Lucene search
+L

199 matches found

ubuntucve
ubuntucve
added 2017/04/13 2:59 p.m.21 views

CVE-2016-4800

The path normalization mechanism in PathResource class in Eclipse Jetty 9.3.x before 9.3.9 on Windows allows remote attackers to bypass protected resource restrictions and other security constraints via a URL with certain escaped characters, related to backslashes...

9.8CVSS6.9AI score0.06363EPSS
Exploits0References2
prion
prion
added 2017/04/13 2:59 p.m.22 views

Design/Logic Flaw

The path normalization mechanism in PathResource class in Eclipse Jetty 9.3.x before 9.3.9 on Windows allows remote attackers to bypass protected resource restrictions and other security constraints via a URL with certain escaped characters, related to backslashes...

7.5CVSS7.1AI score0.06363EPSS
Exploits0References6Affected Software1
cnvd
cnvd
added 2015/01/08 12:0 a.m.4 views

SysAid On-Premise Absolute Path Traversal Vulnerability

SysAid On-Premise is a data delivery software that supports on-premise storage of enterprise data in a suite of Web-based IT service management solutions from the U.S. company SysAid. An absolute path traversal vulnerability exists in SysAid On-Premise versions prior to 14.4.2 that allows remote...

5CVSS6.8AI score0.069EPSS
Exploits1References1
nessus
nessus
added 2014/02/06 12:0 a.m.57 views

Ubuntu 10.04 LTS / 12.04 LTS / 12.10 : perl vulnerability (USN-2099-1)

It was discovered that Perl's Locale::Maketext module incorrectly handled backslashes and fully qualified method names. An attacker could possibly use this flaw to execute arbitrary code when an application used untrusted templates. Note that Tenable Network Security has extracted the preceding...

7.5CVSS8.7AI score0.62202EPSS
Exploits13References2
securityvulns
securityvulns
added 2013/01/14 12:0 a.m.96 views

CVE-2012-5641 Apache CouchDB Information disclosure via unescaped backslashes in URLs on Windows

CVE-2012-5641 Information disclosure via unescaped backslashes in URLs on Windows Affected Versions: All Windows-based releases of Apache CouchDB, up to and including 1.0.3, 1.1.1, and 1.2.0 are vulnerable. Description: A specially crafted request could be used to access content directly that wou...

5CVSS0.2AI score0.08945EPSS
Exploits1
packetstorm
packetstorm
added 2012/02/23 12:0 a.m.435 views

WebcamXP / Webcam7 Directory Traversal

Exploit Title: WebcamXP and Webcam7 Directory Traversal Vulnerability Google Dork: "powered by webcamxp" xhtml css Google Dork: "powered by webcam 7" Date: 2/22/2012 Author: Silent Dream Software Link: http://dl.filekicker.com/send/file/230775-FQAC/wlite550.exe Software Link:...

Exploits0
exploitdb
exploitdb
added 2012/02/22 12:0 a.m.59 views

WebcamXP and webcam 7 - Directory Traversal

Exploit Title: WebcamXP and Webcam7 Directory Traversal Vulnerability Google Dork: "powered by webcamxp" xhtml css Google Dork: "powered by webcam 7" Date: 2/22/2012 Author: Silent Dream Software Link: http://dl.filekicker.com/send/file/230775-FQAC/wlite550.exe Software Link:...

7.4AI score
Exploits0
curl
curl
added 2010/10/13 8:0 a.m.9 views

local file overwrite

curl offers a command line option --remote-header-name also usable as -J which uses the filename of the Content-disposition: header when it saves the downloaded data locally. curl attempts to cut off the directory parts from any given filename in the header to only store files in the current...

5.8CVSS5.3AI score0.017EPSS
Exploits0Affected Software2
redhat
redhat
added 2010/08/04 9:30 p.m.6 views

Improve cookie parsing for tomcat5

Apache Tomcat 6.0.0 through 6.0.14, 5.5.0 through 5.5.25, and 4.1.0 through 4.1.36 does not properly handle 1 double quote " characters or 2 %5C encoded backslash sequences in a cookie value, which might cause sensitive information such as session IDs to be leaked to remote attackers and enable...

