month report
May 2005
Data as of Jun 11, 2026, 06:04 UTCSnapshot v1 Sources CVEList V5+NVD+GHSA+CSAF+FSTEC BDU+CISA KEV+EPSS+Nuclei templates Methodology →
May 2005 closed with 861 published CVEs. 31 criticals, apple led volume, mostly via mac os x. Biggest breakout: oracle at ×20.0 their 12-month median. Top weakness class — CWE-20 (9 CVE). 10 vendors cracked the top-100 for the first time.
Total CVEs
861
— MoM— YoY
Severity mix
31 / 298
critical / high
KEV added
0
0 ransomware-linked
Nuclei coverage
0.3%
3 CVEs with templates
Time to exploit
How fast the community ships detection after a CVE drops.
Days → Nuclei (median)
7590.7
n=3
Within 7 days
0.0%
Within 30 days
0.0%
Days → KEV (median)
—
n=0
Weakness × Vendor
What's spreading where in May 2005
Cells shaded by share of vendor's hottest weakness. Click any cell to open the CWE history.
Most discussed CVEs — May 2005
No CVE mentions in the news this month yet.
Breakout vendors
CVE count ≥3× their own 12-period median.
- 20.0×oracle20 CVE
- 8.0×sun8 CVE
- 7.0×apple28 CVE
- 7.0×ipswitch7 CVE
- 6.0×phpbb group9 CVE
- 5.0×francisco burzi25 CVE
- 5.0×bea10 CVE
- 4.0×progress4 CVE
- 4.0×freebsd4 CVE
- 3.6×gnu9 CVE
First time in top-100
Vendors never in top-100 in the prior 24 periods.
- #5postnuke software foundation11 CVE
- #15coppermine6 CVE
- #16e1076 CVE
- #19s9y6 CVE
- #20tiki6 CVE
- #22esesix5 CVE
- #24mambo5 CVE
- #26openbb5 CVE
- #27open solution5 CVE
- #28pwsphp5 CVE
Top vendors
Ranked by distinct CVE count this period.
- 28 CVECVSS 6.0×7.0PoC 4mac os x (22) · mac os x server (13) · terminal (2)
- 25 CVECVSS 5.8×5.0PoC 11php-nuke (25)
- 20 CVE1 critCVSS 5.9×20.0PoC 3weblogic portal (7) · application server (5) · oracle9i (3)
- 15 CVECVSS 5.5×3.3ethereal (15)
- 11 CVECVSS 5.4NEWPoC 1postnuke (10) · postcalendar (1)
- 10 CVE1 critCVSS 6.0×5.0PoC 1weblogic server (9) · tuxedo (1)
- 10 CVECVSS 4.8PoC 2internet explorer (3) · asp.net (2) · windows 2003 server (2)
- 10 CVE1 critCVSS 5.7PoC 4debian gnu/linux (10)
- 9 CVECVSS 5.7×3.6mailutils (4) · gdb (2) · wget (1)
- 9 CVECVSS 5.9PoC 1firefox (6) · bugzilla (3) · mozilla (2)
- 9 CVECVSS 5.6×6.0PoC 4phpbb (9)
- 8 CVECVSS 5.0×8.0sunos (3) · solaris (3) · jre (1)
- 7 CVE2 critCVSS 7.7×7.0PoC 2imail (4) · imail server (3) · ipswitch collaboration suite (3)
- 7 CVECVSS 5.7PoC 2linux kernel (7)
- 6 CVECVSS 6.1NEWPoC 3coppermine photo gallery (6)
- 6 CVECVSS 5.1NEWPoC 3e107 (6)
- 6 CVECVSS 5.7×3.0web jetadmin (2) · openview network node manager (1) · openview radia management portal (1)
- 6 CVECVSS 6.5netware (5) · zenworks desktops (2) · zenworks remote management (1)
- 6 CVE2 critCVSS 7.7NEWserendipity (6)
- 6 CVECVSS 6.1NEWPoC 3tikiwiki cms\/groupware (6)
- 5 CVE1 critCVSS 6.3PoC 1debian linux (2) · qpopper (2) · ppxp (1)
- 5 CVE1 critCVSS 6.1NEWPoC 1thintune xs (4) · thintune extreme (4) · thintune l (4)
