Full List

Search

Recent Vulnerabilities

• CVE-2000-0106 • published on February 8, 2000 The EasyCart shopping cart application allows remote users to modify sensitive purchase information via hidden form fields.
• CVE-2000-0119 • published on February 8, 2000 The default configurations for McAfee Virus Scan and Norton Anti-Virus virus checkers do not check files in the RECYCLED folder that is used by the Windows Recycle Bin utility, which allows attackers to store malicious code without detection.
• CVE-2000-0123 • published on February 8, 2000 The shopping cart application provided with Filemaker allows remote users to modify sensitive purchase information via hidden form fields.
• CVE-2000-0110 • published on February 8, 2000 The WebSiteTool shopping cart application allows remote users to modify sensitive purchase information via hidden form fields.
• CVE-2000-0101 • published on February 8, 2000 The Make-a-Store OrderPage shopping cart application allows remote users to modify sensitive purchase information via hidden form fields.
• CVE-2000-0105 • published on February 8, 2000 Outlook Express 5.01 and Internet Explorer 5.01 allow remote attackers to view a user's email messages via a script that accesses a variable that references subsequent email messages that are read by the client.
• CVE-2000-0108 • published on February 8, 2000 The Intellivend shopping cart application allows remote users to modify sensitive purchase information via hidden form fields.
• CVE-2000-0122 • published on February 8, 2000 Frontpage Server Extensions allows remote attackers to determine the physical path of a virtual directory via a GET request to the htimage.exe CGI program.
• CVE-2000-0124 • published on February 8, 2000 surfCONTROL SuperScout does not properly asign a category to web sites with a . (dot) at the end, which may allow users to bypass web access restrictions.
• CVE-2000-0125 • published on February 8, 2000 wwwthreads does not properly cleanse numeric data or table names that are passed to SQL queries, which allows remote attackers to gain privileges for wwwthreads forums.
• CVE-2000-0126 • published on February 8, 2000 Sample Internet Data Query (IDQ) scripts in IIS 3 and 4 allow remote attackers to read files via a .. (dot dot) attack.
• CVE-2000-0093 • published on February 8, 2000 An installation of Red Hat uses DES password encryption with crypt() for the initial password, instead of md5.
• CVE-2000-0096 • published on February 8, 2000 Buffer overflow in qpopper 3.0 beta versions allows local users to gain privileges via a long LIST command.
• CVE-2000-0102 • published on February 8, 2000 The SalesCart shopping cart application allows remote users to modify sensitive purchase information via hidden form fields.
• CVE-2000-0103 • published on February 8, 2000 The SmartCart shopping cart application allows remote users to modify sensitive purchase information via hidden form fields.
• CVE-2000-0109 • published on February 8, 2000 The mcsp Client Site Processor system (MultiCSP) in Standard and Poor's ComStock is installed with several accounts that have no passwords or easily guessable default passwords.
• CVE-2000-0114 • published on February 8, 2000 Frontpage Server Extensions allows remote attackers to determine the name of the anonymous account via an RPC POST request to shtml.dll in the /_vti_bin/ virtual directory.
• CVE-2000-0115 • published on February 8, 2000 IIS allows local users to cause a denial of service via invalid regular expressions in a Visual Basic script in an ASP page.
• CVE-2000-0118 • published on February 8, 2000 The Red Hat Linux su program does not log failed password guesses if the su process is killed before it times out, which allows local attackers to conduct brute force password guessing.
• CVE-2000-0137 • published on February 8, 2000 The CartIt shopping cart application allows remote users to modify sensitive purchase information via hidden form fields.