CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

index.php in Yamamah Photo Gallery 1.00 allows remote attackers to obtain the source code of executable files within the web document root via the download parameter...

5CVSS7.2AI score0.02034EPSS

Exploits1References1

CVE•added 2009/08/11 8:25 p.m.•33 views

CVE-2008-6933

CVE-2008-6933 is a vulnerability in MiniGal b13 (MG2) where a directory traversal flaw in index.php allows remote attackers to read the source code of .php files and possibly other files by injecting “..” in the list parameter. Affected component: MiniGal b13 (MG2). Root cause: improper sanitizat...

5CVSS7AI score0.03118EPSS

Exploits1References3Affected Software1

NVD•added 2004/12/31 5:0 a.m.•8 views

CVE-2004-2636

TinyWeb 1.9 allows remote attackers to read source code of scripts via "/./" in the URL...

5CVSS6.8AI score0.04147EPSS

Exploits1References5

NVD•added 2004/12/31 5:0 a.m.•7 views

CVE-2004-2213

Mbedthis AppWeb HTTP server before 1.1.3 allows remote attackers to obtain the source code for scripts via a 1 trailing dot "." or 2 trailing space in an HTTP request...

5CVSS6.8AI score0.00427EPSS

Exploits0References5

OSV•added 2002/10/11 4:0 a.m.•3 views

CVE-2002-1156

Apache 2.0.42 allows remote attackers to view the source code of a CGI script via a POST request to a directory with both WebDAV and CGI enabled...

6.8AI score

Exploits0References17

NVD•added 2002/10/11 4:0 a.m.•18 views

CVE-2002-1156

Apache 2.0.42 allows remote attackers to view the source code of a CGI script via a POST request to a directory with both WebDAV and CGI enabled...

5CVSS6.5AI score0.38519EPSS

Exploits0References17

NVD•added 2002/08/24 4:0 a.m.•11 views

CVE-2002-1451

Blazix before 1.2.2 allows remote attackers to read source code of JSP scripts or list restricted web directories via an HTTP request that ends in a 1 "+" or 2 "" backslash character...

5CVSS6.8AI score0.05784EPSS

Exploits1References4

Cvelist•added 2002/03/15 5:0 a.m.•13 views

CVE-2001-1140

BadBlue Personal Edition v1.02 beta allows remote attackers to read source code for executable programs by appending a %00 null byte to the request...

6.8AI score0.00996EPSS

Exploits0References3

NVD•added 2001/08/02 4:0 a.m.•17 views

CVE-2001-0590

Apache Software Foundation Tomcat Servlet prior to 3.2.2 allows a remote attacker to read the source code to arbitrary 'jsp' files via a malformed URL request which does not end with an HTTP protocol specification i.e. HTTP/1.0...

5CVSS6.7AI score0.48298EPSS

Exploits1References4

NVD•added 2001/03/12 5:0 a.m.•15 views

CVE-1999-0922

An example application in ColdFusion Server 4.0 allows remote attackers to view source code via the sourcewindow.cfm file...

5CVSS6.8AI score0.00647EPSS

Exploits0References1

NVD•added 2001/02/12 5:0 a.m.•11 views

CVE-2000-1090

Microsoft IIS for Far East editions 4.0 and 5.0 allows remote attackers to read source code for parsed pages via a malformed URL that uses the lead-byte of a double-byte character...

5CVSS6.7AI score0.12517EPSS

Exploits0References3

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by