Lucene search
+L

2130 matches found

NVD
NVD
added 2001/03/12 5:0 a.m.16 views

CVE-1999-0800

The GetFile.cfm file in Allaire Forums allows remote attackers to read files through a parameter to GetFile.cfm...

5CVSS6.5AI score0.07653EPSS
Exploits2References4
Tenable Nessus
Tenable Nessus
added 2001/01/29 12:0 a.m.25 views

iWeb Hyperseek 2000 hsx.cgi show Parameter Traversal Arbitrary File Read

The 'hsx.cgi' CGI is installed. This CGI has a well known security flaw that lets an attacker read arbitrary files with the privileges of the http daemon usually root or nobody. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. include'deprecatednasllevel.inc'; include'compat.inc'; ifdescripti...

5CVSS5.6AI score0.10645EPSS
Exploits1References2
exploitpack
exploitpack
added 2000/09/21 12:0 a.m.9 views

extent technologies rbs isp 2.5 - Directory Traversal

extent technologies rbs isp 2.5 - Directory Traversal source: https://www.securityfocus.com/bid/1704/info A remote user is capable of gaining read access to any file residing in the same directory of a host running Extent RBS ISP through directory traversal. Appending '../' to the 'image' variabl...

0.3AI score
Exploits0
Debian
Debian
added 2000/09/02 1:8 a.m.2 views

[SECURITY] New version of Netscape Communicator/Navigator released

Package: netscape communicator, navigator Vulnerability: remote exploit Debian-specific: no Existing Netscape Communicator/Navigator packages contain the following vulnerabilities: 1. Netscape Communicator JPEG-Comment Heap Overwrite Vulnerability - executes arbitrary code in the comment field of...

6AI score
Exploits0
Exploit DB
Exploit DB
added 2000/05/17 12:0 a.m.36 views

Microsoft Internet Explorer 4.0/5.0/5.5 preview/5.0.1 - DocumentComplete() Cross Frame Access

source: https://www.securityfocus.com/bid/1224/info The DocumentComplete function in IE does not properly validate origin domains. Therefore it is possible for a remote webserver to gain read access to local files on the machine of any website visitor or email recipient by accessing the browser...

7.4AI score
Exploits0
NVD
NVD
added 2000/04/12 4:0 a.m.11 views

CVE-2000-0282

TalentSoft webpsvr daemon in the Web+ shopping cart application allows remote attackers to read arbitrary files via a .. dot dot attack on the webplus CGI program...

5CVSS6.6AI score0.0777EPSS
Exploits1References3
NVD
NVD
added 2000/04/11 4:0 a.m.17 views

CVE-1999-0695

The Sybase PowerDynamo personal web server allows attackers to read arbitrary files through a .. dot dot attack...

5CVSS6.6AI score0.01096EPSS
Exploits0References2
NVD
NVD
added 1999/12/31 5:0 a.m.16 views

CVE-1999-1462

Vulnerability in bb-hist.sh CGI History module in Big Brother 1.09b and 1.09c allows remote attackers to read portions of arbitrary files...

5CVSS6.7AI score0.02179EPSS
Exploits0References4
OSV
OSV
added 1999/04/05 4:0 a.m.7 views

AZL-7330 CVE-1999-0475 affecting package procmail 3.22-53

A race condition in how procmail handles .procmailrc files allows a local user to read arbitrary files available to the user who is running procmail...

1.2CVSS5.9AI score0.00321EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 1976/01/01 12:0 a.m.27 views

CVE-2024-32613

HDF5 Library through 1.14.3 contains a heap-based buffer over-read in the function H5HLfldeserialize in H5HLcache.c, a different vulnerability than CVE-2024-32612...

6.5AI score0.00245EPSS
Exploits0References1
Rows per page
Query Builder