Lucene search
K

510 matches found

Exploit DB
Exploit DB
added 2002/12/17 12:0 a.m.38 views

GoAhead Web Server 2.1.x - '.ASP' File Source Code Disclosure

source: https://www.securityfocus.com/bid/9239/info A vulnerability in GoAhead webserver may result in the disclosure of the source code of ASP script files. The vulnerability occurs because the application fails to sanitize HTTP requests. An attacker can append certain characters to the end of a...

7.4AI score
Exploits0
CERT
CERT
added 2002/12/17 12:0 a.m.116 views

GoAhead Web Server discloses source code of ASP files via crafted URL

Overview An input validation vulnerability in the GoAhead Web Server allows attackers to view sensitive information. This issue is also referenced in VU124059. Description The GoAhead Web Server inadequately filters user-supplied input. Specifically, the server does not properly filter malformed...

5CVSS5.9AI score0.13671EPSS
Exploits1References4
exploitpack
exploitpack
added 2002/08/14 12:0 a.m.9 views

GoAhead Web Server 2.1 - Arbitrary Command Execution

GoAhead Web Server 2.1 - Arbitrary Command Execution source: https://www.securityfocus.com/bid/5464/info GoAhead WebServer is an Open Source embedded web server which supports Active Server Pages, embedded javascript, and SSL authentication and encryption. It is available for a variety of platfor...

0.3AI score
Exploits0
Exploit DB
Exploit DB
added 2002/08/14 12:0 a.m.33 views

GoAhead Web Server 2.1 - Arbitrary Command Execution

source: https://www.securityfocus.com/bid/5464/info GoAhead WebServer is an Open Source embedded web server which supports Active Server Pages, embedded javascript, and SSL authentication and encryption. It is available for a variety of platforms including Microsoft Windows and Linux variant...

7.4AI score
Exploits0
NVD
NVD
added 2002/07/23 4:0 a.m.20 views

CVE-2002-0681

Cross-site scripting vulnerability in GoAhead Web Server 2.1 allows remote attackers to execute script as other web users via script in a URL that generates a "404 not found" message, which does not quote the script...

7.5CVSS6.5AI score0.08339EPSS
Exploits1References6
NVD
NVD
added 2002/07/23 4:0 a.m.20 views

CVE-2002-0680

Directory traversal vulnerability in GoAhead Web Server 2.1 allows remote attackers to read arbitrary files via a URL with an encoded / %5C in a .. dot dot sequence. NOTE: it is highly likely that this candidate will be REJECTED because it has been reported to be a duplicate of CVE-2001-0228...

5CVSS6.6AI score0.03491EPSS
Exploits0References5
Cvelist
Cvelist
added 2002/07/12 4:0 a.m.23 views

CVE-2002-0680

Directory traversal vulnerability in GoAhead Web Server 2.1 allows remote attackers to read arbitrary files via a URL with an encoded / %5C in a .. dot dot sequence. NOTE: it is highly likely that this candidate will be REJECTED because it has been reported to be a duplicate of CVE-2001-0228...

6.6AI score0.03491EPSS
Exploits0References5
Cvelist
Cvelist
added 2002/07/12 4:0 a.m.19 views

CVE-2002-0681

Cross-site scripting vulnerability in GoAhead Web Server 2.1 allows remote attackers to execute script as other web users via script in a URL that generates a "404 not found" message, which does not quote the script...

6.5AI score0.08339EPSS
Exploits1References6
CVE
CVE
added 2002/07/12 4:0 a.m.56 views

CVE-2002-0681

CVE-2002-0681 : A cross-site scripting vulnerability affects GoAhead Web Server 2.1. An attacker can deliver a URL containing script that, when a 404 Not Found page is generated, is not quoted, allowing script execution in another user context. CVSS data indicates a high base score (7.5) with net...

7.5CVSS6.9AI score0.08339EPSS
Exploits1References6Affected Software1
CVE
CVE
added 2002/07/12 4:0 a.m.53 views

CVE-2002-0680

CVE-2002-0680 describes a directory traversal vulnerability in GoAhead Web Server 2.1 where remote attackers can read arbitrary files by sending a URL containing an encoded backslash () within a .. sequence. This is evidenced by the NVD entry for CVE-2002-0680, which mirrors an older CVE-2001-022...

