Lucene search
K

682 matches found

Exploit DB
Exploit DB
added 2003/05/27 12:0 a.m.65 views

Axis Network Camera 2.x - HTTP Authentication Bypass

source: https://www.securityfocus.com/bid/7652/info A vulnerability has been discovered in various Axis Communications products. By making a request for a specially formatted URL, it may be possible for remote users to access the administrative configuration interface without being prompted for...

7.4AI score
Exploits0
Cvelist
Cvelist
added 2003/03/18 5:0 a.m.21 views

CVE-2002-1440

The Gateway GS-400 server has a default root password of "0001n" that can not be changed via the administrative interface, which can allow attackers to gain root privileges...

7AI score0.01744EPSS
Exploits0References3
exploitpack
exploitpack
added 2002/11/08 12:0 a.m.20 views

Zeus Web Server 4.04.1 - Admin Interface Cross-Site Scripting

Zeus Web Server 4.04.1 - Admin Interface Cross-Site Scripting source: https://www.securityfocus.com/bid/6144/info The Zeus Web Server contains a web based administration interface that is vulnerable to cross site scripting attacks. Due to insufficient sanitization of user-supplied input it is...

6.8AI score
Exploits0
securityvulns
securityvulns
added 2002/09/28 12:0 a.m.35 views

HP Procurve 4000M Stacked Switch HTTP Reset Vulnerability

Techserve, Inc. www.tech-serve.com Security Advisory Advisory Name: HP Procurve 4000M Stacked Switch HTTP Reset Vulnerability Release Date: 09/23/2002 Platform: HP Procurve 4000M Switch J4121A Application: Firmware revision C.09.13 Current Severity: Multiple reset requests may deny use of stacked...

Exploits0
securityvulns
securityvulns
added 2002/08/16 12:0 a.m.45 views

Cisco Content Service Switch unauthorized access

It's possible to access administrative interface without authentication...

3.6AI score
Exploits0References1Affected Software1
Exploit DB
Exploit DB
added 2002/08/02 12:0 a.m.35 views

Sun AnswerBook2 1.x - Unauthorized Administrative Script Access

source: https://www.securityfocus.com/bid/5383/info Sun Microsystems AnswerBook2 allows users to view Sun documentation through a web browser, and is available for Solaris. AnswerBook2 includes an administrative web interface. Reportedly, it is possible to access these scripts without...

7.4AI score
Exploits0
exploitpack
exploitpack
added 2002/07/20 12:0 a.m.11 views

Working Resources 1.7.x BadBlue - Administrative Interface Arbitrary File Access

Working Resources 1.7.x BadBlue - Administrative Interface Arbitrary File Access source: https://www.securityfocus.com/bid/5276/info BadBlue is a P2P file sharing application distributed by Working Resources. It is available for Microsoft Windows operating systems. BadBlue does not sufficiently...

0.2AI score
Exploits0
Exploit DB
Exploit DB
added 2002/07/20 12:0 a.m.35 views

Working Resources 1.7.x BadBlue - Administrative Interface Arbitrary File Access

source: https://www.securityfocus.com/bid/5276/info BadBlue is a P2P file sharing application distributed by Working Resources. It is available for Microsoft Windows operating systems. BadBlue does not sufficiently control access to the administrative interface. It is possible to remotely add the...

7.4AI score
Exploits0
Cvelist
Cvelist
added 2002/06/25 4:0 a.m.19 views

CVE-2001-1252

Network Associates PGP Keyserver 7.0 allows remote attackers to bypass authentication and access the administrative web interface via URLs that directly access cgi-bin instead of keyserver/cgi-bin for the programs 1 console, 2 cs, 3 multiconfig and 4 directory...

7.1AI score0.03157EPSS
Exploits0References6
exploitpack
exploitpack
added 2002/06/13 12:0 a.m.15 views

Ruslan Communications BodyBuilder - Authentication Bypass

Ruslan Communications BodyBuilder - Authentication Bypass source: https://www.securityfocus.com/bid/5008/info Ruslan Communications Builder is a tool designed to assist a user in creating a website. It allows for remote administration through a web interface, and is implemented in Java. Reportedl...

