CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

10 matches found

OSV•added 2015/08/10 12:0 a.m.•25 views

DSA-3331-1 subversion - security update

Bulletin has no description...

5CVSS7.3AI score0.17005EPSS

Exploits0

OpenVAS•added 2015/08/09 12:0 a.m.•29 views

Debian: Security Advisory (DSA-3331-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5CVSS8.2AI score0.17005EPSS

Exploits0References3

UbuntuCve•added 2011/09/23 11:55 p.m.•26 views

CVE-2011-3727

DokuWiki 2009-12-25c allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by lib/tpl/index.php and certain other files...

5CVSS5.9AI score0.00715EPSS

Exploits1References1

CVE•added 2007/11/29 1:0 a.m.•36 views

CVE-2007-6161

This CVE (CVE-2007-6161) affects index.php in Tilde CMS 4.x and earlier, where a specific value in a search action can disclose the path of sensitive information. In the sources, the vulnerability is described as a path-disclosure issue via a search parameter, with a CVSS v2 base score of 5.0 (Me...

5CVSS6.2AI score0.00309EPSS

Exploits0References3Affected Software1

Cvelist•added 2006/02/15 11:0 a.m.•18 views

CVE-2005-4722

RequestMessage.cfm in tmsPUBLISHER 3.3 allows remote attackers to obtain sensitive information via an invalid id argument to pagename.cfm, which reveals the installation path in an error message...

6.2AI score0.00477EPSS

Exploits1References4

securityvulns•added 2003/05/07 12:0 a.m.•77 views

Multiple Vulnerabilities in SLWebmail

NGSSoftware Insight Security Research Advisory Name: Multiple Vulnerabilities in SLWebMail Systems Affected: SLWebMail 3 on Windows Severity: High Risk Vendor URL: http://www.slmail.com Authors: David Litchfield [email protected] Mark Litchfield [email protected] Date: 7th May 2003 Advisor...

0.4AI score

Exploits0

CVE•added 2002/06/25 4:0 a.m.•52 views

CVE-2001-0917

The CVE-2001-0917 entry concerns Apache Tomcat 4.0.1. The provided materials confirm an information-disclosure vulnerability where remote attackers can reveal the full install path of Tomcat by requesting a long URL that ends with a .JSP extension. The issue is tied to path disclosure via crafted...

5CVSS6.2AI score0.03425EPSS

Exploits0References6Affected Software1

CVE•added 2001/05/24 4:0 a.m.•46 views

CVE-2001-0389

CVE-2001-0389 affects IBM Websphere/NetCommerce3 3.1.2. The vulnerability allows remote attackers to determine the server’s real path by directly calling the macro.d2w macro with a NOEXISTINGHTMLBLOCK argument. Impact is listed as partial confidentiality loss; exploitation is remote over the netw...

5CVSS6.8AI score0.0066EPSS

Exploits1References2Affected Software2

CVE•added 2000/09/21 4:0 a.m.•55 views

CVE-2000-0759

The CVE-2000-0759 entry concerns Jakarta Tomcat 3.1 running under Apache, where requesting a nonexistent URL causes an error page that reveals the full physical path of the webroot. Root cause: information disclosure via error handling that leaks filesystem paths, enabling an attacker to map the ...

6.4CVSS6.1AI score0.39817EPSS

Exploits1References3Affected Software1

CVE•added 2000/02/04 5:0 a.m.•51 views

CVE-2000-0079

The CVE-2000-0079 entry concerns CERN httpd's path disclosure vulnerability. Public sources in connected documents indicate that remote attackers could determine the real pathnames of certain commands by requesting a nonexistent URL, with additional details from Nessus showing an information-disc...

7.5CVSS6.9AI score0.00636EPSS

Exploits0References1Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by