Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

369 matches found

CVE
CVEadded 2001/05/24 4:0 a.m.49 views

CVE-2001-0389

CVE-2001-0389 affects IBM Websphere/NetCommerce3 3.1.2. The vulnerability allows remote attackers to determine the server’s real path by directly calling the macro.d2w macro with a NOEXISTINGHTMLBLOCK argument. Impact is listed as partial confidentiality loss; exploitation is remote over the netw...

5CVSS6.8AI score0.01448EPSS
Exploits1References2Affected Software2
Cvelist
Cvelistadded 2001/04/04 4:0 a.m.18 views

CVE-2001-0303

tstisapi.dll in Pi3Web 1.0.1 web server allows remote attackers to determine the physical path of the server via a URL that requests a non-existent file...

6.3AI score0.01464EPSS
Exploits1References2
CVE
CVEadded 2001/04/04 4:0 a.m.53 views

CVE-2001-0303

Pi3Web 1.0.1 isapi: tstisapi.dll leakage allows remote attackers to determine the server’s physical path by requesting a non-existent file, an information disclosure vulnerability. The Nessus plugin additionally notes that the /isapi/tstisapi.dll CGI has a well-known flaw that can allow arbitrary...

5CVSS6.3AI score0.01464EPSS
Exploits1References2Affected Software1
Cvelist
Cvelistadded 2000/12/19 5:0 a.m.21 views

CVE-2000-1110

document.d2w CGI program in the IBM Net.Data db2www package allows remote attackers to determine the physical path of the web server by sending a nonexistent command to the program...

6.3AI score0.02685EPSS
Exploits1References2
Cvelist
Cvelistadded 2000/09/21 4:0 a.m.24 views

CVE-2000-0710

The shtml.exe component of Microsoft FrontPage 2000 Server Extensions 1.1 allows remote attackers to determine the physical path of the server components by requesting an invalid URL whose name includes a standard DOS device name...

6.3AI score0.26383EPSS
Exploits0References3
CVE
CVEadded 2000/04/10 4:0 a.m.48 views

CVE-2000-0189

The CVE-2000-0189 entry concerns ColdFusion Server 4.x where remote attackers can determine the server’s real pathname by requesting application.cfm or onrequestend.cfm. The available sources reproduce this description with no explicit exploit code or confirmed active exploitation details in the ...

5CVSS7.1AI score0.01931EPSS
Exploits0References1Affected Software1
CVE
CVEadded 2000/02/04 5:0 a.m.57 views

CVE-1999-1006

The OpenVAS entry for CVE-1999-1006 documents a GroupWise Web Interface vulnerability in GWWEB.EXE where manipulating the HELP URL request yields information disclosure, including reading local files on the remote host. This confirms the vulnerability class as an information disclosure via a web ...

5CVSS6.7AI score0.01477EPSS
Exploits0References1Affected Software1
Packet Storm
Packet Stormadded 1999/12/20 12:0 a.m.30 views

groupwise.web.txt

Problems found with GroupeWise web server Novell was contacted 3 weeks ago and no reply ----------------------------------------------------------------- 1. The help argument in GWWEB.EXE reveal full web path on the server 2. anyone can read a .htm file on the system with the GWWEB.EXE and the HE...

7.4AI score
Exploits0
NVD
NVDadded 1999/12/01 5:0 a.m.13 views

CVE-2000-0021

Lotus Domino HTTP server allows remote attackers to determine the real path of the server via a request to a non-existent script in /cgi-bin...

5CVSS6.6AI score0.01359EPSS
Exploits0References1
Rows per page
Query Builder