Lucene search
K

329 matches found

Tenable Nessus
Tenable Nessus
added 1999/06/22 12:0 a.m.17 views

IRIX handler CGI Arbitrary Command Execution

The 'handler' cgi is installed. This CGI has a well known security flaw that lets anyone execute arbitrary commands with the privileges of the http daemon root or nobody. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. include'deprecatednasllevel.inc'; include'compat.inc'; if description...

7.5CVSS5.8AI score0.10462EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 1999/06/22 12:0 a.m.56 views

Multiple Vendor phf CGI Arbitrary Command Execution

The 'phf' CGI is installed. This CGI has a well known security flaw that lets an attacker execute arbitrary commands with the privileges of the http daemon usually root or nobody. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. include'deprecatednasllevel.inc'; include'compat.inc'; if...

10CVSS5.8AI score0.86871EPSS
Exploits0References1
exploitpack
exploitpack
added 1999/04/09 12:0 a.m.16 views

WebCom datakommunikation Guestbook 0.1 - wguest.exe Arbitrary File Access

WebCom datakommunikation Guestbook 0.1 - wguest.exe Arbitrary File Access source: https://www.securityfocus.com/bid/2024/info The freeware guestbook package from freeware.webcom.se provides a web-based guestbook feature, using CGI. Some versions of this guestbook undetermined at the time of writi...

0.4AI score
Exploits0
exploitpack
exploitpack
added 1999/04/09 12:0 a.m.16 views

WebCom datakommunikation Guestbook 0.1 - rguest.exe Arbitrary File Access

WebCom datakommunikation Guestbook 0.1 - rguest.exe Arbitrary File Access source: https://www.securityfocus.com/bid/2024/info The freeware guestbook package from freeware.webcom.se provides a web-based guestbook feature, using CGI. Some versions of this guestbook undetermined at the time of writi...

0.5AI score
Exploits0
Exploit DB
Exploit DB
added 1999/04/09 12:0 a.m.34 views

WebCom datakommunikation Guestbook 0.1 - 'wguest.exe' Arbitrary File Access

source: https://www.securityfocus.com/bid/2024/info The freeware guestbook package from freeware.webcom.se provides a web-based guestbook feature, using CGI. Some versions of this guestbook undetermined at the time of writing are vulnerable to an attack allowing an intruder to retrieve the conten...

7.4AI score
Exploits0
NVD
NVD
added 1998/07/08 4:0 a.m.8 views

CVE-1999-1436

Ray Chan WWW Authorization Gateway 0.1 CGI program allows remote attackers to execute arbitrary commands via shell metacharacters in the "user" parameter...

7.5CVSS0.03159EPSS
Exploits0References2
exploitpack
exploitpack
added 1996/12/10 12:0 a.m.13 views

Apache 1.1 NCSA HTTPd 1.5.2 Netscape Server 1.121.12.0 - a nph-test-cgi

Apache 1.1 NCSA HTTPd 1.5.2 Netscape Server 1.121.12.0 - a nph-test-cgi Apache Replace with the hostname of a server running a web daemon near you...

7.3AI score
Exploits0
Exploit DB
Exploit DB
added 1995/07/31 12:0 a.m.27 views

John S.2 Roberts AnyForm 1.0/2.0 - CGI Semicolon

source: https://www.securityfocus.com/bid/719/info AnyForm is a popular form CGI designed to support simple forms that deliver responses via email. Certain versions of AnyForm did not perform user supplied data sanity checking and could be exploited by remote intruders to execute arbitrary...

7.4AI score
Exploits0
exploitpack
exploitpack
added 1995/07/31 12:0 a.m.10 views

John S.2 Roberts AnyForm 1.02.0 - CGI Semicolon

John S.2 Roberts AnyForm 1.02.0 - CGI Semicolon source: https://www.securityfocus.com/bid/719/info AnyForm is a popular form CGI designed to support simple forms that deliver responses via email. Certain versions of AnyForm did not perform user supplied data sanity checking and could be exploited...

0.1AI score
Exploits0
Rows per page
Query Builder