CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Packet Storm•added 2000/04/15 12:0 a.m.•28 views

ooo1.txt

ooo1.txt Netscape PublishingXpert 2. file-reading/dir-listing vuln in PSCOErrPage.htm by \x00\x00 0s vuln: SunOS 5.6 and SunOS 5.5.1 others versions affected possibly discription: PSCOErrPage.htm is a error handler message page, when theirs a server error usually you will get fowarded to this alo...

7.4AI score

NVD•added 2000/04/12 4:0 a.m.•14 views

CVE-2000-0261

The AVM KEN! web server allows remote attackers to read arbitrary files via a .. dot dot attack...

5CVSS6.7AI score0.01593EPSS

Exploits0References4

CVE•added 2000/04/10 4:0 a.m.•82 views

CVE-2000-0208

The CVE-2000-0208 issue affects the htsearch CGI in the htdig/ht://Dig package. Affected component is the htsearch CGI; the root cause is that parameters to htsearch can be crafted with backticks to cause remote reading of arbitrary files, enabling information disclosure. Impact per sources is pa...

5CVSS6.7AI score0.05836EPSS

Exploits0References1Affected Software1

exploitpack•added 2000/04/06 12:0 a.m.•16 views

Netscape PublishingXPert 2.02.22.5 - Local File Reading

Netscape PublishingXPert 2.02.22.5 - Local File Reading // source: https://www.securityfocus.com/bid/2920/info Netscape PublishingXpert is an e-commerce application distributed by Netscape. PublishingXpert manages user information, sending them special ads and personalized content. PSCOErrPage.ht...

7.4AI score

NVD•added 2000/03/25 5:0 a.m.•10 views

CVE-2000-0242

WindMail allows remote attackers to read arbitrary files or execute commands via shell metacharacters...

5CVSS7.2AI score0.08088EPSS

Cvelist•added 2000/03/22 5:0 a.m.•14 views

CVE-2000-0187

EZShopper 3.0 loadpage.cgi CGI script allows remote attackers to read arbitrary files via a .. dot dot attack or execute commands via shell metacharacters...

7.1AI score0.08532EPSS

Cvelist•added 2000/03/22 5:0 a.m.•16 views

CVE-2000-0188

EZShopper 3.0 search.cgi CGI script allows remote attackers to read arbitrary files via a .. dot dot attack or execute commands via shell metacharacters...

7.1AI score0.03005EPSS

CVE•added 2000/03/22 5:0 a.m.•63 views

CVE-2000-0162

Technical details (affected product/version, exploitability, and mitigations) are not publicly available in the provided documents. Monitor for updates from official advisories to confirm impact and remediation guidance.

5.1CVSS6.8AI score0.07554EPSS

Exploits0References1Affected Software3

Cvelist•added 2000/03/22 5:0 a.m.•20 views

CVE-2000-0162

The Microsoft virtual machine VM in Internet Explorer 4.x and 5.x allows a remote attacker to read files via a malicious Java applet that escapes the Java sandbox, aka the "VM File Reading" vulnerability...

6.4AI score0.07554EPSS

Apache Tomcat•added 2000/03/22 12:0 a.m.•22 views

Fixed in Apache Tomcat 3.1

Important: Information disclosure CVE-2000-1210 source.jsp, provided as part of the examples, allows an attacker to read arbitrary files via a .. dot dot in the argument to source.jsp. Affects: 3.0...

5CVSS6.2AI score0.03453EPSS

Exploits0Affected Software1

NVD•added 2000/03/14 5:0 a.m.•11 views

CVE-2000-0180

Sojourn search engine allows remote attackers to read arbitrary files via a .. dot dot attack...

5CVSS6.7AI score0.07396EPSS

Exploits1References3

Exploit DB•added 2000/03/14 12:0 a.m.•38 views

Generation Terrorists Designs & Concepts Sojourn 2.0 - File Access

source: https://www.securityfocus.com/bid/1052/info Any file that the webserver has read access to can be read on a server running the Sojourn search engine. The Sojourn software includes the ability to organize a website into categories. These categories can then be accessed via the sojourn.cgi...

7.4AI score

FreeBSD Advisory•added 2000/03/01 12:0 a.m.•6 views

FreeBSD-SA-00:06.htdig

-----BEGIN PGP SIGNED MESSAGE----- ============================================================================= FreeBSD-SA-00:06 Security Advisory FreeBSD, Inc. Topic: htdig port allows remote reading of files Category: ports Module: htdig Announced: 2000-03-01 Affects: Ports collection before...

5.8AI score

NVD•added 2000/02/29 5:0 a.m.•21 views

CVE-2000-0208

The htdig ht://Dig CGI program htsearch allows remote attackers to read arbitrary files by enclosing the file name with backticks in parameters to htsearch...

5CVSS6.7AI score0.05836EPSS

NVD•added 2000/02/27 5:0 a.m.•7 views

CVE-2000-0188

EZShopper 3.0 search.cgi CGI script allows remote attackers to read arbitrary files via a .. dot dot attack or execute commands via shell metacharacters...

7.5CVSS7.1AI score0.03005EPSS

NVD•added 2000/02/18 5:0 a.m.•21 views

CVE-2000-0162

5.1CVSS6.4AI score0.07554EPSS

Cvelist•added 2000/02/08 5:0 a.m.•25 views

CVE-2000-0126

Sample Internet Data Query IDQ scripts in IIS 3 and 4 allow remote attackers to read files via a .. dot dot attack...

6.5AI score0.45661EPSS