Lucene search
K

148 matches found

RedHat Linux
RedHat Linux
added 2009/03/19 3:30 p.m.4 views

curl: local file access via unsafe redirects

The redirect implementation in curl and libcurl 5.11 through 7.19.3, when CURLOPTFOLLOWLOCATION is enabled, accepts arbitrary Location values, which might allow remote HTTP servers to 1 trigger arbitrary requests to intranet servers, 2 read or overwrite arbitrary files via a redirect to a file:...

6.8CVSS6.9AI score0.07812EPSS
Exploits2References4
OSV
OSV
added 2006/07/21 2:3 p.m.5 views

CVE-2006-3682

awstats.pl in AWStats 6.5 build 1.857 and earlier allows remote attackers to obtain the installation path via the 1 year, 2 pluginmode or 3 month parameters...

5.3AI score
Exploits0References7
myhack58
myhack58
added 2005/09/21 12:0 a.m.17 views

File absolute path to access that support non-8 0 port-vulnerability warning-the black bar safety net

Get the current asp implementation file where the absolute path support with port absolute path to/end in solving some ofXMLdocuments called useful. Or applied to the thief program, the program is as follows //poweredBy Airzen //qq:3 9 1 9 2 1 7 0 //e mail:[email protected] //date:2004-12-03 //repo...

6.9AI score
Exploits0
securityvulns
securityvulns
added 2004/09/28 12:0 a.m.27 views

.Net server form authentication protection bypass

By using backslash in the request path it's possible to access protected file...

3.4AI score
Exploits0References1
securityvulns
securityvulns
added 2004/05/05 12:0 a.m.29 views

Ultraseek special DOS device access

Document path can contain special device name...

3.3AI score
Exploits0References1Affected Software1
securityvulns
securityvulns
added 2001/08/21 12:0 a.m.39 views

ACI 4D WebServer Directory traversal.

vendor: http://www.4d.com/ current version: 6.7 tested version: 6.57 , others? This directory transversal hole seems to work on ACI 4d webserver running on the NT platform. I would imagine exploitation on a macos box would be similar but would require the proper mac filesystem path to the file yo...

0.5AI score
Exploits0
securityvulns
securityvulns
added 2001/02/08 12:0 a.m.29 views

Vulnerability in Soft Lite ServerWorx

----- Begin Hush Signed Message from [email protected] ----- Vulnerability in Soft Lite ServerWorx Overview Soft Lite ServerWorx v3.00 is a web server available from http://www.zdnet.com and http://www.softlite.net. A vulnerability exists which allows a remote user to break out of the web roo...

0.4AI score
Exploits0
NVD
NVD
added 2000/06/08 4:0 a.m.12 views

CVE-2000-0554

Ceilidh allows remote attackers to obtain the real path of the Ceilidh directory via the translatedpath hidden form field...

5CVSS6.6AI score0.01344EPSS
Exploits0References2
Rows per page
Query Builder