CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

10 matches found

EUVD•added 2025/10/07 12:30 a.m.•3 views

EUVD-2000-0286

Malware in sbrugna...

10CVSS6.4AI score0.05424EPSS

Exploits1References3

OpenVAS•added 2005/11/03 12:0 a.m.•30 views

bizdb1-search.cgi located

One of the BizDB scripts, bizdb-search.cgi, passes a variable SPDX-FileCopyrightText: 2000 Roelof Temmingh Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS6.6AI score0.05424EPSS

Exploits1References2

OpenVAS•added 2005/11/03 12:0 a.m.•72 views

bizdb1-search.cgi located

BizDB is a web database integration product using Perl CGI scripts. One of the scripts, bizdb-search.cgi, passes a variable's contents to an unchecked open call and can therefore be made to execute commands at the privilege level of the webserver. The variable is dbname, and if passed a semicolon...

10CVSS0.4AI score0.05424EPSS

Exploits1

Cvelist•added 2001/01/22 5:0 a.m.•14 views

CVE-2000-0287

The BizDB CGI script bizdb-search.cgi allows remote attackers to execute arbitrary commands via shell metacharacters in the dbname parameter...

7.6AI score0.05424EPSS

Exploits1References2

CVE•added 2001/01/22 5:0 a.m.•103 views

CVE-2000-0287

The CVE-2000-0287 vulnerability affects BizDB’s web database integration product, specifically the Perl CGI script bizdb-search.cgi. The flaw arises when the dbname parameter is passed to an unchecked open() call, allowing remote attackers to execute commands at the webserver’s privilege level by...

10CVSS7.6AI score0.05424EPSS

Exploits1References2Affected Software1

Tenable Nessus•added 2000/04/26 12:0 a.m.•68 views

BizDB bizdb-search.cgi Arbitrary Command Execution

BizDB is a web database integration product using Perl CGI scripts. One of the scripts, bizdb-search.cgi, passes a variable's contents to an unchecked open call and can therefore be made to execute commands at the privilege level of the web server. The variable is dbname, and if passed a semicolo...

10CVSS5.6AI score0.05424EPSS

Exploits1References2

securityvulns•added 2000/04/14 12:0 a.m.•19 views

Дырка в BizDB

bizdb-search.cgi запускает внешнее приложение передавая в командной строке аргумент, вводимый пользователем не проверяя его на наличие мета-символов. Это позволяет выполнить любое приложение на сервере...

0.4AI score

Exploits0References1

securityvulns•added 2000/04/14 12:0 a.m.•144 views

BizDB Search Script Enables Shell Command Execution at the Server

BizDB Search Script Enables Shell Command Execution at the Server Perfecto's Black Watch Labs Security Advisory 00-04 April 7th, 2000 Name: BizDB Search Script Enables Shell Command Execution at the Server Black Watch Labs ID: BWL-00-04 Date Released: April 7th, 2000 Category: ApplicationHTML:...

7AI score

Exploits0

exploitpack•added 2000/04/13 12:0 a.m.•19 views

CNC Technology BizDB 1.0 - bizdb-search.cgi Remote Command Execution

CNC Technology BizDB 1.0 - bizdb-search.cgi Remote Command Execution source: https://www.securityfocus.com/bid/1104/info BizDB is a web databse integration product using perl CGI scripts. One of the scripts, bizdb-search.cgi, passes a variable's contents to an unchecked open call and can therefor...

Exploits0

NVD•added 2000/04/12 4:0 a.m.•15 views

CVE-2000-0287

The BizDB CGI script bizdb-search.cgi allows remote attackers to execute arbitrary commands via shell metacharacters in the dbname parameter...

10CVSS7.6AI score0.05424EPSS

Exploits1References2

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by