142 matches found
CVE-2001-0446
CVE-2001-0446 affects IBM WCS (WebSphere Commerce Suite) 4.0.1 with Application Server 3.0.2. The issue enables remote attackers to read source code for *.jsp files by appending a "/" to the requested URL, exposing partial confidentiality (C:P/I:N/A:N; CVSS v2 base 5.0). No exploitation details a...
CVE-1999-0477
The CVE-1999-0477 issue affects the ColdFusion Application Server’s Expression Evaluator. A remote attacker can upload files via openfile.cfm due to insufficient access restriction, enabling arbitrary file upload on the server. This is documented across multiple sources (e.g., Red Hat, NVD) with ...