23 matches found
CVE-1999-0279
Excite for Web Servers EWS allows remote command execution via shell metacharacters...
EUVD-1999-1053
Malware in sbrugna...
EUVD-1999-1052
Malware in sbrugna...
excite-fashion.com Cross Site Scripting vulnerability OBB-3693620
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
excite.es Cross Site Scripting vulnerability OBB-2334900
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
shop.excite.co.id XSS vulnerability
Open Bug Bounty ID: OBB-565319 Description| Value ---|--- Affected Website:| shop.excite.co.id Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Other Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...
rd.excite.com Open Redirect vulnerability
Open Bug Bounty ID: OBB-562442 Description| Value ---|--- Affected Website:| rd.excite.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| Open Redirect / CWE-601 CVSSv3 Score:| 3.4...
shop.excite.co.id XSS vulnerability
Open Bug Bounty ID: OBB-557951 Description| Value ---|--- Affected Website:| shop.excite.co.id Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...
d.excite.co.jp XSS vulnerability
Open Bug Bounty ID: OBB-549316 Description| Value ---|--- Affected Website:| d.excite.co.jp Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...
Excite BigFishing Free - Dynamic Code Loading, Exported components, External URLs vulnerabilities
HackApp vulnerability scanner discovered that application Excite BigFishing Free published at the 'play' market has multiple vulnerabilities...
CVE-1999-1072
Excite for Web Servers EWS 1.1 allows local users to gain privileges by obtaining the encrypted password from the world-readable Architext.conf authentication file and replaying the encrypted password in an HTTP request to AT-generated.cgi or AT-admin.cgi...
CVE-1999-1073
Excite for Web Servers EWS 1.1 records the first two characters of a plaintext password in the beginning of the encrypted password, which makes it easier for an attacker to guess passwords via a brute force or dictionary attack...
CVE-1999-1073
Technical details about CVE-1999-1073 are not publicly provided in the supplied documents. Monitor for updates from NVD/CVE listings.
CVE-1999-1071
CVE-1999-1071 affects Excite for Web Servers (EWS) 1.1. The Architext.conf authentication file is installed with world-writable permissions, allowing local users to modify the file and gain access to Excite accounts. Root cause: insecure file permissions on the authentication file. Impact: confid...
CVE-1999-1071
Excite for Web Servers EWS 1.1 installs the Architext.conf authentication file with world-writeable permissions, which allows local users to gain access to Excite accounts by modifying the file...
CVE-1999-0279
Excite for Web Servers EWS allows remote command execution via shell metacharacters...
Excite for Web Server architext_query.pl Shell Metacharacter Arbitrary Command Execution
Excite for Webservers is installed. This CGI has a well-known security flaw that lets a remote attacker execute arbitrary commands with the privileges of the web server. Versions newer than 1.1. are patched. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. include'deprecatednasllevel.inc';...
CVE-1999-1072
Excite for Web Servers EWS 1.1 allows local users to gain privileges by obtaining the encrypted password from the world-readable Architext.conf authentication file and replaying the encrypted password in an HTTP request to AT-generated.cgi or AT-admin.cgi...
CVE-1999-1073
Excite for Web Servers EWS 1.1 records the first two characters of a plaintext password in the beginning of the encrypted password, which makes it easier for an attacker to guess passwords via a brute force or dictionary attack...
CVE-1999-1071
Excite for Web Servers EWS 1.1 installs the Architext.conf authentication file with world-writeable permissions, which allows local users to gain access to Excite accounts by modifying the file...