- 5 CVECVSS 6.6PoC 3invision board (3) · invision power board (2) · invision gallery (1)
- 5 CVECVSS 5.9NEWPoC 2mambo open source (2) · mambo site server (2) · mambo open source 4.5 (1)
- 5 CVECVSS 6.9PoC 2maxwebportal (5)
- 5 CVECVSS 7.1NEWPoC 2openbb (5)
- 5 CVECVSS 5.7NEWquick.forum (3) · quick.cart (2)
- 5 CVECVSS 7.4NEWpwsphp (5)
- 5 CVECVSS 5.4irix (4) · propack (1)
- 5 CVECVSS 4.7messenger (5)
- 4 CVECVSS 6.9NEWPoC 1advanced poll (4)
- 4 CVECVSS 7.3NEWPoC 1claroline (4)
- 4 CVECVSS 6.7NEWproms (4)
- 4 CVECVSS 4.7×4.0freebsd (4)
- 4 CVECVSS 5.0PoC 1linux (3) · linux webapp-config (1) · portage (1)
- 4 CVECVSS 4.8PoC 1gentoo linux (4)
- 4 CVECVSS 5.6NEWPoC 3digital surveillance system (2) · geohttpserver (2)
- 4 CVECVSS 5.4NEWgroove workspace (4) · virtual office (4)
- 4 CVECVSS 5.2lotus notes (2) · lotus domino (1) · informix dynamic server (1)
- 4 CVECVSS 3.4NEWweb mail (4)
- 4 CVECVSS 6.1NEWPoC 1jgs-portal (4)
- 4 CVECVSS 3.4NEWmail server (4)
- 4 CVECVSS 6.1NEWPoC 1mybloggie (4)
- 4 CVECVSS 7.3PoC 1osticket (4)
- 4 CVECVSS 6.7×4.0PoC 3ws ftp server (4)
- 4 CVECVSS 6.1NEWprotector system (4)
- 4 CVECVSS 4.3PoC 1enterprise linux (2) · enterprise linux desktop (2) · interchange (1)
- 4 CVECVSS 7.0NEWPoC 3sitepanel (4)
- 4 CVECVSS 4.8NEWPoC 4tinyserver (4)
- 4 CVECVSS 6.7NEWpostmaster (4)
| # | Vendor | CVEs | Crit | KEV | Nuclei | Signals | Top products | Δ | |
|---|---|---|---|---|---|---|---|---|---|
| 1 | apple | 28 | · | · | · | ×7.0PoC 4 | mac os x (22) · mac os x server (13) · terminal (2) | — | |
| 2 | francisco burzi | 25 | · | · | · | ×5.0PoC 11 | php-nuke (25) | — | |
| 3 | oracle | 20 | 1 | · | · | ×20.0PoC 3 | weblogic portal (7) · application server (5) · oracle9i (3) | — | |
| 4 | ethereal group | 15 | · | · | · | ×3.3 | ethereal (15) | — | |
| 5 | postnuke software foundation | 11 | · | · | · | NEWPoC 1 | postnuke (10) · postcalendar (1) | — | |
| 6 | bea | 10 | 1 | · | · | ×5.0PoC 1 | weblogic server (9) · tuxedo (1) | — | |
| 7 | microsoft | 10 | · | · | · | PoC 2 | internet explorer (3) · asp.net (2) · windows 2003 server (2) | — | |
| 8 | сообщество свободного программного обеспечения | 10 | 1 | · | · | PoC 4 | debian gnu/linux (10) | — | |
| 9 | gnu | 9 | · | · | · | ×3.6 | mailutils (4) · gdb (2) · wget (1) | — | |
| 10 | mozilla | 9 | · | · | · | PoC 1 | firefox (6) · bugzilla (3) · mozilla (2) | — | |
| 11 | phpbb group | 9 | · | · | · | ×6.0PoC 4 | phpbb (9) | — | |
| 12 | sun | 8 | · | · | · | ×8.0 | sunos (3) · solaris (3) · jre (1) | — | |
| 13 | ipswitch | 7 | 2 | · | · | ×7.0PoC 2 | imail (4) · imail server (3) · ipswitch collaboration suite (3) | — | |
| 14 | linux | 7 | · | · | · | PoC 2 | linux kernel (7) | — | |
| 15 | coppermine | 6 | · | · | · | NEWPoC 3 | coppermine photo gallery (6) | — | |
| 16 | e107 | 6 | · | · | · | NEWPoC 3 | e107 (6) | — | |
