Enigma2 'file' Parameter Information Disclosure Vulnerability

Enigma2 is prone to an information-disclosure vulnerability because it fails to sufficiently validate user-supplied data. An attacker can exploit this issue to download local files in the context of the webserver process. This may allow the attacker to obtain sensitive information; other attacks...

SAPID CMS Multiple Remote File Include Vulnerabilities

SAPID CMS is prone to multiple remote file-include vulnerabilities because it fails to properly sanitize user-supplied input. An attacker can exploit these vulnerabilities to obtain potentially sensitive information or to execute arbitrary script code in the context of the webserver process. This...

HServer webserver directory traversal

Directory traversal with HTML-encoded requests...

IpTools 0.1.4 Directory Traversal

Title: IpToolsTiny TCP/IP server - WebServer Directory Traversal Vulnerability Software : IpToolsTiny TCP/IP server Software Version : 0.1.4 Vendor: http://iptools.sourceforge.net/iptools.html Class: Input Validation Error CVE: Remote: Yes Local: No Published: 2012-01-06 Updated: Impact : High Bu...

Sybase Easerver 6.3 Directory Traversal

This module exploits a directory traversal vulnerability found in Sybase EAserver's Jetty webserver on port 8000. Code execution seems unlikely with EAserver's default configuration unless the web server allows WRITE permission. This module requires Metasploit: https://metasploit.com/download...

HServer Webserver Multiple Directory Traversal Vulnerabilities

The host is running HServer Webserver and is prone to multiple directory traversal vulnerabilities. OpenVAS Vulnerability Test $Id: gbhserverwebservermultdirtravvuln.nasl 5833 2017-04-03 08:45:01Z cfi $ HServer Multiple Webserver Directory Traversal Vulnerabilities Authors: Antu Sanadi Copyright:...

QuiXplorer 'index.php' Arbitrary File Upload Vulnerability

QuiXplorer is prone to an arbitrary-file-upload vulnerability because the application fails to adequately sanitize user-supplied input. An attacker can exploit this issue to upload arbitrary code and run it in the context of the webserver process. QuiXplorer 2.3 is vulnerable; other versions may...

QuiXplorer 'index.php' Arbitrary File Upload Vulnerability

QuiXplorer is prone to an arbitrary-file-upload vulnerability because the application fails to adequately sanitize user-supplied input. SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holder...

CVE-2009-5111

GoAhead WebServer allows remote attackers to cause a denial of service daemon outage via partial HTTP requests, as demonstrated by Slowloris...

Design/Logic Flaw

GoAhead WebServer allows remote attackers to cause a denial of service daemon outage via partial HTTP requests, as demonstrated by Slowloris...

CVE-2009-5111

GoAhead WebServer allows remote attackers to cause a denial of service daemon outage via partial HTTP requests, as demonstrated by Slowloris...

CVE-2009-5111

Affected product: GoAhead WebServer. Vulnerability arises from handling of partial HTTP requests, enabling remote attackers to cause a denial of service (daemon outage) as demonstrated by Slowloris. Exploitation details and practical impact are stated; no patch/version or remediation is provided ...

[SECURITY] [DSA 2381-] lighttpd security update

--------------------------------------------------------------------------- Debian Security Advisory DSA-2368-1 [email protected] http://www.debian.org/security/ Nico Golde Dec 20th, 2011 http://www.debian.org/security/faq -...

Smart Software Solutions CoDeSys Webserver URI Copying Stack Buffer Overflow

Added: 12/16/2011 CVE: CVE-2011-5007 BID: 50849 OSVDB: 77387 Background Smart Software Solutions GmbH 3S manufactures CoDeSys Web Server, a Supervisory Control and Data Acquisition/Human-Machine Interface SCADA/HMI product. The SCADA Web Server listens on TCP port 8080. Problem The CmpWebServer.d...

Smart Software Solutions CoDeSys Webserver URI Copying Stack Buffer Overflow

Added: 12/16/2011 CVE: CVE-2011-5007 BID: 50849 OSVDB: 77387 Background Smart Software Solutions GmbH 3S manufactures CoDeSys Web Server, a Supervisory Control and Data Acquisition/Human-Machine Interface SCADA/HMI product. The SCADA Web Server listens on TCP port 8080. Problem The CmpWebServer.d...

Smart Software Solutions CoDeSys Webserver URI Copying Stack Buffer Overflow

Added: 12/16/2011 CVE: CVE-2011-5007 BID: 50849 OSVDB: 77387 Background Smart Software Solutions GmbH 3S manufactures CoDeSys Web Server, a Supervisory Control and Data Acquisition/Human-Machine Interface SCADA/HMI product. The SCADA Web Server listens on TCP port 8080. Problem The CmpWebServer.d...

Koha 'help.pl' Remote File Include Vulnerability

Koha is prone to a remote file-include vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit this vulnerability to obtain potentially sensitive information or execute arbitrary script code in the context of the webserver process. This may allow the...

CVE-2011-4712

Directory traversal vulnerability in Oxide WebServer allows remote attackers to read arbitrary files via a ..\ dot dot backslash in an HTTP request...

Directory traversal

Directory traversal vulnerability in Oxide WebServer allows remote attackers to read arbitrary files via a ..\ dot dot backslash in an HTTP request...

CVE-2011-4712

Directory traversal vulnerability in Oxide WebServer allows remote attackers to read arbitrary files via a ..\ dot dot backslash in an HTTP request...