Aggregating NVD, CVE, and multi-source threat feeds, this list provides deep analysis of high-risk threats such as RCE. By integrating CVSS and EPSS models, the system dynamically tracks Exp (Exploit) resources and PoC availability to accurately assess Exploitability. Combined with official Patches and remediation strategies, it helps prioritize Vulnerability Management workflows, significantly shortening response cycles and securing your critical assets.
Assigner (CNA / source):[email protected] Remove this filter
| CVE | Description | Max CVSS | EPSS % | Published | Updated |
|---|---|---|---|---|---|
| CVE-2005-0362 | awstats.pl in AWStats 6.2 allows remote attackers to execute arbitrary commands via shell metacharacters in the (1) "pluginmode", (2) "loadplugin", or (3) "noloadplugin" parameters. | 4.6 | 0.19% | 2005-02-09 | 2026-04-16 |
| CVE-2005-0504 | Buffer overflow in the MoxaDriverIoctl function for the moxa serial driver (moxa.c) in Linux 2.2.x, 2.4.x, and 2.6.x before 2.6.22 allows local users to execute arbitrary code via a certain modified length value. | 4.6 | 0.17% | 2005-03-14 | 2026-04-16 |
| CVE-2005-0384 | Unknown vulnerability in the PPP driver for the Linux kernel 2.6.8.1 allows remote attackers to cause a denial of service (kernel crash) via a pppd client. | 5.0 | 12.77% | 2005-03-15 | 2026-04-16 |
| CVE-2005-0763 | Buffer overflow in Midnight Commander (mc) 4.5.55 and earlier may allow attackers to execute arbitrary code. | 4.6 | 0.10% | 2005-05-02 | 2026-04-16 |
| CVE-2005-0739 | The IAPP dissector (packet-iapp.c) for Ethereal 0.9.1 to 0.10.9 does not properly use certain routines for formatting strings, which could leave it vulnerable to buffer overflows, as demonstrated using modified length values that are not properly handled by the dissect_pdus and pduval_to_str functions. | 5.0 | 17.02% | 2005-05-02 | 2026-04-16 |
| CVE-2005-0448 | Race condition in the rmtree function in File::Path.pm in Perl before 5.8.4 allows local users to create arbitrary setuid binaries in the tree being deleted, a different vulnerability than CVE-2004-0452. | 1.2 | 0.06% | 2005-05-02 | 2026-04-16 |
| CVE-2005-0391 | geneweb 4.10 and earlier does not properly check file permissions and content during conversion, which allows attackers to modify arbitrary files. | 5.0 | 0.26% | 2005-05-02 | 2026-04-16 |
| CVE-2005-0390 | Buffer overflow in the HTTP redirection capability in conn.c for Axel before 1.0b may allow remote attackers to execute arbitrary code. | 7.5 | 4.10% | 2005-05-02 | 2026-04-16 |
| CVE-2005-0389 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2005-0814. Reason: This candidate is a duplicate of CVE-2005-0814. Notes: All CVE users should reference CVE-2005-0814 instead of this candidate. All references and descriptions in this candidate have been removed to prevent accidental usage | N/A | 0.26% | 2005-05-02 | 2023-11-07 |
| CVE-2005-0388 | Unknown vulnerability in the remoteping service in remstats 1.0.13 and earlier allows remote attackers to execute arbitrary commands "due to missing input sanitising." | 7.5 | 0.90% | 2005-05-02 | 2026-04-16 |
| CVE-2005-0387 | remstats 1.0.13 and earlier, when processing uptime data, allows local users to create or overwrite arbitrary files via a symlink attack on temporary files. | 2.1 | 0.08% | 2005-05-02 | 2026-04-16 |
| CVE-2005-0386 | Cross-site scripting (XSS) vulnerability in network.cgi in mailreader before 2.3.29 earlier allows remote attackers to inject arbitrary web script or HTML via MIME text/enriched or text/richtext messages. | 4.3 | 0.28% | 2005-05-02 | 2026-04-16 |
| CVE-2005-0385 | Buffer overflow in luxman before 0.41, if used with certain insecure svgalib libraries, allows local users to execute arbitrary code via a long -f command line argument. | 7.2 | 0.26% | 2005-05-02 | 2026-04-16 |
| CVE-2005-0372 | Directory traversal vulnerability in gftp before 2.0.18 for GTK+ allows remote malicious FTP servers to read arbitrary files via .. (dot dot) sequences in filenames returned from a LIST command. | 5.0 | 4.09% | 2005-05-02 | 2026-04-16 |
| CVE-2005-0363 | awstats.pl in AWStats 4.0 and 6.2 allows remote attackers to execute arbitrary commands via shell metacharacters in the config parameter. | 7.5 | 0.90% | 2005-05-02 | 2026-04-16 |
| CVE-2005-0241 | The httpProcessReplyHeader function in http.c for Squid 2.5-STABLE7 and earlier does not properly set the debug context when it is handling "oversized" HTTP reply headers, which might allow remote attackers to poison the cache or bypass access controls based on header size. | 5.0 | 86.22% | 2005-05-02 | 2026-04-16 |
| CVE-2005-0227 | PostgreSQL (pgsql) 7.4.x, 7.2.x, and other versions allows local users to load arbitrary shared libraries and execute code via the LOAD extension. | 4.3 | 0.12% | 2005-05-02 | 2026-04-16 |
| CVE-2005-0392 | ppxp does not drop root privileges before opening log files, which allows local users to execute arbitrary commands. | 7.2 | 0.06% | 2005-05-19 | 2026-04-16 |
| CVE-2005-1152 | popauth.c in qpopper 4.0.5 and earlier does not properly set the umask, which may cause qpopper to create files with group or world-writable permissions. | 2.1 | 0.07% | 2005-05-25 | 2026-04-16 |
| CVE-2005-1151 | qpopper 4.0.5 and earlier does not properly drop privileges before processing certain user-supplied files, which allows local users to overwrite or create arbitrary files as root. | 7.2 | 0.06% | 2005-05-25 | 2026-04-16 |