Lucene search
K

669 matches found

OSV
OSV
added 2006/04/04 12:0 a.m.32 views

DSA-1022-1 storebackup - several

Bulletin has no description...

4.6CVSS6.1AI score0.00379EPSS
Exploits0
NVD
NVD
added 2005/12/20 11:3 a.m.12 views

CVE-2005-4421

Dev-Editor 3.0 allows remote attackers to access any directory outside the web root whose name is a substring of the web root directory name...

7.5CVSS6.7AI score0.01549EPSS
Exploits0References5
myhack58
myhack58
added 2005/12/09 12:0 a.m.30 views

Construct a special file name to bypass multiple anti-virus engine-vulnerability warning-the black bar safety net

Affected by the anti - virusengine: Kaspersky Antivirus Symantec AntiVirus F-Prot Antivirus ClamWin Antivirus Avast Antivirus RAV AntiVirus Microsoft AntiSpyware Tested version: Symantec AntiVirus Corporate 8.0 Kaspersky Antivirus Personal Pro 4.5.0.104 Kaspersky Antivirus For MS NTServer 4.5.0.1...

1.2AI score
Exploits0
NVD
NVD
added 2005/11/16 7:42 a.m.14 views

CVE-2005-3551

toendaCMS before 0.6.2 stores user account and session data in the web root directory, which allows remote attackers to obtain sensitive information via a direct request to the appropriate XML file...

5CVSS6.2AI score0.01373EPSS
Exploits0References3
OpenVAS
OpenVAS
added 2005/11/03 12:0 a.m.18 views

Misconfigured Gnutella

The remote host is running the Gnutella servent service. It seems that the root directory of the remote host is visible through this service. Confidential files might be exported. OpenVAS Vulnerability Test $Id: gnutellaexport.nasl 8023 2017-12-07 08:36:26Z teissa $ Description: Misconfigured...

0.1AI score
Exploits0
CVE
CVE
added 2005/08/05 4:0 a.m.48 views

CVE-2002-2094

CVE-2002-2094 affects the Hellbent vulnerability described in PT-2002-2814 for hellbent version 01. An attacker can determine the full path of the web root directory by sending a GET request with a relative path that includes the web root’s parent. If the parent is incorrect, the server returns a...

5CVSS7AI score0.02715EPSS
Exploits1References3Affected Software1
securityvulns
securityvulns
added 2005/07/21 12:0 a.m.37 views

Multiple Vulnerabilities in PHP Surveyor

----------------------------------------------------------- Multiple Vulnerabilities in PHP Surveyor version 0.98 stable ------------------------------------------------------------ Summary: PHP Surveyor is vulnerable to many sql injections, cross site scriptings, and path disclosures. Details:...

1.8AI score
Exploits0
Cvelist
Cvelist
added 2005/06/21 4:0 a.m.23 views

CVE-2002-1677

14all.cgi 1.1p15 in mrtgconfig allows remote attackers to determine the physical path to the web root directory via a request with an invalid cfg parameter, which generates an error message that reveals the path...

6.4AI score0.01548EPSS
Exploits1References4
Exploit DB
Exploit DB
added 2005/04/13 12:0 a.m.53 views

IBM Websphere 5.0/5.1/6.0 - Application Server Web Server Root JSP Source Code Disclosure

source: https://www.securityfocus.com/bid/13160/info A remote JSP source disclosure vulnerability reportedly affects the IBM WebSphere Application Server. This issue is due to a failure of the application to properly handle various requests under certain circumstances. It should be noted that thi...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2004/11/03 12:0 a.m.24 views

TIPS MailPost 5.1.1 - Remote File Enumeration

source: https://www.securityfocus.com/bid/11599/info TIPS MailPost is affected by a remote file enumeration vulnerability. This issue is due to a failure to properly sanitize user requests. An attacker may leverage this issue to gain knowledge of the existence of files outside the Web root...

