CVE-2009-2226

Cross-site scripting XSS vulnerability in Let's PHP! Tree BBS 2004/11/23 and earlier allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...

CVE-2005-0672

Carsten's 3D Engine Ca3DE, March 2004 version and earlier, allows remote attackers to execute arbitrary code via text strings that are not null terminated, which triggers a null dereference...