Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

768 matches found

securityvulns
securityvulnsadded 2006/03/30 12:0 a.m.42 views

Full path disclosure in Webcalendar 1.1.0-CVS

Full path disclosure in webcalendar Author : Rusydi Hasan M a.k.a : cR45H3R Location : Indonesia, Cilacap Date : March,28th 2006 Version : 1.1.0-CVS --- software description WebCalendar is a PHP application used to maintain a calendar for one or more persons and for a variety of purposes. ---...

7.2AI score
Exploits0
OpenVAS
OpenVASadded 2005/11/03 12:0 a.m.17 views

WS FTP Server DoS Vulnerability (Nov 2005)

WSFTP Server is prone to a denial of service DoS vulnerability. SPDX-FileCopyrightText: 2005 David Maciejak Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

5CVSS6.6AI score0.12574EPSS
Exploits0References1
Positive Technologies
Positive Technologiesadded 2005/05/24 12:0 a.m.2 views

PT-2005-2673 · Postnuke · Postnuke

Name of the Vulnerable Software and Affected Versions: PostNuke versions 0.750 through 0.760RC3 Description: The issue allows remote attackers to obtain sensitive information via direct requests to various files, including theme.php and Xanthia.php in the Xanthia module, multiple files in the...

5CVSS6.2AI score0.00319EPSS
Exploits0References2
OSV
OSVadded 2005/05/20 4:0 a.m.7 views

CVE-2005-1688

Wordpress 1.5 and earlier allows remote attackers to obtain sensitive information via a direct request to files in 1 wp-content/themes/, 2 wp-includes/, or 3 wp-admin/, which reveal the path in an error message...

5AI score
Exploits0References1
Cvelist
Cvelistadded 2003/11/05 5:0 a.m.17 views

CVE-2003-0621

The Administration Console for BEA Tuxedo 8.1 and earlier allows remote attackers to determine the existence of files outside the web root via modified paths in the INIFILE argument...

6.7AI score0.0682EPSS
Exploits1References4
Exploit DB
Exploit DBadded 2003/09/25 12:0 a.m.21 views

SBox 1.0.4 - Full Path Disclosure

source: https://www.securityfocus.com/bid/8705/info sbox has been reported prone to a path disclosure vulnerability. The issue has been reported to present itself when a HTTP request is made for a CGI resource that does not exist. sbox will reportedly return an error message that contains path...

7.4AI score
Exploits0
Exploit DB
Exploit DBadded 2003/01/06 12:0 a.m.21 views

E-theni - Remote File Inclusion Command Execution

source: https://www.securityfocus.com/bid/6970/info E-theni may allow inclusion of malicious remote files. This is due to remote users being able to influence the include path of an external file 'paralangue.php' referenced by the 'afflistelangue.php' script. This could result in arbitrary comman...

7.4AI score
Exploits0
securityvulns
securityvulnsadded 2000/05/10 12:0 a.m.46 views

Очередной способ получить путь к файлам через FrontPage Server

Запросив у shtml.exe из каталога vtibin несуществующий файл можно получить путь к этому файлу...

0.4AI score
Exploits0References1
Rows per page
Query Builder