Lucene search
K

250 matches found

Exploit DB
Exploit DB
added 2005/05/24 12:0 a.m.28 views

GForge 3.x - Arbitrary Command Execution

source: https://www.securityfocus.com/bid/13716/info GForge is affected by a remote command execution vulnerability. This issue arises because the application fails to sanitize user-supplied data passed through URI parameters. An attacker can supply arbitrary shell commands through the affected...

7.4AI score
Exploits0
exploitpack
exploitpack
added 2005/05/24 12:0 a.m.24 views

GForge 3.x - Arbitrary Command Execution

GForge 3.x - Arbitrary Command Execution source: https://www.securityfocus.com/bid/13716/info GForge is affected by a remote command execution vulnerability. This issue arises because the application fails to sanitize user-supplied data passed through URI parameters. An attacker can supply...

1.2AI score
Exploits0
UbuntuCve
UbuntuCve
added 2005/05/02 4:0 a.m.29 views

CVE-2005-0299

Directory traversal vulnerability in GForge 3.3 and earlier allows remote attackers to list arbitrary directories via a .. dot dot in the 1 dir parameter to controller.php or 2 dirname parameter to controlleroo.php...

5CVSS6AI score0.01713EPSS
Exploits0References1
NVD
NVD
added 2005/05/02 4:0 a.m.17 views

CVE-2005-0299

Directory traversal vulnerability in GForge 3.3 and earlier allows remote attackers to list arbitrary directories via a .. dot dot in the 1 dir parameter to controller.php or 2 dirname parameter to controlleroo.php...

5CVSS6.6AI score0.01713EPSS
Exploits0References4
Cvelist
Cvelist
added 2005/02/10 5:0 a.m.23 views

CVE-2005-0299

Directory traversal vulnerability in GForge 3.3 and earlier allows remote attackers to list arbitrary directories via a .. dot dot in the 1 dir parameter to controller.php or 2 dirname parameter to controlleroo.php...

6.6AI score0.01713EPSS
Exploits0References4
CVE
CVE
added 2005/02/10 5:0 a.m.49 views

CVE-2005-0299

CVE-2005-0299 affects GForge 3.3 and earlier, where a directory traversal flaw in the PHP components allows remote attackers to enumerate arbitrary directories via the dir parameter to controller.php or the dir_name parameter to controlleroo.php. The vulnerability is documented across multiple so...

5CVSS6.6AI score0.01713EPSS
Exploits0References4Affected Software1
Packet Storm
Packet Storm
added 2005/01/25 12:0 a.m.38 views

STG Security Advisory 2005-01-20.24

STG Security Advisory: SSA-20050120-24 GForge 3.x directory traversal vulnerability. Revision 1.0 Date Published: 2005-01-20 KST Last Update: 2005-01-20 KST Disclosed by SSR Team [email protected] Summary ======== GForge is a software to help collaborative development for software...

0.5AI score
Exploits0
securityvulns
securityvulns
added 2005/01/22 12:0 a.m.48 views

STG Security Advisory: [SSA-20050120-24] GForge 3.x directory traversal vulnerability

STG Security Advisory: SSA-20050120-24 GForge 3.x directory traversal vulnerability. Revision 1.0 Date Published: 2005-01-20 KST Last Update: 2005-01-20 KST Disclosed by SSR Team [email protected] Summary ======== GForge is a software to help collaborative development for software...

Exploits0
Tenable Nessus
Tenable Nessus
added 2005/01/21 12:0 a.m.17 views

GForge Multiple Script Traversal Arbitrary Directory Listing

The remote host is running GForge, a CVS repository browser written in PHP. The installed version fails to properly sanitize user-supplied data to the 'dir' URI parameter in the 'controller.php' script, or the 'dirname' parameter in the 'controlleroo.php' script. An attacker could exploit this fl...

5CVSS5.5AI score0.01713EPSS
Exploits0References2
FreeBSD
FreeBSD
added 2005/01/20 12:0 a.m.19 views

gforge -- directory traversal vulnerability

An STG Security Advisory reports: GForge CVS module made by Dragos Moinescu and another module made by Ronald Petty have a directory traversal vulnerability. ... malicious attackers can read arbitrary directory lists...

5CVSS6.6AI score0.01713EPSS
Exploits0References1
Rows per page
Query Builder