Vulnerabilities (CVE)

Filtered by NVD-CWE-Other
Total 29911 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2002-0338 1 Ritlabs 1 The Bat 2026-06-16 5.0 MEDIUM N/A
The Bat! 1.53d and 1.54beta, and possibly other versions, allows remote attackers to cause a denial of service (crash) via an attachment whose name includes an MS-DOS device name.
CVE-2002-0337 1 Realnetworks 1 Realplayer 2026-06-16 5.4 MEDIUM N/A
RealPlayer 8 allows remote attackers to cause a denial of service (CPU utilization) via malformed .mp3 files.
CVE-2002-0336 1 Galacticomm Technologies 2 Worldgroup, Worldgroup Lite Personal Server 2026-06-16 7.5 HIGH N/A
Buffer overflow in Galacticomm Worldgroup FTP server 3.20 and earlier allows remote attackers to cause a denial of service, and possibly execute arbitrary code, via a LIST command containing a large number of / (slash), * (wildcard), and .. characters.
CVE-2002-0335 1 Galacticomm Technologies 2 Worldgroup, Worldgroup Lite Personal Server 2026-06-16 10.0 HIGH N/A
Buffer overflow in Galacticomm Worldgroup web server 3.20 and earlier allows remote attackers to cause a denial of service, and possibly execute arbitrary code, via a long HTTP GET request.
CVE-2002-0334 1 Xtell 1 Xtell 2026-06-16 2.1 LOW N/A
xtell (xtelld) 1.91.1 and earlier, and 2.x before 2.7, allows local users to modify files via a symlink attack on the .xtell-log file.
CVE-2002-0333 1 Xtell 1 Xtell 2026-06-16 5.0 MEDIUM N/A
Directory traversal vulnerability in xtell (xtelld) 1.91.1 and earlier, and 2.x before 2.7, allows remote attackers to read files with short names, and local users to read more files using a symlink with a short name, via a .. in the TTY argument.
CVE-2002-0332 1 Xtell 1 Xtell 2026-06-16 7.5 HIGH N/A
Buffer overflows in xtell (xtelld) 1.91.1 and earlier, and 2.x before 2.7, allows remote attackers to execute arbitrary code via (1) a long DNS hostname that is determined using reverse DNS lookups, (2) a long AUTH string, or (3) certain data in the xtell request.
CVE-2002-0331 1 Alcatech Gmbh 1 Bpm Studio Pro 2026-06-16 5.0 MEDIUM N/A
Directory traversal vulnerability in the HTTP server for BPM Studio Pro 4.2 allows remote attackers to read arbitrary files via a .. (dot dot) in the HTTP request.
CVE-2002-0330 1 Openbb 1 Openbb 2026-06-16 7.5 HIGH N/A
Cross-site scripting vulnerability in codeparse.php of Open Bulletin Board (OpenBB) 1.0.0 allows remote attackers to execute arbitrary script and steal cookies via Javascript in the IMG tag.
CVE-2002-0329 1 Snitz Communications 1 Snitz Forums 2000 2026-06-16 7.5 HIGH N/A
Cross-site scripting vulnerability in Snitz Forums 2000 3.3.03 and earlier allows remote attackers to execute arbitrary script as other Forums 2000 users via Javascript in an IMG tag.
CVE-2002-0328 1 Ikonboard.com 1 Ikonboard 2026-06-16 7.5 HIGH N/A
Cross-site scripting vulnerability in Ikonboard 3.0.1 allows remote attackers to execute arbitrary script as other Ikonboard users and steal cookies via Javascript in an IMG tag.
CVE-2002-0327 1 Century Software 1 Term 2026-06-16 7.2 HIGH N/A
Buffer overflow in Century Software TERM allows local users to gain root privileges via a long tty argument to the callin program.
CVE-2002-0326 1 Working Resources Inc. 1 Badblue 2026-06-16 7.5 HIGH N/A
Cross-site scripting vulnerability in BadBlue before 1.6.1 beta allows remote attackers to execute arbitrary script and possibly additional commands via a URL that contains Javascript.
CVE-2002-0325 1 Working Resources Inc. 1 Badblue 2026-06-16 5.0 MEDIUM N/A
Directory traversal vulnerability in BadBlue before 1.6.1 allows remote attackers to read arbitrary files via a ... (modified dot dot) in the URL.
CVE-2002-0324 1 Noah Gray 1 Graymatter 2026-06-16 7.5 HIGH N/A
Greymatter 1.21c and earlier with the Bookmarklet feature enabled allows remote attackers to read a cleartext password and gain administrative privileges by guessing the name of a gmrightclick-*.reg file which contains the administrator name and password in cleartext, then retrieving the file from the web server before the Greymatter administrator performs a "Clear And Exit" action.
CVE-2002-0323 1 Nombas 1 Scriptease Webserver 2026-06-16 5.0 MEDIUM N/A
comment2.jse in ScriptEase:WebServer allows remote attackers to read arbitrary files by specifying the target file as an argument in the URL.
CVE-2002-0322 1 Yahoo 1 Messenger 2026-06-16 7.5 HIGH N/A
Yahoo! Messenger 4.0 sends user passwords in cleartext, which could allow remote attackers to gain privileges of other users via sniffing.
CVE-2002-0321 1 Yahoo 1 Messenger 2026-06-16 5.0 MEDIUM N/A
Yahoo! Messenger 5.0 allows remote attackers to spoof other users by modifying the username and using the spoofed username for social engineering or denial of service (flooding) attacks.
CVE-2002-0320 1 Yahoo 1 Messenger 2026-06-16 7.5 HIGH N/A
Buffer overflow in Yahoo! Messenger 5.0 allows remote attackers to cause a denial of service and possibly execute arbitrary code via a long (1) message or (2) IMvironment field.
CVE-2002-0319 1 Powie 1 Pforum 2026-06-16 7.5 HIGH N/A
Cross-site scripting vulnerability in edituser.php for pforum 1.14 and earlier allows remote attackers to execute script and steal cookies from other users via Javascript in a username.