Lucene search
K

46 matches found

CVE
CVE
added 2003/07/25 4:0 a.m.54 views

CVE-2003-0424

The CVE-2003-0424 entry affects Apple QuickTime/Darwin Streaming Server prior to 4.1.3f. The vulnerability allows an attacker to disclose script source code by appending encoded characters (%20 space or %2e dot) to an HTTP request for a script (e.g., /view_broadcast.cgi). The issue is a Script So...

5CVSS6.5AI score0.0142EPSS
Exploits1References2Affected Software1
NVD
NVD
added 2002/05/31 4:0 a.m.17 views

CVE-2002-0304

Lil HTTP Server 2.1 allows remote attackers to read password-protected files via a /./ in the HTTP request...

5CVSS6.5AI score0.01539EPSS
Exploits0References4
NVD
NVD
added 2001/06/27 4:0 a.m.17 views

CVE-2001-0425

AdLibrary.pm in AdCycle 0.78b allows remote attackers to gain privileges to AdCycle via a malformed Agent: header in the HTTP request, which is inserted into a resulting SQL query that is used to verify login information...

7.5CVSS7.4AI score0.02401EPSS
Exploits1References2
Cvelist
Cvelist
added 2001/05/24 4:0 a.m.26 views

CVE-2001-0399

Caucho Resin 1.3b1 and earlier allows remote attackers to read source code for Javabean files by inserting a .jsp before the WEB-INF specifier in an HTTP request...

6.8AI score0.0284EPSS
Exploits1References2
securityvulns
securityvulns
added 2001/04/04 12:0 a.m.63 views

Re: Tomcat may reveal script source code by URL trickery

There is another way to get the source from a jsp page using Tomcat. If you don't write HTTP/1.0 or HTTP/1.1 in the end of the GET request, you will get the source code and not the jsp processed. In other words, use Apache + Tomcat if you intend to protect your source code. telnet maq106 8080...

7.3AI score
Exploits0
exploitpack
exploitpack
added 2000/08/29 12:0 a.m.13 views

GWScripts News Publisher 1.0 - author.file Write

GWScripts News Publisher 1.0 - author.file Write source: https://www.securityfocus.com/bid/1621/info It is possible for a remote user to add an author to the author index author.file in GWScripts News Publisher, a web news publisher. This can be done by requesting the following raw HTTP request...

0.2AI score
Exploits0
Rows per page
Query Builder