74 matches found
resin 3.1 多个代码泄露漏洞
No description provided by source...
lighttpd 1.4.19 mod_userdir区分大小写比较导致代码泄露漏洞
No description provided by source...
Tomcat 4.0.10 自带Servlet可导致源码泄漏漏洞
No description provided by source...
Hung it to the ideas so you do not pop directly run the Trojan horse-vulnerability warning-the black bar safety net
Now hung it to some pop-up code is either fake or out of date! The following to introduce an idea! Just don't pop! The browser security will not tip! Directly running our program! Here just to learn about techniques and methods friends don't sabotage code hxl. exe is an example of a Windows 2000...
IPSwitch WS_FTP Server Manager / Whats Up unauthorized access
It's possible to access script files with localhostnull account without password. Scripts source code leak...
IBM WebSphere应用服务器代码泄露漏洞
IBM Websphere Application Server是一款功能强大的WEB应用服务程序。 IBM Websphere Application Server处理畸形HTTP请求存在问题,远程攻击者可以利用此漏洞获得JSP代码信息。 在根据4种不同配置情况下,IBM Websphere Application Server可导致JSP源代码内容泄露: 1,从一个应用程序WAR服务JSP,当ibm.web.ext.xmi文件中fileServingEnabled设置为ture,存储在应用程序WAR目录下JSP文件可导致源代码泄露。...
Macromedia JRun Application Server platform multiple vulnerabilities
Source code leak, Web server DoS...
TinyWeb Executable code leak
By using /./ it's possible to access file from /cgi-bin...
Whale Communications e-Gap security appliance discloses source code via HTTP TRACE Method
Overview Whale communications e-Gap security appliance is a tool to provide a secure remote web access platform. A vulnerability exists that may permit a remote attacker to gain access to the source code of the login page. Description Whale communications e-Gap security appliance version 2.5...
Apache discloses source code via POST requests to a location with WebDAV and CGI enabled
Overview There is an information leakage in Apache that results from an interaction between WebDAV and CGI. Description Apache version 2.0.42 allows remote attackers to obtain the source code of CGI scripts that are stored in locations for which both CGI and WebDAV are enabled. When a POST reques...
JSP translation file access under Oracle 9iAS
NGSSoftware Insight Security Research Advisory Name: OracleJSP Systems Affected: Oracle 9iAS Platforms: All Operating Systems Severity: Medium/High Risk Vendor URL: http://www.oracle.com/ Author: David Litchfield [email protected] Date: 6th February 2002 Advisory number: NISR06022002C Advisory...
CVE-2001-0709
Vulnerability summary (CVE-2001-0709): Microsoft IIS 4.0 and earlier, when installed on a FAT partition, is susceptible to remote disclosure of ASP source code. An attacker can obtain the source by requesting a URL encoded with Unicode. The description in the provided documents confirms the expos...
Security Advisory(CSA-200012)
CHINANSL Security AdvisoryCSA-200012 Topic: Ultraseek Server 3.0 Vulnerability Release Dateёє Dec 6, 2000 Affected system: ============ Ultraseek Server 3.0 ЎЎЎЎ- SunOS Impact: ====== CHINANLS security team has found a security problem in Ultraseek Server 3.0 . Exploitation of this vulnerability,...
WinWebserver-exploit.txt
http://www.sddt.com/files/library/98/06/25/tbc.html Source Programmers Discover Internet Server Bug Daily Transcript Business Report June 25, 1998 Programmers at San Diego Source, the online news service of the San Diego Daily Transcript, have discovered a security hole affecting Web server...