Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

3 matches found

seebug.org
seebug.orgadded 2009/02/14 12:0 a.m.17 views

Ewebeditor2.8.0最终版删除任意文件漏洞

eWebEditor是基于浏览器的、所见即所得的在线HTML编辑器。她能够在网页上实现许多桌面编辑软件(如:Word)所具有的强大可视编辑功能。WEB开发人员可以用她把传统的多行文本输入框TEXTAREA替换为可视化的富文本输入框,使最终用户可以可视化的发布HTML格式的网页内容。eWebEditor!已基本成为网站内容管理发布的必备工具! 此漏洞存在于Example\NewsSystem目录下的delete.asp文件中,这是ewebeditor的测试页面,无须登陆可以直接进入,看这些代码: ‘ 把带”|”的字符串转为数组 Dim aSavePathFileName...

7.1AI score
Exploits0
Cvelist
Cvelistadded 2005/06/21 4:0 a.m.12 views

CVE-2002-1730

ASPjar Guestbook 1.00 allows remote attackers to delete arbitrary messages accessing the delete.asp administrative script with certain cookie values set to "true"...

6.7AI score0.00392EPSS
Exploits0References4
CVE
CVEadded 2005/02/15 5:0 a.m.44 views

CVE-2005-0424

Affected software: ASPjar Guestbook 1.00. The CVE-2005-0424 entry maps to CVE-2002-1730 and describes a vulnerability in delete.asp that enables remote attackers to delete arbitrary messages by crafting specific cookie values. Root cause: improper handling of the delete.asp administrative script ...

5CVSS6.4AI score0.00425EPSS
Exploits0References4Affected Software1
Rows per page
Query Builder