75 matches found
AWStats 5.x/6.x - Debug Remote Information Disclosure
source: https://www.securityfocus.com/bid/12545/info A remote information disclosure vulnerability reportedly affects AWStats. This issue is due to a failure of the application to properly validate access to sensitive data. An attacker may leverage this issue to gain access to potentially sensiti...
phpMyAdmin < 2.5.2 Multiple Vulnerabilities
Binary data 2420.prm...
cPanel 9.9.1 -R3 Front Page Extension - Installation Information Disclosure
cPanel 9.9.1 -R3 Front Page Extension - Installation Information Disclosure source: https://www.securityfocus.com/bid/11456/info It is reported that cPanel is susceptible to an information disclosure vulnerability in its function to enable Front Page extensions. This vulnerability reportedly allo...
Software602 602Pro LAN Suite - Web Mail Cross-Site Scripting
Software602 602Pro LAN Suite - Web Mail Cross-Site Scripting source: https://www.securityfocus.com/bid/9777/info It has been reported that 602Pro LAN Suite Web Mail is prone to a cross-site scripting vulnerability. This issue is due to a failure of the application to properly sanitize user input...
ShopCartCGI 2.3 - genindexpage.cgi Traversal Arbitrary File Access
source: https://www.securityfocus.com/bid/9670/info It has been reported that ShopcartCGI is prone to a remote file disclosure vulnerability. This issue is due to insufficient validation of user-supplied input. Upon successful exploitation of this issue an attacker may be able to gain access to...
CuteNews 1.3 - Debug Query Information Disclosure
CuteNews 1.3 - Debug Query Information Disclosure source: https://www.securityfocus.com/bid/9130/info An information disclosure weakness has been reported in CuteNews 1.3, that may expose sensitive server configuration data. The problem occurs due to CuteNews accepting a debug query that will...
Macromedia Flash Player 6.0.x - Flash Cookie Predictable File Location
source: https://www.securityfocus.com/bid/8900/info Macromedia Flash Player is reported to store Flash cookies .sol files in a predictable location on client systems. Other attacks are possible given the ability to store content on a system in a predictable location, such as referencing the conte...
SheerDNS 1.0 - Information Disclosure
// source: https://www.securityfocus.com/bid/7336/info A vulnerability has been discovered in SheerDNS. Due to insufficient sanitization of DNS requests, an attacker may be able to view the contents of an arbitrary system directory or file. Information obtained by exploiting this issue may aid an...
Mambo Site Server 4.0.11 - Full Path Disclosure
Mambo Site Server 4.0.11 - Full Path Disclosure source: https://www.securityfocus.com/bid/6387/info A vulnerability has been discovered in Mambo Site Server. Requesting the 'index.php' script with an invalid parameter will cause an error page to be generated containing the path of the Mambo scrip...
Anonymous FTP Writable root Directory
It is possible to write on the root directory of the remote anonymous FTP server. This allows an attacker to upload arbitrary files which can be used in other attacks, or to turn the FTP server into a software distribution point. TRUSTED...
Microsoft IIS 3.04.0 - Upgrade BDIR.HTR
Microsoft IIS 3.04.0 - Upgrade BDIR.HTR source: https://www.securityfocus.com/bid/2280/info Microsoft Internet Information Server IIS 3.0 came with a series of remote administration scripts installed in /scripts/iisadmin off the web root directory. ism.dll is required for processing these scripts...
CVE-2022-32571
CVE-2022-32571 is rejected/not used and does not represent an active vulnerability entry.
CVE-2019-8869
...
CVE-2023-5755
...
CVE-2018-4714
...