CVE-1999-1357

Netscape Communicator 4.04 through 4.7 and possibly other versions in various UNIX operating systems converts the 0x8b character to a "" sign, which could allow remote attackers to attack other clients via cross-site scripting CSS in CGI programs that do not filter these characters...

CVE-2001-0958

Buffer overflows in eManager plugin for Trend Micro InterScan VirusWall for NT 3.51 and 3.51J allow remote attackers to execute arbitrary code via long arguments to the CGI programs 1 register.dll, 2 ContentFilter.dll, 3 SFNofitication.dll, 4 register.dll, 5 TOP10.dll, 6 SpamExcp.dll, and 7...

Power Up HTML 0.8033 Beta - Directory Traversal Arbitrary File Disclosure

source: https://www.securityfocus.com/bid/3304/info Power Up HTML is a set of HTML-like commands that can be placed into web pages. It provides a central routing point to simplify programming and customization of CGI scripts. A vulnerability exists in Power Up HTML which allows directory traversa...

Power Up HTML 0.8033 Beta - Directory Traversal Arbitrary File Disclosure

Power Up HTML 0.8033 Beta - Directory Traversal Arbitrary File Disclosure source: https://www.securityfocus.com/bid/3304/info Power Up HTML is a set of HTML-like commands that can be placed into web pages. It provides a central routing point to simplify programming and customization of CGI script...

CVE-2001-0689

CVE-2001-0689 affects Trend Micro Virus Control System 1.8, where a remote attacker can view and modify configuration via a specific CGI program. The NVD entry documents a high-severity issue (CVSS v2 base score 7.5, AV:N/AC:L/Au:N/C:P/I:P/A:P). The connected documents do not provide concrete exp...

CVE-2001-0689

Vulnerability in TrendMicro Virus Control System 1.8 allows a remote attacker to view configuration files and change the configuration via a certain CGI program...

Получение исходного текста CGI в Bad Blue (source code retrieval)

Додбавив 00 к имени файла PHP или CGI можно получить его исходный код...

store.cgi.txt

Hi conrades: I write about a vulnerability in /cgi-bin/Store/store.cgi -- This is part of a software that Key to the web http://www.keyweb.com use for her "e-comerce solutions". In her page you can find a list of posible webs with this vulnerability but you must be faster becouse can be early...

SuSE Support Data Base sbsearch.cgi Arbitrary Command Execution

SuSE CGI 'sdbsearch.cgi' is installed. This CGI allows a local and possibly remote user to execute arbitrary commands with the privileges of the HTTP server. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. include'deprecatednasllevel.inc'; include'compat.inc'; ifdescription scriptid10720;...

NetCode NC Book book.cgi current Parameter Arbitrary Command Execution

The CGI 'book.cgi' is installed. This CGI has a well known security flaw that lets an attacker execute arbitrary commands with the privileges of the http daemon. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. include 'compat.inc' ; ifdescription scriptid10721; scriptversion"1.27";...

Quikstore Shopping Cart quikstore.cgi Multiple Vulnerabilities

The CGI 'quickstore.cgi' is installed. This CGI has a well known security flaw that lets an attacker read arbitrary files with the privileges of the HTTP daemon. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. include'deprecatednasllevel.inc'; include'compat.inc'; ifdescription scriptid10712...

Roxen security alert: URL decoding vulnerable

Roxen Webserver 2.0 up to version 2.0.92 and 2.1 up to version 2.1.264 has a vulnerability that allows any user to retrieve any file from the host with the privileges of the web server. Having the CGI-module enabled escalates the problem by making it possible to run any executable. Description In...

Omnicron OmniHTTPd 2.0.7 - File Corruption Command Execution

Omnicron OmniHTTPd 2.0.7 - File Corruption Command Execution source: https://www.securityfocus.com/bid/2211/info OmniHTTPD is a compact Windows based web server by Omnicron Technologies. OmniHTTPD has various features including multiple domain support, keep-alive connections, supports virtual IP...

Sambar Server pagecount CGI Traversal Arbitrary File Overwrite

By default, there is a pagecount script with Sambar Web Server located at http://sambarserver/session/pagecount This counter writes its temporary files in c:\sambardirectory\tmp. It allows to overwrite any files on the filesystem since the 'page' parameter is not checked against '../../' attacks...

CVE-2001-1024

login.gas.bat and other CGI scripts in Entrust getAccess allow remote attackers to execute Java programs, and possibly arbitrary commands, by specifying an alternate -classpath argument...

multiple vulnerabilities in un-cgi

I recently found a number of vulnerabilities in the CGI wrapper program uncgi'. I was amazed to find out this was never reported before at least; the archives don't show it. Description ----------- Un-CGI is a little program that parses options in i.e. QUERYSTRING and starts a CGI script. Since a...

Очередные дырки в CGI

Возможность получть любой файл через обратный путь в директориях...

CVE-2001-1241

Un-CGI 1.9 and earlier does not verify that a CGI script has the execution bits set before executing it, which allows remote attackers to execute arbitrary commands by directing Un-CGI to a document that begins with "!" and the desired program name...

CVE-2001-1242

Directory traversal vulnerability in Un-CGI 1.9 and earlier allows remote attackers to execute arbitrary code via a .. dot dot in an HTML form...

Lotus Domino vulnerable to a denial of service via DOS device request

Overview The Lotus Domino Web Server contains a flaw that could be exploited to cause a denial-of-service situation on the Windows and OS/2 Platforms. Description With the Lotus Domino Web Server, you can access DOS-devices. If this is done through the cgi-bin directory, a ncgihttp.exe process wi...