| 17 | hp | 6 | · | · | · | ×3.0 | web jetadmin (2) · openview network node manager (1) · openview radia management portal (1) | — | |
| 18 | novell | 6 | · | · | · | netware (5) · zenworks desktops (2) · zenworks remote management (1) | — | ||
| 19 | s9y | 6 | 2 | · | · | NEW | serendipity (6) | — | |
| 20 | tiki | 6 | · | · | · | NEWPoC 3 | tikiwiki cms\/groupware (6) | — | |
| 21 | debian | 5 | 1 | · | · | PoC 1 | debian linux (2) · qpopper (2) · ppxp (1) | — | |
| 22 | esesix | 5 | 1 | · | · | NEWPoC 1 | thintune xs (4) · thintune extreme (4) · thintune l (4) | — | |
| 23 | invision power services | 5 | · | · | · | PoC 3 | invision board (3) · invision power board (2) · invision gallery (1) | — | |
| 24 | mambo | 5 | · | · | · | NEWPoC 2 | mambo open source (2) · mambo site server (2) · mambo open source 4.5 (1) | — | |
| 25 | maxwebportal | 5 | · | · | · | PoC 2 | maxwebportal (5) | — | |
| 26 | openbb | 5 | · | · | · | NEWPoC 2 | openbb (5) | — | |
| 27 | open solution | 5 | · | · | · | NEW | quick.forum (3) · quick.cart (2) | — | |
| 28 | pwsphp | 5 | · | · | · | NEW | pwsphp (5) | — | |
| 29 | sgi | 5 | · | · | · | irix (4) · propack (1) | — | ||
| 30 | yahoo | 5 | · | · | · | messenger (5) | — | ||
| 31 | advanced poll | 4 | · | · | · | NEWPoC 1 | advanced poll (4) | — | |
| 32 | claroline | 4 | · | · | · | NEWPoC 1 | claroline (4) | — | |
| 33 | electricmonk | 4 | · | · | · | NEW | proms (4) | — | |
| 34 | freebsd | 4 | · | · | · | ×4.0 | freebsd (4) | — | |
| 35 | gentoo | 4 | · | · | · | PoC 1 | linux (3) · linux webapp-config (1) · portage (1) | — | |
| 36 | gentoo foundation inc. | 4 | · | · | · | PoC 1 | gentoo linux (4) | — | |
| 37 | geovision | 4 | · | · | · | NEWPoC 3 | digital surveillance system (2) · geohttpserver (2) | — | |
| 38 | groove | 4 | · | · | · | NEW | groove workspace (4) · virtual office (4) | — | |
| 39 | ibm | 4 | · | · | · | lotus notes (2) · lotus domino (1) · informix dynamic server (1) | — | ||
| 40 | icewarp | 4 | · | · | · | NEW | web mail (4) | — | |
| 41 | jgs-xa | 4 | · | · | · | NEWPoC 1 | jgs-portal (4) | — | |
| 42 | merak | 4 | · | · | · | NEW | mail server (4) | — | |
| 43 | mywebland | 4 | · | · | · | NEWPoC 1 | mybloggie (4) | — | |
| 44 | osticket | 4 | · | · | · | PoC 1 | osticket (4) | — | |
| 45 | progress | 4 | · | · | · | ×4.0PoC 3 | ws ftp server (4) | — | |
| 46 | protector system | 4 | · | · | · | NEW | protector system (4) | — | |
| 47 | redhat | 4 | · | · | · | PoC 1 | enterprise linux (2) · enterprise linux desktop (2) · interchange (1) | — | |
| 48 | sitepanel | 4 | · | · | · | NEWPoC 3 | sitepanel (4) | — | |
| 49 | tinyserver | 4 | · | · | · | NEWPoC 4 | tinyserver (4) | — | |
| 50 | woppoware | 4 | · | · | · | NEW | postmaster (4) | — |
Sectors
Solution categories ranked by distinct CVE count this period.
