Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

5327 matches found

OpenVAS
OpenVASadded 2005/11/03 12:0 a.m.41 views

WebLogic source code disclosure

There is a bug in the Weblogic web application. Namely, by inserting a /ConsoleHelp/ into a URL, critical source code files may be viewed. SPDX-FileCopyrightText: 2003 John Lampe Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right...

5CVSS6.9AI score0.00599EPSS
Exploits0References3
OpenVAS
OpenVASadded 2005/11/03 12:0 a.m.14 views

CVSWeb detection

CVSWeb is used by hosts to share programming source code. Some web sites are misconfigured and allow access to their sensitive source code without any password protection. This plugin tries to detect the presence of a CVSWeb CGI and when it finds it, it tries to obtain its version...

7.4AI score
Exploits0
OpenVAS
OpenVASadded 2005/11/03 12:0 a.m.34 views

MondoSoft MondoSearch < 4.4.5156 'msmmask.exe' Source Disclosure Vulnerability - Active Check

MondoSoft MondoSearch is prone to a source code disclosure vulnerability. SPDX-FileCopyrightText: 2002 Michel Arboi Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5CVSS6.7AI score0.00718EPSS
Exploits1References1
NVD
NVDadded 2005/10/23 10:2 a.m.15 views

CVE-2005-3293

Xerver 4.17 allows remote attackers to 1 obtain source code of scripts via a request with a trailing "." dot or 2 list directory contents via a trailing null character...

5CVSS6.8AI score0.1387EPSS
Exploits1References7
CVE
CVEadded 2005/10/23 4:0 a.m.49 views

CVE-2005-3293

CVE-2005-3293 affects Xerver before v4.20. Two information-disclosure vectors are described: (1) appending a trailing dot to a script URL to obtain its source code, and (2) sending a request with a trailing null character (%00) to list directory contents. Evidence from NVD/CVE records confirms vu...

5CVSS6.9AI score0.1387EPSS
Exploits1References7Affected Software1
Cvelist
Cvelistadded 2005/10/23 4:0 a.m.21 views

CVE-2005-3293

Xerver 4.17 allows remote attackers to 1 obtain source code of scripts via a request with a trailing "." dot or 2 list directory contents via a trailing null character...

6.8AI score0.1387EPSS
Exploits1References7
securityvulns
securityvulnsadded 2005/10/20 12:0 a.m.36 views

[SA17218] PHP-Nuke NukeFixes Addon &quot;file&quot; Local File Inclusion Vulnerability

TITLE: PHP-Nuke NukeFixes Addon "file" Local File Inclusion Vulnerability SECUNIA ADVISORY ID: SA17218 VERIFY ADVISORY: http://secunia.com/advisories/17218/ CRITICAL: Moderately critical IMPACT: Exposure of sensitive information WHERE: From remote SOFTWARE: NukeFixes 3.x addon for PHP-Nuke...

0.9AI score
Exploits0
securityvulns
securityvulnsadded 2005/10/13 12:0 a.m.30 views

Sun Java System Application Server &#40;Sun ONE&#41; JSP source code disclosure

No description provided...

1.7AI score
Exploits0References1Affected Software1
securityvulns
securityvulnsadded 2005/10/13 12:0 a.m.20 views

[SA17164] Sun Java System Application Server JSP Source Code Disclosure

TITLE: Sun Java System Application Server JSP Source Code Disclosure SECUNIA ADVISORY ID: SA17164 VERIFY ADVISORY: http://secunia.com/advisories/17164/ CRITICAL: Moderately critical IMPACT: Exposure of sensitive information WHERE: From remote SOFTWARE: Sun Java System Application Server Sun ONE 7...

0.3AI score
Exploits0
securityvulns
securityvulnsadded 2005/10/13 12:0 a.m.38 views

[SA17174] versatileBulletinBoard Cross-Site Scripting and SQL Injection

TITLE: versatileBulletinBoard Cross-Site Scripting and SQL Injection SECUNIA ADVISORY ID: SA17174 VERIFY ADVISORY: http://secunia.com/advisories/17174/ CRITICAL: Moderately critical IMPACT: Security Bypass, Cross Site Scripting, Manipulation of data, Exposure of system information WHERE: From...

