Lucene search
K

4 matches found

Cvelist
Cvelist
added 2005/02/06 5:0 a.m.23 views

CVE-2004-1385

phpGroupWare 0.9.16.003 and earlier allows remote attackers to gain sensitive information via 1 unexpected characters in the session ID such as shell metacharacters, 2 an invalid appname parameter to preferences.php or 3 an invalid menuaction parameter to index.php, which reveals the web server...

6.5AI score0.07324EPSS
Exploits1References4
CVE
CVE
added 2005/02/06 5:0 a.m.53 views

CVE-2004-1385

CVE-2004-1385 affects phpGroupWare up to version 0.9.16.003. The vulnerability is an information-disclosure issue where an error message reveals the web server path due to (1) unexpected characters in the session ID (shell metacharacters), (2) an invalid appname parameter to preferences.php, or (...

5CVSS6.5AI score0.07324EPSS
Exploits1References4Affected Software1
NVD
NVD
added 2004/12/31 5:0 a.m.16 views

CVE-2004-1385

phpGroupWare 0.9.16.003 and earlier allows remote attackers to gain sensitive information via 1 unexpected characters in the session ID such as shell metacharacters, 2 an invalid appname parameter to preferences.php or 3 an invalid menuaction parameter to index.php, which reveals the web server...

5CVSS6.5AI score0.07324EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2004/12/16 12:0 a.m.30 views

phpGroupWare <= 0.9.16.003 Multiple Vulnerabilities

The remote host seems to be running PhpGroupWare, a multi-user groupware suite written in PHP. The remote version of this software is vulnerable to multiple issues : - A cross-site scripting issue may allow an attacker to steal the credentials of third-party users of the remote host. CVE-2004-138...

7.5CVSS5.8AI score0.07324EPSS
Exploits3References3
Rows per page
Query Builder