5CVSS6AI score0.62575EPSS
Exploits1References4
redhat
redhat
added 2009/11/09 3:37 p.m.8 views

Improve cookie parsing for tomcat5

Apache Tomcat 6.0.0 through 6.0.14, 5.5.0 through 5.5.25, and 4.1.0 through 4.1.36 does not properly handle 1 double quote " characters or 2 %5C encoded backslash sequences in a cookie value, which might cause sensitive information such as session IDs to be leaked to remote attackers and enable...

5CVSS6AI score0.62575EPSS
Exploits1References4
redhat
redhat
added 2009/11/09 3:26 p.m.5 views

Improve cookie parsing for tomcat5

Apache Tomcat 6.0.0 through 6.0.14, 5.5.0 through 5.5.25, and 4.1.0 through 4.1.36 does not properly handle 1 double quote " characters or 2 %5C encoded backslash sequences in a cookie value, which might cause sensitive information such as session IDs to be leaked to remote attackers and enable...

5CVSS6AI score0.62575EPSS
Exploits1References4
redhat
redhat
added 2009/09/21 3:51 p.m.6 views

Improve cookie parsing for tomcat5

Apache Tomcat 6.0.0 through 6.0.14, 5.5.0 through 5.5.25, and 4.1.0 through 4.1.36 does not properly handle 1 double quote " characters or 2 %5C encoded backslash sequences in a cookie value, which might cause sensitive information such as session IDs to be leaked to remote attackers and enable...

5CVSS6AI score0.62575EPSS
Exploits1References4
redhat
redhat
added 2009/07/21 8:50 p.m.4 views

Improve cookie parsing for tomcat5

Apache Tomcat 6.0.0 through 6.0.14, 5.5.0 through 5.5.25, and 4.1.0 through 4.1.36 does not properly handle 1 double quote " characters or 2 %5C encoded backslash sequences in a cookie value, which might cause sensitive information such as session IDs to be leaked to remote attackers and enable...

5CVSS6AI score0.62575EPSS
Exploits1References4
securityvulns
securityvulns
added 2009/06/19 12:0 a.m.39 views

PHP safemode execution protection bypass

It's possible to bypass safemode protection by inserting few backslashes into command...

3AI score
Exploits0References1Affected Software1
redhat
redhat
added 2009/02/11 4:58 p.m.7 views

mod_auth_mysql: character encoding SQL injection flaw

SQL injection vulnerability in modauthmysql.c in the mod-auth-mysql aka libapache2-mod-auth-mysql module for the Apache HTTP Server 2.x, when configured to use a multibyte character set that allows a \ backslash as part of the character encoding, allows remote attackers to execute arbitrary SQL...

7.5CVSS6.2AI score0.01863EPSS
Exploits1References4
exploitpack
exploitpack
added 2008/07/26 12:0 a.m.20 views

IceBB 1.0-RC9.2 - Blind SQL Injection Session Hijacking

IceBB 1.0-RC9.2 - Blind SQL Injection Session Hijacking Author: GiReX 26/07/08 Homepage: girex.altervista.org CMS: IceBB ...

0.2AI score
Exploits0
rubygems
rubygems
added 2008/03/04 12:0 a.m.6 views

Directory traversal vulnerability in WEBrick

Directory traversal vulnerability in WEBrick when running on systems that support backslash path separators or case-insensitive file names, allows remote attackers to access arbitrary files via 1 "..%5c" encoded backslash sequences or 2 filenames that match patterns in the :NondisclosureName opti...

5CVSS5.6AI score0.18163EPSS
Exploits1References1Affected Software1
redhat
redhat
added 2007/11/26 1:56 p.m.13 views

tomcat directory traversal

Directory traversal vulnerability in Apache HTTP Server and Tomcat 5.x before 5.5.22 and 6.x before 6.0.10, when using certain proxy modules modproxy, modrewrite, modjk, allows remote attackers to read arbitrary files via a .. dot dot sequence with combinations of 1 "/" slash, 2 "" backslash, and...

5CVSS6AI score0.90768EPSS
Exploits2References4
securityvulns
securityvulns
added 2006/06/10 12:0 a.m.36 views

okscripts.com - XSS Vulns

OkMall v1.0 Homepage: http://www.okscripts.com/ Effected files: search.php XSS Vulnerabilities: The search inputbox doesn’t properally filter using input before generating it. Backslashes areadded but we can easily evade this. ForPoC try putting a imgsrc=lol.jpgin the search box. XSS vuln via...

Exploits0
Rows per page
Query Builder