7.4AI score
Exploits0
Cvelist
Cvelist
added 2004/09/01 4:0 a.m.23 views

CVE-1999-1365

Windows NT searches a user's home directory %systemroot% by default before other directories to find critical programs such as NDDEAGNT.EXE, EXPLORER.EXE, USERINIT.EXE or TASKMGR.EXE, which could allow local users to bypass access restrictions or gain privileges by placing a Trojan horse program...

6.6AI score0.01937EPSS
Exploits0References4
FreeBSD
FreeBSD
added 2004/02/19 12:0 a.m.23 views

jailed processes can attach to other jails

A programming error has been found in the jailattach2 system call which affects the way that system call verifies the privilege level of the calling process. Instead of failing immediately if the calling process was already jailed, the jailattach system call would fail only after changing the...

4.6CVSS6.6AI score0.00331EPSS
Exploits0
exploitpack
exploitpack
added 2004/01/29 12:0 a.m.12 views

PJ CGI Neo Review - Directory Traversal

PJ CGI Neo Review - Directory Traversal source: https://www.securityfocus.com/bid/9524/info It has been reported that PJ CGI Neo Review may be prone to a directory traversal vulnerability that may allow a remote attacker to access information outside the server root directory by using '../'...

0.6AI score
Exploits0
NVD
NVD
added 2004/01/20 5:0 a.m.22 views

CVE-2003-1022

Directory traversal vulnerability in fsp before 2.81.b18 allows remote users to access files outside the FSP root directory...

7.5CVSS6.4AI score0.01879EPSS
Exploits0References5
securityvulns
securityvulns
added 2004/01/19 12:0 a.m.34 views

[Full-Disclosure] Pablo Sofware Solutions FTP server can detect if a file exists outside the FTP root directory

Pablo Sofware Solutions FTP server can detect if a file exists outside the FTP root directory .oO Overview Oo. Pablo Software Solutions FTP server version 1.77 can detect if a file exists outside the FTP root directory. Discovered on 2004, January, 11th Vendor: Pablo Software Solutions...

7.7AI score
Exploits0
RedHat Linux
RedHat Linux
added 2004/01/14 1:16 p.m.4 views

security flaw

CVS server before 1.11.10 may allow attackers to cause the CVS server to create directories and files in the file system root directory via malformed module requests...

7.5CVSS5.8AI score0.02294EPSS
Exploits0References4
exploitpack
exploitpack
added 2004/01/09 12:0 a.m.15 views

Hand-Crafted Software FreeProxy 3.53.6 - FreeWeb Directory Traversal

Hand-Crafted Software FreeProxy 3.53.6 - FreeWeb Directory Traversal source: https://www.securityfocus.com/bid/9388/info It has been reported that FreeWeb server of FreeProxy may be prone to a directory traversal vulnerability that may allow a remote attacker to access information outside the...

0.4AI score
Exploits0
OSV
OSV
added 2004/01/05 5:0 a.m.8 views

CVE-2003-0977

CVS server before 1.11.10 may allow attackers to cause the CVS server to create directories and files in the file system root directory via malformed module requests...

7.5AI score
Exploits0References16
OSV
OSV
added 2004/01/05 5:0 a.m.1 views

DEBIAN-CVE-2003-0977

CVS server before 1.11.10 may allow attackers to cause the CVS server to create directories and files in the file system root directory via malformed module requests...

7.5CVSS6.6AI score0.02294EPSS
Exploits0References1
exploitpack
exploitpack
added 2003/12/19 12:0 a.m.18 views

Xerox MicroServer - Web Server Directory Traversal

Xerox MicroServer - Web Server Directory Traversal source: https://www.securityfocus.com/bid/9256/info It has been reported that XeroxMicroServer/Xerox11 may be prone to a directory traversal vulnerability that may allow an attacker to traverse outside the server root directory by using '/..' or...

Exploits0
Rows per page
Query Builder