CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

11 matches found

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2002-1010

Malware in sbrugna...

5CVSS6.4AI score0.03447EPSS

Exploits1References4

RedhatCVE•added 2025/05/21 9:48 p.m.•6 views

CVE-2009-2704

CA SiteMinder allows remote attackers to bypass cross-site scripting XSS protections for J2EE applications via a request containing a %00 encoded null byte...

4.3CVSS6.1AI score0.00682EPSS

Exploits1References1

NVD•added 2013/11/05 9:55 p.m.•11 views

CVE-2013-5688

Multiple directory traversal vulnerabilities in index.php in AjaXplorer 5.0.2 and earlier allow remote authenticated users to read arbitrary files via a ../%00 dot dot backslash encoded null byte in the file parameter in a 1 download or 2 getcontent action, or 3 upload arbitrary files via a ../%0...

5.5CVSS6.4AI score0.03043EPSS

Exploits6References3

Prion•added 2009/08/11 10:30 a.m.•17 views

Cross site scripting

CA SiteMinder allows remote attackers to bypass cross-site scripting XSS protections for J2EE applications via a request containing a %00 encoded null byte...

4.3CVSS6.2AI score0.00682EPSS

Exploits1References1

OpenVAS•added 2009/03/23 12:0 a.m.•33 views

Ubuntu Update for firefox vulnerabilities USN-490-1

Ubuntu Update for Linux kernel vulnerabilities USN-490-1 OpenVAS Vulnerability Test $Id: gbubuntuUSN4901.nasl 7969 2017-12-01 09:23:16Z santu $ Ubuntu Update for firefox vulnerabilities USN-490-1 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH,...

9.3CVSS0.9AI score0.2528EPSS

Exploits6References2

NVD•added 2006/12/31 5:0 a.m.•17 views

CVE-2006-5858

Adobe ColdFusion MX 7 through 7.0.2, and JRun 4, when run on Microsoft IIS, allows remote attackers to read arbitrary files, list directories, or read source code via a double URL-encoded NULL byte in a ColdFusion filename, such as a CFM file...

5CVSS6.7AI score0.07061EPSS

Exploits0References9

Tenable Nessus•added 2004/08/18 12:0 a.m.•10 views

BEA WebLogic < 6.1 SP2 Encoded Null Byte Request JSP Source Disclosure

Binary data 1526.prm...

7.3AI score

Exploits0References1

NVD•added 2002/10/04 4:0 a.m.•11 views

CVE-2002-1021

BadBlue server allows remote attackers to read restricted files, such as EXT.INI, via an HTTP request that contains a hex-encoded null byte...

5CVSS6.5AI score0.03447EPSS

Exploits1References3

NVD•added 2002/10/04 4:0 a.m.•11 views

CVE-2002-1025

JRun 3.0 through 4.0 allows remote attackers to read JSP source code via an encoded null byte in an HTTP GET request, which causes the server to send the .JSP file unparsed...

5CVSS6.8AI score0.01771EPSS

Exploits1References6

Cvelist•added 2002/08/31 4:0 a.m.•12 views

CVE-2002-1021

BadBlue server allows remote attackers to read restricted files, such as EXT.INI, via an HTTP request that contains a hex-encoded null byte...

6.5AI score0.03447EPSS

Exploits1References3

CVE•added 2002/08/31 4:0 a.m.•36 views

CVE-2002-1021

Summary of CVE-2002-1021 (BadBlue Hex-encoded Null Byte) The vulnerability affects the BadBlue web server and allows remote attackers to read restricted files (notably EXT.INI, the BadBlue configuration file) by sending an HTTP request containing a hex-encoded NULL byte. This constitutes an infor...

5CVSS6.6AI score0.03447EPSS

Exploits1References3Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by