Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

3230 matches found

securityvulns
securityvulnsadded 2002/01/23 12:0 a.m.29 views

(Repost) CwpApi : GetRelativePath() returns invalid paths (security advisory)

ACD Incorporated Security Advisory Project: Comprehensive Web Programming API Synopsis: GetRelativePath in CwpApi.php returns paths outside of the HTTP ServerRoot. Advisory date: January 18, 2002 New version: 1.1.1 1. In Brief: An updated CwpApi release is available which fixes a minor security b...

0.5AI score
Exploits0
securityvulns
securityvulnsadded 2001/09/22 12:0 a.m.43 views

Реальный путь к файлам в XCache (information leakage)

В заголовках HTTP-ответа содержится реальный путь к файлу...

0.5AI score
Exploits0References1Affected Software1
Packet Storm
Packet Stormadded 2001/09/19 12:0 a.m.36 views

oracle.9i.path.txt

Product: Oracle 9i Application Server. Description: The Oracle 9i Application Server uses the Apache web server for HTTP service. However, if a request is made for a non-existent .jsp file, the complete path is shown. For instance, if you were to make the following request at a server running...

7.4AI score
Exploits0
securityvulns
securityvulnsadded 2001/08/21 12:0 a.m.38 views

ACI 4D WebServer Directory traversal.

vendor: http://www.4d.com/ current version: 6.7 tested version: 6.57 , others? This directory transversal hole seems to work on ACI 4d webserver running on the NT platform. I would imagine exploitation on a macos box would be similar but would require the proper mac filesystem path to the file yo...

0.5AI score
Exploits0
securityvulns
securityvulnsadded 2001/06/13 12:0 a.m.23 views

Дырки в expert

Переполнение буфера и некорректный путь поиска файлов дает возможность локального root...

0.7AI score
Exploits0References2Affected Software1
Packet Storm
Packet Stormadded 2001/05/17 12:0 a.m.32 views

webcgi98.txt

The following e-mail was sent to Acadsoft support about a week ago and I have yet recieved a response so I thought it was time to make it public. As I mentioned in the email I felt it was important because various universities use this as a registration utility. Hi, I was playing around with your...

7.4AI score
Exploits0
exploitpack
exploitpackadded 2001/04/25 12:0 a.m.19 views

RaidenFTPd 2.1 - Directory Traversal

RaidenFTPd 2.1 - Directory Traversal source: https://www.securityfocus.com/bid/2655/info Raiden FTPD is susceptible to directory traversal attacks using multiple dots in submitted commands specifying file paths. If the request is properly composed, RaidenFTPD will serve files outside of the...

0.1AI score
Exploits0
NVD
NVDadded 2001/02/16 5:0 a.m.21 views

CVE-2001-0031

BroadVision One-To-One Enterprise allows remote attackers to determine the physical path of server files by requesting a .JSP file name that does not exist...

5CVSS6.4AI score0.01448EPSS
Exploits1References2
Cvelist
Cvelistadded 2001/02/02 5:0 a.m.14 views

CVE-2001-0031

BroadVision One-To-One Enterprise allows remote attackers to determine the physical path of server files by requesting a .JSP file name that does not exist...

6.4AI score0.01448EPSS
Exploits1References2
securityvulns
securityvulnsadded 2000/07/24 12:0 a.m.37 views

BluePanda Vulnerability Announcement: WFTPD/WFTPD Pro 2.41 RC11

================================================================ BluePanda Vulnerability Announcement: WFTPD/WFTPD Pro 2.41 RC11 21/07/2000 dd/mm/yyyy [email protected] http://bluepanda.box.sk/ ================================================================ Problem: STAT command devulges...

7AI score
Exploits0
Rows per page
Query Builder