1AI score
Exploits0
securityvulns
securityvulnsadded 2005/10/10 12:0 a.m.50 views

[SA17117] aeNovo Cross-Site Scripting and SQL Injection Vulnerabilities

TITLE: aeNovo Cross-Site Scripting and SQL Injection Vulnerabilities SECUNIA ADVISORY ID: SA17117 VERIFY ADVISORY: http://secunia.com/advisories/17117/ CRITICAL: Moderately critical IMPACT: Cross Site Scripting, Manipulation of data WHERE: From remote SOFTWARE: aeNovo...

0.5AI score
Exploits0
Metasploit
Metasploitadded 2005/10/02 7:32 p.m.15 views

Opty2

Opty2 multi-byte NOP generator This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'rex/nop/opty2' Opty2 ----- This class implements single-byte NOP generation for X86. It takes from ADMmutate and from spoonfu...

7.4AI score
Exploits0
securityvulns
securityvulnsadded 2005/09/27 12:0 a.m.29 views

[SA16934] IPB Riverdark RSS Syndicator Module Cross-Site Scripting

---------------------------------------------------------------------- Bist Du interessiert an einem neuen Job in IT-Sicherheit? Secunia hat zwei freie Stellen als Junior und Senior Spezialist in IT- Sicherheit: http://secunia.com/secuniavacancies/...

1.3AI score
Exploits0
securityvulns
securityvulnsadded 2005/09/09 12:0 a.m.25 views

[Full-disclosure] 3 minor vulnerabilities in IPSwitch products

The following 3 minor vulnerabilities were found in the products Whatsup Gold 8.04 and WhatsUp Small Business 2004 Ipswitch Whatsup Gold 8.04 - Access to view source code of all filesCIRT-34-advisory Ipswitch Whatsup Gold 8.04 - Cross Site Scripting CIRT-35-advisory Ipswitch Whatsup small Busines...

Exploits0
NVD
NVDadded 2005/09/08 10:3 a.m.11 views

CVE-2005-2849

Argument injection vulnerability in Barracuda Spam Firewall running firmware 3.1.16 and 3.1.17 allows remote attackers to 1 read portions of source code via the -f option to Dig digdevice.cgi, 2 determine file existence via the -r argument to Tcpdump tcpdumpdevice.cgi or 3 modify files in the...

6.4CVSS7.2AI score0.00502EPSS
Exploits0References4
Tenable Nessus
Tenable Nessusadded 2005/09/08 12:0 a.m.75 views

Microsoft IIS Translate f: ASP/ASA Source Disclosure (IIS 5.1)

There is a serious vulnerability in IIS 5.1 that allows an attacker to view ASP/ASA source code instead of a processed file, when the files are stored on a FAT partition. ASP source code can contain sensitive information such as username's and passwords for ODBC connections. %NASLMINLEVEL 70300 C...

5CVSS5.6AI score0.78624EPSS
Exploits0References2
securityvulns
securityvulnsadded 2005/09/07 12:0 a.m.32 views

Microsoft IIS 5.1 source code leak

Special WebDAv request to script located at FAT volume allows to retrieve source code...

2.2AI score
Exploits0References2Affected Software1
securityvulns
securityvulnsadded 2005/08/22 12:0 a.m.21 views

[Full-disclosure] [ Suresec Advisories ] - Several MacOS X vulnerabilities

Buffer overflow in ping and traceroute. Vulnerability summary: The ping and traceroute programs used in Mac OS X are vulnerable to a buffer overflow when resolving a hostname. In the case of ping a hostname gets copied into a static buffer which is 80 bytes long. For traceroute the hostname gets...

0.8AI score
Exploits0
securityvulns
securityvulnsadded 2005/08/09 12:0 a.m.25 views

[SA16353] PHPLite Calendar Express Two Vulnerabilities

---------------------------------------------------------------------- Bist Du interessiert an einem neuen Job in IT-Sicherheit? Secunia hat zwei freie Stellen als Junior und Senior Spezialist in IT- Sicherheit: http://secunia.com/secuniavacancies/...

0.4AI score
Exploits0
securityvulns
securityvulnsadded 2005/07/28 12:0 a.m.42 views

[SA16224] BMForum Plus! Cross-Site Scripting Vulnerabilities

---------------------------------------------------------------------- Bist Du interessiert an einem neuen Job in IT-Sicherheit? Secunia hat zwei freie Stellen als Junior und Senior Spezialist in IT- Sicherheit: http://secunia.com/secuniavacancies/...

0.3AI score
Exploits0
Rows per page
Query Builder