Lucene search
K

5637 matches found

Exploit DB
Exploit DB
added 2000/09/26 12:0 a.m.28 views

Microsoft Windows Script Host 5.1/5.5 - 'GetObject()' File Disclosure

source: https://www.securityfocus.com/bid/1718/info It is possible for an outside attacker to view known files on a remote system if the target user visits a website or opens an email containing a specially formed script containing the JScript function 'GetObject' and the ActiveX object 'htmlfile...

7.4AI score
Exploits0
exploitpack
exploitpack
added 2000/09/26 12:0 a.m.11 views

Microsoft Windows Script Host 5.15.5 - GetObject() File Disclosure

Microsoft Windows Script Host 5.15.5 - GetObject File Disclosure source: https://www.securityfocus.com/bid/1718/info It is possible for an outside attacker to view known files on a remote system if the target user visits a website or opens an email containing a specially formed script containing...

7.4AI score
Exploits0
exploitpack
exploitpack
added 2000/09/13 12:0 a.m.9 views

MultiHTML 1.5 - File Disclosure

MultiHTML 1.5 - File Disclosure source: https://www.securityfocus.com/bid/6711/info MultiHTML is prone to a file disclosure vulnerability. It is possible for remote attackers to issue requests which are capable of disclosing sensitive webserver readable resources on the system hosting the softwar...

7.4AI score
Exploits0
securityvulns
securityvulns
added 2000/09/13 12:0 a.m.33 views

(SRADV00003) Arbitrary file disclosure through IMP

================================================= Secure Reality Pty Ltd. Security Advisory 3 SRADV00003 http://www.securereality.com.au ================================================= Title Arbitrary file disclosure through IMP Released 12/09/2000 Vulnerable Most all? versions of IMP 2.2.1...

0.4AI score
Exploits0
Exploit DB
Exploit DB
added 2000/09/13 12:0 a.m.35 views

MultiHTML 1.5 - File Disclosure

source: https://www.securityfocus.com/bid/6711/info MultiHTML is prone to a file disclosure vulnerability. It is possible for remote attackers to issue requests which are capable of disclosing sensitive webserver readable resources on the system hosting the software...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2000/09/11 12:0 a.m.22 views

SRADV00001.txt

================================================= Secure Reality Pty Ltd. Security Advisory 1 SRADV00001 http://www.securereality.com.au ================================================= Title Arbitrary file disclosure through PHP file upload Released 04/09/2000 We found this particular issue a...

7.4AI score
Exploits0
securityvulns
securityvulns
added 2000/09/04 12:0 a.m.72 views

(SRADV00001) Arbitrary file disclosure through PHP file upload

================================================= Secure Reality Pty Ltd. Security Advisory 1 SRADV00001 http://www.securereality.com.au ================================================= Title Arbitrary file disclosure through PHP file upload Released 04/09/2000 We found this particular issue a...

7.1AI score
Exploits0
exploitpack
exploitpack
added 2000/06/26 12:0 a.m.13 views

Flowerfire Sawmill 5.0.21 - File Access

Flowerfire Sawmill 5.0.21 - File Access source: https://www.securityfocus.com/bid/1402/info Sawmill is a site statistics package for Unix, Windows and Mac OS. A specially crafted request can disclose the first line of any world readable file for which the full pathname is known, for example...

0.1AI score
Exploits0
exploitpack
exploitpack
added 2000/06/26 12:0 a.m.11 views

Flowerfire Sawmill 5.0.21 - Weak Password Encryption

Flowerfire Sawmill 5.0.21 - Weak Password Encryption // source: https://www.securityfocus.com/bid/1403/info Sawmill is a site statistics package for Unix, Windows and Mac OS. Passwords are encrypted using a weak hash function. This combined with the file disclosure vulnerability in Sawmill bid =...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2000/06/26 12:0 a.m.25 views

Flowerfire Sawmill 5.0.21 - Weak Password Encryption

// source: https://www.securityfocus.com/bid/1403/info Sawmill is a site statistics package for Unix, Windows and Mac OS. Passwords are encrypted using a weak hash function. This combined with the file disclosure vulnerability in Sawmill bid = 1402 could allow an attacker to read the contents of...

7.4AI score
Exploits0
NVD
NVD
added 1998/01/01 5:0 a.m.16 views

CVE-1999-0239

Netscape FastTrack Web server lists files when a lowercase "get" command is used instead of an uppercase GET...

7.5CVSS0.07449EPSS
Exploits0References2
Symantec
Symantec
added 1997/11/08 12:0 a.m.44 views

iCat Carbo Server File Disclosure Vulnerability

Description iCat Electronic Commerce Suite is an application which enables a user to create and manage web based catalogues. A remote user may retrieve known files on a target system running iCat Electronic Commerce Suite. The Carbo Server component of the Electronic Commerce Suite does not...

0.4AI score
Exploits0References1Affected Software1
exploitpack
exploitpack
added 1997/11/08 12:0 a.m.30 views

iCat Electronic Commerce Suite 3.0 - File Disclosure

iCat Electronic Commerce Suite 3.0 - File Disclosure source: https://www.securityfocus.com/bid/2126/info iCat Electronic Commerce Suite is an application which enables a user to create and manage web based catalogues. A remote user may retrieve known files on a target system running iCat Electron...

7.3AI score
Exploits0
Exploit DB
Exploit DB
added 1997/11/08 12:0 a.m.46 views

iCat Electronic Commerce Suite 3.0 - File Disclosure

source: https://www.securityfocus.com/bid/2126/info iCat Electronic Commerce Suite is an application which enables a user to create and manage web based catalogues. A remote user may retrieve known files on a target system running iCat Electronic Commerce Suite. The Carbo Server component of the...

7.4AI score
Exploits0
exploitpack
exploitpack
added 1997/07/16 12:0 a.m.10 views

Sun Java Web Server 1.1 Beta - Viewable .jhtml Source

Sun Java Web Server 1.1 Beta - Viewable .jhtml Source source: https://www.securityfocus.com/bid/1891/info A vulnerability exists in Sun Microsystems' JavaWebServer for Win32, version 1.1Beta. JavaWebServer is a Java-oriented web application development platform. If a URL is submitted requesting a...

7.4AI score
Exploits0
Friends Of PHP
Friends Of PHP
added 1970/01/01 12:0 a.m.6 views

CVE-2026-45071: XXE (Local File Disclosure) in DomCrawler::addXmlContent() via validateOnParse = true

More info at https://symfony.com/cve-2026-45071...

5.8AI score0.00052EPSS
Exploits0Affected Software1
Friends Of PHP
Friends Of PHP
added 1970/01/01 12:0 a.m.14 views

CVE-2026-45071: XXE (Local File Disclosure) in DomCrawler::addXmlContent() via validateOnParse = true

More info at https://symfony.com/cve-2026-45071...

5.8AI score0.00052EPSS
Exploits0Affected Software1
Rows per page
Query Builder