5CVSS6.7AI score0.03491EPSS
Exploits0References5Affected Software2
securityvulns
securityvulns
added 2002/07/11 12:0 a.m.27 views

wp-02-0001: GoAhead Web Server Directory Traversal + Cross Site Scripting

Westpoint Security Advisory Title: GoAhead Web Server Directory Traversal + Cross Site Scripting Risk Rating: Medium Software: GoAhead Web Server v2.1 Platforms: Windows NT/98/95/CE Embedded Linux Linux QNX Novell Netware + others Vendor URL: www.goahead.com/webserver/webserver.htm Author: Matt...

0.1AI score
Exploits0
exploitpack
exploitpack
added 2002/07/10 12:0 a.m.15 views

GoAhead Web Server 2.1.x - Error Page Cross-Site Scripting

GoAhead Web Server 2.1.x - Error Page Cross-Site Scripting source: https://www.securityfocus.com/bid/5198/info A vulnerability has been reported for GoAhead WebServer 2.1. Reportedly, it is possible for attackers to launch cross site scripting attacks against vulnerable systems. GoAhead WebServer...

0.4AI score
Exploits0
Exploit DB
Exploit DB
added 2002/07/10 12:0 a.m.32 views

GoAhead Web Server 2.1.x - Error Page Cross-Site Scripting

source: https://www.securityfocus.com/bid/5198/info A vulnerability has been reported for GoAhead WebServer 2.1. Reportedly, it is possible for attackers to launch cross site scripting attacks against vulnerable systems. GoAhead WebServer includes unsanitized requested URLs when displaying a 404...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2002/07/10 12:0 a.m.33 views

GoAhead Web Server 2.1.x - URL Encoded Slash Directory Traversal

source: https://www.securityfocus.com/bid/5197/info A vulnerability has been reported for GoAhead WebServer 2.1. Reportedly, it is possible to launch directory traversal attacks against GoAhead WebServer. It is possible for remote attackers to access arbitrary files residing on a vulnerable host...

7.4AI score
Exploits0
exploitpack
exploitpack
added 2002/07/10 12:0 a.m.18 views

GoAhead Web Server 2.1.x - URL Encoded Slash Directory Traversal

GoAhead Web Server 2.1.x - URL Encoded Slash Directory Traversal source: https://www.securityfocus.com/bid/5197/info A vulnerability has been reported for GoAhead WebServer 2.1. Reportedly, it is possible to launch directory traversal attacks against GoAhead WebServer. It is possible for remote...

7.4AI score
Exploits0
NVD
NVD
added 2002/02/13 5:0 a.m.27 views

CVE-2002-1603

GoAhead Web Server 2.1.7 and earlier allows remote attackers to obtain the source code of ASP files via a URL terminated with a /, , %2f encoded /, %20 encoded space, or %00 encoded null character, which returns the ASP source code unparsed...

5CVSS6.4AI score0.13671EPSS
Exploits1References13
Cvelist
Cvelist
added 2001/09/12 4:0 a.m.19 views

CVE-2001-0647

Orange Web Server 2.1, based on GoAhead, allows a remote attacker to perform a denial of service via an HTTP GET request that does not include the HTTP version...

6.6AI score0.0521EPSS
Exploits1References2
NVD
NVD
added 2001/07/02 4:0 a.m.16 views

CVE-2001-0385

GoAhead webserver 2.1 allows remote attackers to cause a denial of service via an HTTP request to the /aux directory...

5CVSS6.6AI score0.0839EPSS
Exploits1References6
Cvelist
Cvelist
added 2001/05/24 4:0 a.m.26 views

CVE-2001-0385

GoAhead webserver 2.1 allows remote attackers to cause a denial of service via an HTTP request to the /aux directory...

6.6AI score0.0839EPSS
Exploits1References6
CVE
CVE
added 2001/05/24 4:0 a.m.63 views

CVE-2001-0385

GoAhead WebServer is affected by DoS vulnerabilities in multiple paths. CVE-2001-0385 covers GoAhead WebServer 2.1 where a crafted HTTP request to the /aux directory can crash the daemon. Red Hat CVE-2003-1569 extends this on Windows 95/98/ME, showing that GoAhead WebServer before 2.1.5 can be fo...

5CVSS6.7AI score0.0839EPSS
Exploits1References6Affected Software1
Rows per page
Query Builder