- Web & CMS Plugins246 CVE2 crit107 vendorsCVSS 6.4php-nuke (26) · postnuke (12) · e107 (6)
- Enterprise Software76 CVE15 crit30 vendorsCVSS 7.2imail (4) · osticket (4) · sitepanel (4)
- Operating Systems73 CVE4 crit22 vendorsCVSS 5.5debian gnu/linux (10) · linux kernel (7) · netware (5)
- Security Products51 CVE2 crit24 vendorsCVSS 7.5clamav (3) · activescan (2) · avast antivirus (2)
- Communications44 CVE5 crit28 vendorsCVSS 7.0mail server (4) · web mail (4) · leafnode (3)
- Consumer Software42 CVE2 crit25 vendorsCVSS 7.4terminator 3 war of the machines (3) · warrior kings battles (2) · cd-key validation system (1)
- 1 crit28 vendorsCVSS 7.5crob ftp server (3) · golden ftp server (2) · netfile ftp web server (2)
- OSS Libraries30 CVE2 crit17 vendorsCVSS 7.2mailutils (4) · pico server (3) · gdb (2)
- Mobile Apps28 CVE1 vendorsCVSS 6.0mac os x (22) · mac os x server (13) · terminal (2)
- Databases26 CVE1 crit7 vendorsCVSS 5.7weblogic portal (7) · application server (5) · oracle9i (3)
- DevTools & CI12 CVE7 vendorsCVSS 5.0asprunner (4) · unreal engine (2) · the bat (1)
- Cloud & SaaS12 CVE8 crit8 vendorsCVSS 8.0inoculateit (2) · etrust antivirus (1) · etrust antivirus ee (1)
- ICS / OT / IoT12 CVE8 crit5 vendorsCVSS 6.1digital surveillance system (2) · geohttpserver (2) · flexwatch network video server (1)
- Hardware Firmware4 CVE2 vendorsCVSS 6.3eudora (2) · wlan 11b broadband router firmware (2)
- Unclassified105 CVE7 crit74 vendorsCVSS 6.1pwsphp (5) · proms (4) · protector system (4)
| Sector | CVEs | Crit | KEV | Vendors | Products | Avg CVSS | Top products |
|---|---|---|---|---|---|---|---|
| Web & CMS Plugins▸ 6 | 246 | 2 | · | 107 | 121 | 6.4 | php-nuke (26) · postnuke (12) · e107 (6) |
| Enterprise Software▸ 5 | 76 | 15 | · | 30 | 52 | 7.2 | imail (4) · osticket (4) · sitepanel (4) |
| Operating Systems▸ 3 | 73 | 4 | · | 22 | 51 | 5.5 | debian gnu/linux (10) · linux kernel (7) · netware (5) |
| Security Products▸ 4 | 51 | 2 | · | 24 | 31 | 7.5 | clamav (3) · activescan (2) · avast antivirus (2) |
| Communications▸ 3 | 44 | 5 | · | 28 | 34 | 7.0 | mail server (4) · web mail (4) · leafnode (3) |
| Consumer Software▸ 5 | 42 | 2 | · | 25 | 39 | 7.4 | terminator 3 war of the machines (3) · warrior kings battles (2) · cd-key validation system (1) |
| Networking Infrastructure▸ 6 | 41 | 1 | · | 28 | 92 | 7.5 | crob ftp server (3) · golden ftp server (2) · netfile ftp web server (2) |
| OSS Libraries▸ 3 | 30 | 2 | · | 17 | 21 | 7.2 | mailutils (4) · pico server (3) · gdb (2) |
| Mobile Apps▸ 1 | 28 | · | · | 1 | 8 | 6.0 | mac os x (22) · mac os x server (13) · terminal (2) |
| Databases▸ 2 | 26 | 1 | · | 7 | 16 | 5.7 | weblogic portal (7) · application server (5) · oracle9i (3) |
| DevTools & CI▸ 4 | 12 | · | · | 7 | 9 | 5.0 | asprunner (4) · unreal engine (2) · the bat (1) |
| Cloud & SaaS▸ 4 | 12 | 8 | · | 8 | 18 | 8.0 | inoculateit (2) · etrust antivirus (1) · etrust antivirus ee (1) |
| ICS / OT / IoT▸ 3 | 12 | 8 | · | 5 | 13 | 6.1 | digital surveillance system (2) · geohttpserver (2) · flexwatch network video server (1) |
| Hardware Firmware▸ 1 | 4 | · | · | 2 | 2 | 6.3 | eudora (2) · wlan 11b broadband router firmware (2) |
| Unclassified | 105 | 7 | · | 74 | 81 | 6.1 | pwsphp (5) · proms (4) · protector system (4) |
Weakness × Sector
Which weaknesses hit which solution categories in May 2005
Cells shaded by share of the sector's hottest weakness. Click a row to open the sector history.
20Improper Input Validation79XSS425CWE-425119Memory Buffer Bounds352CSRF264CWE-26489SQL Injection190Integer Overflow203CWE-20322Path TraversalWeb & CMS Plugins57411311Operating Systems121Enterprise Software1121Consumer Software111Networking InfrastructureSecurity Products2Communications211OSS Libraries1ICS / OT / IoTDatabases