1AI score
Exploits0
Exploit DB
Exploit DB
added 2002/05/10 12:0 a.m.30 views

Critical Path InJoin Directory Server 4.0 - Cross-Site Scripting

source: https://www.securityfocus.com/bid/4717/info Critical Path provides an LDAP Lightweight Directory Access Protocol Directory Server called InJoin. InJoin Directory is provided for Microsoft Windows operating systems and Unix variants. HTML code is not filtered from URL parameters that are...

7AI score
Exploits0
exploitpack
exploitpack
added 2002/01/10 12:0 a.m.23 views

EServ 2.9x - Password-Protected File Access

EServ 2.9x - Password-Protected File Access source: https://www.securityfocus.com/bid/3838/info EServ is a combination Mail, News, Web, FTP and Proxy Server for Microsoft Windows 9x/NT/2000 systems. It is possible to construct a web request which is capable of accessing the contents of password...

0.1AI score
Exploits0
Exploit DB
Exploit DB
added 2002/01/10 12:0 a.m.23 views

EServ 2.9x - Password-Protected File Access

source: https://www.securityfocus.com/bid/3838/info EServ is a combination Mail, News, Web, FTP and Proxy Server for Microsoft Windows 9x/NT/2000 systems. It is possible to construct a web request which is capable of accessing the contents of password protected files/folders on the webserver, suc...

7.4AI score
Exploits0
securityvulns
securityvulns
added 2001/10/31 12:0 a.m.42 views

Несоклько проблем в Lotus Domino (protection bypass)

Различные уязвимости включая частичный удаленный доступ к административному интерфейсу...

1.2AI score
Exploits0References3Affected Software1
NVD
NVD
added 2001/09/28 4:0 a.m.15 views

CVE-2001-1252

Network Associates PGP Keyserver 7.0 allows remote attackers to bypass authentication and access the administrative web interface via URLs that directly access cgi-bin instead of keyserver/cgi-bin for the programs 1 console, 2 cs, 3 multiconfig and 4 directory...

10CVSS7.1AI score0.03157EPSS
Exploits0References6
Cvelist
Cvelist
added 2001/01/22 5:0 a.m.20 views

CVE-2000-0862

Vulnerability in an administrative interface utility for Allaire Spectra 1.0.1 allows remote attackers to read and modify sensitive configuration information...

6.6AI score0.01308EPSS
Exploits0References2
Exploit DB
Exploit DB
added 2001/01/08 12:0 a.m.28 views

ScreenOS 1.73/2.x - Firewall Denial of Service

source: https://www.securityfocus.com/bid/2176/info NetScreen Firewall is a network appliance used to secure against intruders and various types of attacks to a network. NetScreen has a Web administrative Interface WebUI used to configure and set the firewall settings. It is possible to cause a...

7.4AI score
Exploits0
NVD
NVD
added 2000/12/19 5:0 a.m.18 views

CVE-2000-0988

WinU 1.0 through 5.1 has a backdoor password that allows remote attackers to gain access to its administrative interface and modify configuration...

7.2CVSS7.1AI score0.01412EPSS
Exploits1References4
securityvulns
securityvulns
added 2000/08/15 12:0 a.m.51 views

Lyris List Manager Administration Hole

Versions 3 and 4 of the Lyris List Manager allow any mailing list subscriber to gain access to the administrative interface of that list. After a user has logged in, they may modify the generated web page as follows to gain access: Save the html to disk, and add the full path to the server into t...

0.7AI score
Exploits0
securityvulns
securityvulns
added 2000/08/15 12:0 a.m.21 views

Дырка в Lyris List Manager

Возможен доступ к административному интерфейсу путем локальной модификации Wev-страницы...

0.8AI score
Exploits0References1Affected Software1
Rows per page
Query Builder