CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

9786 matches found

securityvulns•added 2006/08/14 12:0 a.m.•52 views

Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)

PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc...

1.5AI score

Exploits0References9Affected Software8

Tenable Nessus•added 2006/08/14 12:0 a.m.•34 views

IPCheck Server Monitor Traversal Arbitrary File Access

The remote host is running IPCheck Server Monitor, a network resource monitoring tool for Windows. The installed version of IPCheck Server Monitor fails to filter directory traversal sequences from requests that pass through web server interface. An attacker can exploit this issue to read arbitra...

5CVSS5.7AI score0.04157EPSS

Exploits1References4

securityvulns•added 2006/08/11 12:0 a.m.•56 views

Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)

PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc...

1.5AI score

Exploits0References11Affected Software8

securityvulns•added 2006/08/11 12:0 a.m.•38 views

Apache for Windows script source code leak

It's possible to access script code if cgi-bin is within DocumentRoot...

2.6AI score

Exploits0References1Affected Software1

Tenable Nessus•added 2006/08/11 12:0 a.m.•707 views

Apache on Windows mod_alias URL Validation Canonicalization CGI Source Disclosure

The version of Apache for Windows running on the remote host can be tricked into disclosing the source of its CGI scripts because of a configuration issue. Specifically, if the CGI directory is located within the document root, then requests that alter the case of the directory name will bypass t...

4.3CVSS5.5AI score0.37365EPSS

Exploits1References2

securityvulns•added 2006/08/10 12:0 a.m.•41 views

Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)

PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc...

1.5AI score

Exploits0References13Affected Software11

securityvulns•added 2006/08/10 12:0 a.m.•37 views

Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)

PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc...

1.5AI score

Exploits0References13Affected Software11

Exploit DB•added 2006/08/09 12:0 a.m.•108 views

Apache 2.2.2 - CGI Script Source Code Information Disclosure

source: https://www.securityfocus.com/bid/19447/info Apache is prone to an information-disclosure vulnerability because it fails to properly handle exceptional conditions. An attacker can exploit this issue to retrieve script source code. Information obtained may aid in further attacks. Versions...

7.4AI score

Exploits0

securityvulns•added 2006/08/07 12:0 a.m.•44 views

Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)

PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc...

1.5AI score

Exploits0References7Affected Software5

securityvulns•added 2006/08/04 12:0 a.m.•36 views

Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)

PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc...

1.5AI score

Exploits0References7Affected Software9

securityvulns•added 2006/08/03 12:0 a.m.•37 views

Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)

PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc...

1.5AI score

Exploits0References8Affected Software6

securityvulns•added 2006/08/02 12:0 a.m.•55 views

Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)

PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc...

1.5AI score

Exploits0References29Affected Software19

Tenable Nessus•added 2006/07/31 12:0 a.m.•34 views

TWiki configure Script Arbitrary Command Execution

The version of TWiki installed on the remote host uses an unsafe 'eval' in the 'bin/configure' script that can be exploited by an unauthenticated attacker to execute arbitrary Perl code subject to the privileges of the web server user id. %NASLMINLEVEL 70300 C Tenable Network Security, Inc...

7.5CVSS6.1AI score0.04024EPSS

Exploits5References2

securityvulns•added 2006/07/29 12:0 a.m.•34 views

Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)

PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc...

1.5AI score

Exploits0References6Affected Software4

securityvulns•added 2006/07/28 12:0 a.m.•39 views

Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)

PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc...

1.5AI score

Exploits0References4Affected Software4

Saint•added 2006/07/28 12:0 a.m.•30 views

ViRobot Server web interface addschup buffer overflow

Added: 07/28/2006 CVE: CVE-2005-2041 BID: 13964 OSVDB: 17320 Background ViRobot Linux Server includes a web-based control interface. Problem A buffer overflow in the addschup CGI program included in the ViRobot Linux Server allows remote attackers to write arbitrary commands into the root crontab...

5CVSS7.4AI score0.05547EPSS

Exploits5

Tenable Nessus•added 2006/07/28 12:0 a.m.•31 views

PatchLink Update Server proxyreg.asp Arbitrary Proxy Manipulation

The remote host is running PatchLink Update Server, a patch and vulnerability management solution. The version of PatchLink Update Server installed on the remote fails to check for authentication credentials before providing access to the '/dagent/proxyreg.asp' script. An attacker can exploit thi...

7.5CVSS5.7AI score0.0229EPSS

Exploits0References3

securityvulns•added 2006/07/27 12:0 a.m.•45 views

Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)

PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc...

7.5CVSS1.5AI score0.02273EPSS

Exploits0References6Affected Software5

securityvulns•added 2006/07/26 12:0 a.m.•49 views

Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)

PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc...

1.5AI score

Exploits0References5Affected Software2

OSV•added 2006/07/25 11:4 p.m.•2 views

DEBIAN-CVE-2006-3848

Cross-site scripting XSS vulnerability in CGI wrapper for IP Calculator IPCalc 0.40 allows remote attackers to inject arbitrary web script or HTML via the URI REQUESTURI environment variable, which is used in the actionurl variable...

2.6CVSS6AI score0.01672EPSS

Exploits0References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by