2003 CVE Vulnerabilities
1,555 CVEs published in 2003.
| CVE ID | Severity | CVSS | EPSS | Published | Description |
|---|---|---|---|---|---|
| CVE-2003-1178 | — | — | 2.0% | Dec 31, 2003 | Eval injection vulnerability in comments.php in Advanced Poll 2.0.2 allows remote attackers to execute arbitrary PHP cod... |
| CVE-2003-1231 | — | — | 1.3% | Dec 31, 2003 | Cross-site scripting (XSS) vulnerability in index.php in ECW-Shop 5.5 allows remote attackers to inject arbitrary web sc... |
| CVE-2003-1232 | — | — | 3.0% | Dec 31, 2003 | Emacs 21.2.1 does not prompt or warn the user before executing Lisp code in the local variables section of a text file, ... |
| CVE-2003-1226 | — | — | 0.2% | Dec 31, 2003 | BEA WebLogic Server and Express 7.0 and 7.0.0.1 stores certain secrets concerning password encryption insecurely in conf... |
| CVE-2003-1227 | — | — | 6.7% | Dec 31, 2003 | PHP remote file include vulnerability in index.php for Gallery 1.4 and 1.4-pl1, when running on Windows or in Configurat... |
| CVE-2003-0363 | — | — | 1.4% | Dec 31, 2003 | Format string vulnerability in LICQ 1.2.6, 1.0.3 and possibly other versions allows remote attackers to perform unknown ... |
| CVE-2003-1250 | — | — | 1.8% | Dec 31, 2003 | Efficient Networks 5861 DSL router, when running firmware 5.3.80 configured to block incoming TCP SYN, packets allows re... |
| CVE-2003-1253 | — | — | 1.4% | Dec 31, 2003 | PHP remote file inclusion vulnerability in Bookmark4U 1.8.3 allows remote attackers to execute arbitrary PHP code viaa U... |
| CVE-2003-1249 | — | — | 2.6% | Dec 31, 2003 | WebIntelligence 2.7.1 uses guessable user session cookies, which allows remote attackers to hijack sessions. |
| CVE-2003-1082 | — | — | 0.4% | Dec 31, 2003 | Buffer overflow in utmp_update for Solaris 2.6 through 9 allows local users to gain root privileges, as identified by Su... |
| CVE-2003-1251 | — | — | 7.6% | Dec 31, 2003 | The (1) menu.inc.php, (2) datasets.php and (3) mass_operations.inc.php (mistakenly referred to as mass_opeations.inc.php... |
| CVE-2003-1282 | — | — | 1.4% | Dec 31, 2003 | IBM Net.Data allows remote attackers to obtain sensitive information such as path names, server names and possibly user ... |
| CVE-2003-1287 | — | — | 0.4% | Dec 31, 2003 | Sambar Server before 6.0 beta 3 allows attackers with physical access to execute arbitrary code via a request with an MS... |
| CVE-2003-1154 | — | — | 1.7% | Dec 31, 2003 | MAILsweeper for SMTP 4.3 allows remote attackers to bypass virus protection via a mail message with a malformed zip atta... |
| CVE-2003-1290 | — | — | 2.4% | Dec 31, 2003 | BEA WebLogic Server and WebLogic Express 6.1, 7.0, and 8.1, with RMI and anonymous admin lookup enabled, allows remote a... |
| CVE-2003-1285 | — | — | 1.9% | Dec 31, 2003 | Multiple cross-site scripting (XSS) vulnerabilities in Sambar Server before 6.0 beta 6 allow remote attackers to inject ... |
| CVE-2003-1286 | — | — | 3.4% | Dec 31, 2003 | HTTP Proxy in Sambar Server before 6.0 beta 6, when security.ini lacks a 127.0.0.1 proxydeny entry, allows remote attack... |
| CVE-2003-1292 | — | — | 3.3% | Dec 31, 2003 | PHP remote file include vulnerability in Derek Ashauer ashNews 0.83 allows remote attackers to include and execute arbit... |
| CVE-2003-1291 | — | — | 0.3% | Dec 31, 2003 | VMware ESX Server 1.5.2 before Patch 4 allows local users to execute arbitrary programs as root via certain modified VMw... |
| CVE-2003-1294 | — | — | 0.4% | Dec 31, 2003 | Xscreensaver before 4.15 creates temporary files insecurely in (1) driver/passwd-kerberos.c, (2) driver/xscreensaver-get... |
| CVE-2003-1293 | — | — | 0.9% | Dec 31, 2003 | Multiple cross-site scripting (XSS) vulnerabilities in NukedWeb GuestBookHost allow remote attackers to inject arbitrary... |
| CVE-2003-0463 | — | — | — | Dec 31, 2003 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was withdrawn by its CNA. ... |
| CVE-2003-1343 | — | — | 2.6% | Dec 31, 2003 | Trend Micro ScanMail for Exchange (SMEX) before 3.81 and before 6.1 might install a back door account in smg_Smxcfg30.ex... |
| CVE-2003-1557 | — | — | 4.6% | Dec 31, 2003 | Off-by-one buffer overflow in spamc of SpamAssassin 2.40 through 2.43, when using BSMTP mode ("-B"), allows remote attac... |
| CVE-2003-1220 | — | — | 1.2% | Dec 31, 2003 | BEA WebLogic Server proxy plugin for BEA Weblogic Express and Server 6.1 through 8.1 SP 1 allows remote attackers to cau... |
Check if your code is affected by 2003 CVEs
Strix scans your code and infrastructure for known vulnerabilities automatically.
Scan your code now