Lucene search
K

105 matches found

Tenable Nessus
Tenable Nessus
added 2002/10/24 12:0 a.m.19 views

Microsoft IIS IDC Extension XSS

This IIS Server appears to be vulnerable to a cross-site scripting attack due to an error in the handling of overly-long requests on an idc file. It is possible to inject JavaScript in the URL, that will appear in the resulting page. %NASLMINLEVEL 70300 This script was written by Geoffroy Raimbau...

5.3AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2001/03/28 12:0 a.m.38 views

Ananconda Partners Clipper anacondaclip.pl Traversal Arbitrary File Access

The CGI script 'anacondaclip', which comes with anacondaclip.pl, is installed on this machine. This CGI has a well-known security flaw that allows an attacker to read arbitrary files on the remote system with the privileges of the HTTP daemon usually root or nobody. %NASLMINLEVEL 70300 C Tenable...

5CVSS5.8AI score0.03363EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2001/02/08 12:0 a.m.32 views

HSWeb HTTP Server /cgi Directory Request Path Disclosure (deprecated)

It is possible to request the physical location of the remote web root by requesting the folder '/cgi'. An attacker can exploit this flaw to gain more knowledge about this host. This plugin has been deprecated. Webmirror3 plugin ID 10662 will identify a browsable directory. %NASLMINLEVEL 999999 C...

6.6AI score0.0602EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2000/05/25 12:0 a.m.32 views

Sambar Server /session/sendmail Arbitrary Mail Relay

The Sambar web server is running. It provides a web interface for sending emails. You may simply pass a POST request to /session/sendmail and by this send mails to anyone you want. Due to the fact that Sambar does not check HTTP referrers you do not need direct access to the server! %NASLMINLEVEL...

5.5AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 1999/10/22 12:0 a.m.186 views

OmniHTTPd imagemap.exe CGI Remote Overflow

The 'imagemap.exe' cgi is installed. This CGI is vulnerable to a buffer overflow that will allow a remote user to execute arbitrary commands with the privileges of your httpd server either nobody or root. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. include'deprecatednasllevel.inc';...

10CVSS5.7AI score0.09993EPSS
Exploits0References2
Rows per page
Query Builder