Lucene search
+L

7 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2002-1665

Malware in sbrugna...

5CVSS6.4AI score0.04905EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2025/05/21 10:12 p.m.13 views

CVE-2002-2170

Working Resources Inc. BadBlue Enterprise Edition 1.7 through 1.74 attempts to restrict administrator actions to the IP address of the local host, but does not provide additional authentication, which allows remote attackers to execute arbitrary code via a web page containing an HTTP POST request...

7.5CVSS7.9AI score0.04735EPSS
Exploits1References1
CVE
CVE
added 2005/11/16 9:17 p.m.54 views

CVE-2002-2170

The CVE affects BadBlue Enterprise Edition versions 1.7–1.74. The root cause is insufficient authentication when attempts to restrict administrator actions to localhost IP, allowing a remote attacker to trigger arbitrary code execution via an HTTP POST to the dir.hts page on localhost, which can ...

7.5CVSS7.9AI score0.04735EPSS
Exploits1References3Affected Software1
EUVD
EUVD
added 2005/11/16 9:17 p.m.9 views

EUVD-2002-2149

Working Resources Inc. BadBlue Enterprise Edition 1.7 through 1.74 attempts to restrict administrator actions to the IP address of the local host, but does not provide additional authentication, which allows remote attackers to execute arbitrary code via a web page containing an HTTP POST request...

7.5CVSS7.5AI score0.04735EPSS
Exploits1References3
CVE
CVE
added 2005/06/21 4:0 a.m.50 views

CVE-2002-1684

The CVE-2002-1684 entry concerns a directory traversal vulnerability in Deerfield D2Gfx 1.0.2 and BadBlue Enterprise Edition 1.5.x plus BadBlue Personal Edition 1.5.6. The vulnerability allows remote attackers to read arbitrary files via a ../ traversal in the script used to read Microsoft Office...

5CVSS7AI score0.04905EPSS
Exploits0References3Affected Software2
Cvelist
Cvelist
added 2005/06/21 4:0 a.m.22 views

CVE-2002-1684

Directory traversal vulnerability in 1 Deerfield D2Gfx 1.0.2 or 2 BadBlue Enterprise Edition 1.5.x and BadBlue Personal Edition 1.5.6 allows remote attackers to read arbitrary files via a ../ dot dot slash in the script used to read Microsoft Office documents...

6.6AI score0.04905EPSS
Exploits0References3
Cvelist
Cvelist
added 2005/06/21 4:0 a.m.20 views

CVE-2002-1685

Cross-site scripting vulnerability XSS in BadBlue Enterprise Edition and Personal Edition 1.7 and 1.7.2 allows remote attackers to execute arbitrary script as other users by injecting script into ext.dll ISAPI...

6.6AI score0.07292EPSS
Exploits1References3
Rows per page
Query Builder