web_server- EPSS Score: %4.01
- Published: Jun. 16, 2003
- Modified: Apr. 03, 2025
-
6.4
MEDIUMCVE-2003-0312
Directory traversal vulnerability in Snowblind Web Server 1.0 allows remote attackers to read arbitrary files via a .. (dot dot) in an HTTP request.... Read more
Affected Products : snowblind_web_server- EPSS Score: %3.62
- Published: Jun. 16, 2003
- Modified: Apr. 03, 2025
-
5.0
MEDIUMCVE-2003-0300
The IMAP Client for Sylpheed 0.8.11 allows remote malicious IMAP servers to cause a denial of service (crash) via certain large literal size values that cause either integer signedness errors or integer overflow errors.... Read more
- EPSS Score: %0.84
- Published: Jun. 16, 2003
- Modified: Apr. 03, 2025
-
5.0
MEDIUMCVE-2003-0290
Memory leak in eServ 2.9x allows remote attackers to cause a denial of service (memory exhaustion) via a large number of connections, whose memory is not freed when the connection is terminated.... Read more
Affected Products : eserv- EPSS Score: %13.34
- Published: Jun. 16, 2003
- Modified: Apr. 03, 2025
-
5.0
MEDIUMCVE-2003-0277
Directory traversal vulnerability in normal_html.cgi in Happycgi.com Happymall 4.3 and 4.4 allows remote attackers to read arbitrary files via .. (dot dot) sequences in the file parameter.... Read more
Affected Products : happymall- EPSS Score: %3.78
- Published: Jun. 16, 2003
- Modified: Apr. 03, 2025
-
7.5
HIGHCVE-2003-0371
Buffer overflow in Prishtina FTP client 1.x allows remote FTP servers to cause a denial of service (crash) and possibly execute arbitrary code via a long FTP banner.... Read more
Affected Products : prishtina_ftp- EPSS Score: %4.60
- Published: Jun. 16, 2003
- Modified: Apr. 03, 2025
-
2.6
LOWCVE-2003-0279
Multiple SQL injection vulnerabilities in the Web_Links module for PHP-Nuke 5.x through 6.5 allows remote attackers to steal sensitive information via numeric fields, as demonstrated using (1) the viewlink function and cid parameter, or (2) index.php.... Read more
Affected Products : php-nuke- EPSS Score: %0.02
- Published: Jun. 16, 2003
- Modified: Apr. 03, 2025
-
7.5
HIGHCVE-2002-1565
Buffer overflow in url_filename function for wget 1.8.1 allows attackers to cause a denial of service (segmentation fault) and possibly execute arbitrary code via a long URL.... Read more
Affected Products : immunix- EPSS Score: %0.94
- Published: Jun. 16, 2003
- Modified: Apr. 03, 2025
-
6.8
MEDIUMCVE-2003-0217
Cross-site scripting (XSS) vulnerability in Neoteris Instant Virtual Extranet (IVE) 3.01 and earlier allows remote attackers to insert arbitrary web script and bypass authentication via a certain CGI script.... Read more
Affected Products : instant_virtual_extranet- EPSS Score: %0.32
- Published: Jun. 16, 2003
- Modified: Apr. 03, 2025
-
7.2
HIGHCVE-2002-1155
Buffer overflow in KON kon2 0.3.9b and earlier allows local users to execute arbitrary code via a long -Coding command line argument.... Read more
Affected Products : linux- EPSS Score: %0.13
- Published: Jun. 16, 2003
- Modified: Apr. 03, 2025
-
7.2
HIGHCVE-2003-0289
Format string vulnerability in scsiopen.c of the cdrecord program in cdrtools 2.0 allows local users to gain privileges via format string specifiers in the dev parameter.... Read more
Affected Products : cdrecord- EPSS Score: %0.13
- Published: Jun. 16, 2003
- Modified: Apr. 03, 2025
-
7.5
HIGHCVE-2003-0354
Unknown vulnerability in GNU Ghostscript before 7.07 allows attackers to execute arbitrary commands, even when -dSAFER is enabled, via a PostScript file that causes the commands to be executed from a malicious print job.... Read more
Affected Products : linux- EPSS Score: %0.82
- Published: Jun. 16, 2003
- Modified: Apr. 03, 2025
-
6.8
MEDIUMCVE-2003-0310
Cross-site scripting (XSS) vulnerability in articleview.php for eZ publish 2.2 allows remote attackers to insert arbitrary web script.... Read more
Affected Products : ez_publish- EPSS Score: %0.37
- Published: Jun. 16, 2003
- Modified: Apr. 03, 2025