Total
29907 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2002-2118 | 1 Blue World Communications | 1 Lasso Web Data Engine | 2026-06-16 | 5.0 MEDIUM | N/A |
| Buffer overflow in Blue World Lasso Web Data Engine 3.6.5 allows remote attackers to cause a denial of service via a long URL. | |||||
| CVE-2002-2117 | 1 Microsoft | 1 Windows Xp | 2026-06-16 | 5.0 MEDIUM | N/A |
| Microsoft Windows XP allows remote attackers to cause a denial of service (CPU consumption) by flooding UDP port 500 (ISAKMP). | |||||
| CVE-2002-2116 | 1 Netgear | 2 Rm356, Rt338 | 2026-06-16 | 5.0 MEDIUM | N/A |
| Netgear RM-356 and RT-338 series SOHO routers allow remote attackers to cause a denial of service (crash) via a UDP port scan, as demonstrated using nmap. | |||||
| CVE-2002-2115 | 1 Hns | 2 Hns, Hns-lite | 2026-06-16 | 4.3 MEDIUM | N/A |
| Cross-site scripting (XSS) vulnerability in Hyper NIKKI System (HNS) Lite before 0.9 and HNS before 2.10-pl2 allows remote attackers to inject arbitrary web script or HTML. | |||||
| CVE-2002-2114 | 1 Netjuke | 1 Netjuke | 2026-06-16 | 7.5 HIGH | N/A |
| Artekopia Netjuke before 1.0 b7 allows remote attackers to execute arbitrary code on the web server, possibly via the section parameter, which is passed to an eval call. | |||||
| CVE-2002-2113 | 1 Agh | 1 Htmlsearch | 2026-06-16 | 7.5 HIGH | N/A |
| search.cgi in AGH HTMLsearch 1.0 allows remote attackers to execute arbitrary commands via shell metacharacters in the template parameter. | |||||
| CVE-2002-2112 | 1 Rca | 1 Digital Cable Modem | 2026-06-16 | 5.0 MEDIUM | N/A |
| RCA Digital Cable Modem DCM225 and DCM225E, and other modems that must conform to the Data-over-Cable Service Interface Specifications DOCSIS standard, uses the "public" community string for SNMP access, which allows remote attackers to read or write MIB information. | |||||
| CVE-2002-2111 | 1 Gianni Tedesco | 1 Fwmon | 2026-06-16 | 5.0 MEDIUM | N/A |
| Fwmon before 1.0.10 allows remote attackers to cause a denial of service (crash) by causing the kernel to return a large packet. | |||||
| CVE-2002-2110 | 1 Rca | 1 Digital Cable Modem | 2026-06-16 | 5.0 MEDIUM | N/A |
| The RCA Digital Cable Modems DCM225 and DCM225E allow remote attackers to cause a denial of service (modem device reset) by connecting to port 80 on the 10.0.0.0/8 device. | |||||
| CVE-2002-2109 | 1 Matt Wright | 1 Formmail | 2026-06-16 | 7.5 HIGH | N/A |
| Matt Wright FormMail 1.9 and earlier allows remote attackers to bypass the HTTP_REFERER check and conduct unauthorized activities via (1) a blank referer, (2) a spoofed referer with a trusted domain/URL after the beginning of the referer, or (3) a spoofed referer with a trusted domain/URL in the beginning (hostname) portion of the referer. | |||||
| CVE-2002-2108 | 1 Sony | 1 Vaio Manual Cybersupport | 2026-06-16 | 5.0 MEDIUM | N/A |
| Unknown vulnerability in the "VAIO Manual" software in certain Sony VAIO personal computers sold from November 2001 to January 2002, allows remote attackers to modify data via a web page or HTML e-mail. | |||||
| CVE-2002-2107 | 1 Veridis | 1 Openkeyserver | 2026-06-16 | 4.3 MEDIUM | N/A |
| Cross-site scripting (XSS) vulnerability in the lookup script in Veridis OpenKeyServer (OKS) 1.2 allows remote attackers to inject arbitrary web script or HTML via the search parameter. | |||||
| CVE-2002-2106 | 1 Wikkitikkitavi | 1 Wikkitikkitavi | 2026-06-16 | 7.5 HIGH | N/A |
| PHP remote file inclusion vulnerability in WikkiTikkiTavi before 0.21 allows remote attackers to execute arbitrary PHP code via the TemplateDir variable, as demonstrated using conflict.php. | |||||
| CVE-2002-2105 | 1 Microsoft | 1 Windows Xp | 2026-06-16 | 2.1 LOW | N/A |
| Microsoft Windows XP allows local users to prevent the system from booting via a corrupt explorer.exe.manifest file. | |||||
| CVE-2002-2104 | 1 Ganglia | 1 Php Rrd Web Client | 2026-06-16 | 7.5 HIGH | N/A |
| graph.php in Ganglia PHP RRD Web Client 1.0.2 allows remote attackers to execute arbitrary commands via the command parameter, which is provided to the passthru function. | |||||
| CVE-2002-2103 | 1 Apache | 1 Http Server | 2026-06-16 | 5.0 MEDIUM | N/A |
| Apache before 1.3.24, when writing to the log file, records a spoofed hostname from the reverse lookup of an IP address, even when a double-reverse lookup fails, which allows remote attackers to hide the original source of activities. | |||||
| CVE-2002-2102 | 1 Jcraft | 1 Jzlib | 2026-06-16 | 5.0 MEDIUM | N/A |
| InfBlocks.java in JCraft JZlib before 0.0.7 allow remote attackers to cause a denial of service (NullPointerException) via an invalid block of deflated data. | |||||
| CVE-2002-2101 | 1 Microsoft | 1 Outlook | 2026-06-16 | 7.5 HIGH | N/A |
| Microsoft Outlook 2002 allows remote attackers to execute arbitrary JavaScript code, even when scripting is disabled, via an "about:" or "javascript:" URI in the href attribute of an "a" tag. | |||||
| CVE-2002-2100 | 1 Microsoft | 1 Outlook | 2026-06-16 | 5.0 MEDIUM | N/A |
| Microsoft Outlook 2002 allows remote attackers to embed bypass the file download restrictions for attachments via an HTML email message that uses an IFRAME to reference malicious content. | |||||
| CVE-2002-2099 | 1 Gnu | 1 Data Display Debugger | 2026-06-16 | 7.2 HIGH | N/A |
| Buffer overflow in the GNU DataDisplay Debugger (DDD) 3.3.1 allows local users to execute arbitrary code and possibly gain privileges via a long HOME environment variable. NOTE: since DDD is not installed setuid or setgid, perhaps this issue should not be included in CVE. | |||||