CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

19 matches found

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2004-2494

Malware in sbrugna...

5CVSS6.4AI score0.01322EPSS

Exploits1References7

EUVD•added 2025/10/07 12:30 a.m.•3 views

EUVD-2002-2366

Malware in sbrugna...

5CVSS6.4AI score0.0052EPSS

Exploits0References3

RedhatCVE•added 2025/05/21 10:13 p.m.•4 views

CVE-2002-2388

Buffer overflow in INweb POP3 mail server 2.01 allows remote attackers to cause a denial of service crash via a long HELO command...

5CVSS7.2AI score0.0052EPSS

Exploits0References1

NVD•added 2024/12/12 8:15 a.m.•13 views

CVE-2024-12564

Exposure of Sensitive Information to an Unauthorized Actor vulnerability was discovered in Open Design Alliance CDE inWEB SDK before 2025.3. Installing CDE Server with default settings allows unauthorized users to visit prometheus metrics page. This can allow attackers to understand more things...

6.9CVSS0.00217EPSS

Exploits0References1

Vulnrichment•added 2024/12/12 7:41 a.m.•5 views

CVE-2024-12564 Exposure of Sensitive Information to an Unauthorized Actor vulnerability in ODA CDE inWEB SDK before 2025.3

6.9CVSS6.7AI score0.00217EPSS

Exploits0References1

CVE•added 2024/12/12 7:41 a.m.•48 views

CVE-2024-12564

CVE-2024-12564 affects Open Design Alliance CDE inWEB SDK prior to 2025.3. The vulnerability arises from default CDE Server settings that allow unauthorized users to access the Prometheus metrics page, exposing information about the target application. Impact is described as exposure of sensitive...

6.9CVSS6.4AI score0.00217EPSS

Exploits0References1

Cvelist•added 2024/12/12 7:41 a.m.•17 views

CVE-2024-12564 Exposure of Sensitive Information to an Unauthorized Actor vulnerability in ODA CDE inWEB SDK before 2025.3

6.9CVSS0.00217EPSS

Exploits0References1

CNNVD•added 2024/12/12 12:0 a.m.•1 views

Open Design Alliance CDE inWEB SDK 安全漏洞

Open Design Alliance CDE inWEB SDK is an application organized by the Open Design Alliance ODA. Web application for editing, creating and viewing DWGs. A security vulnerability exists in versions of the Open Design Alliance CDE inWEB SDK prior to 2025.3, which arises from the installation of CDE...

6.9CVSS6.5AI score0.00217EPSS

Exploits0References1

CVE•added 2007/10/31 4:0 p.m.•39 views

CVE-2002-2388

The vulnerability CVE-2002-2388 affects INweb POP3 mail server 2.01. The root cause is a buffer overflow triggered by a long HELO command, allowing remote attackers to cause a denial of service (crash). This is described in the CVE entry and corroborated by Red Hat and CVE records. No remediation...

5CVSS7.2AI score0.0052EPSS

Exploits0References2Affected Software1

Cvelist•added 2007/10/31 4:0 p.m.•17 views

CVE-2002-2388

Buffer overflow in INweb POP3 mail server 2.01 allows remote attackers to cause a denial of service crash via a long HELO command...

6.8AI score0.0052EPSS

Exploits0References2

Packet Storm•added 2006/08/27 12:0 a.m.•27 views

adv45-K-159-2006.txt

ECHOADV45$2006 ----------------------------------------------------------------------------------------- ECHOADV45$2006 WEBinsta CMS 0.3.1 templatesdir Remote File Inclusion Vulnerability ----------------------------------------------------------------------------------------- Author : M.Hasran...

7.4AI score

Exploits0

securityvulns•added 2006/08/14 12:0 a.m.•48 views

[ECHO_ADV_45$2006] WEBinsta CMS 0.3.1 (templates_dir) Remote File Inclusion Vulnerability

7.9AI score

Exploits0

Cvelist•added 2005/10/25 4:0 a.m.•14 views

CVE-2004-2503

INweb Mail Server 2.40 allows remote attackers to cause a denial of service crash via a large number of connect/disconnect actions to the 1 POP3 and 2 SMTP services...

6.6AI score0.01322EPSS

Exploits1References6

CVE•added 2005/10/25 4:0 a.m.•36 views

CVE-2004-2503

INweb Mail Server 2.40 is affected. The issue allows remote attackers to cause a denial of service (crash) by a large number of connect/disconnect actions to the POP3 and SMTP services. The provided sources do not detail root cause or a patch; exploitation info is not stated. Remediation details ...

5CVSS7AI score0.01322EPSS

Exploits1References6Affected Software1

NVD•added 2004/12/31 5:0 a.m.•9 views

CVE-2004-2503

INweb Mail Server 2.40 allows remote attackers to cause a denial of service crash via a large number of connect/disconnect actions to the 1 POP3 and 2 SMTP services...

5CVSS6.6AI score0.01322EPSS

Exploits1References6

NVD•added 2002/12/31 5:0 a.m.•10 views

CVE-2002-2388

Buffer overflow in INweb POP3 mail server 2.01 allows remote attackers to cause a denial of service crash via a long HELO command...

5CVSS6.8AI score0.0052EPSS

Exploits0References2

Packet Storm•added 2002/11/13 12:0 a.m.•21 views

INwebMailServer.txt

-----BEGIN PGP SIGNED MESSAGE----- Hash: MD5 - -- INweb Mail Server v2.01 Denial of Service Vulnerability -- - -- Type Denial of Service - -- Release Date November 12, 2002 - -- Product / Vendor The INweb Mail Server is a standard Internet POP3 and SMTP mail server that runs flawlessly under...

7.4AI score

Exploits0

securityvulns•added 2002/11/12 12:0 a.m.•24 views

[SecurityOffice] INweb Mail Server v2.01 Denial of Service Vulnerability

7.3AI score

Exploits0

securityvulns•added 2002/11/12 12:0 a.m.•33 views

INweb Mail Server buffer overflow

Buffer overflow on oversized string...

4.7AI score

Exploits0References1Affected Software1

Rows per page