Lucene search
K

66 matches found

CVE
CVE
added 2001/11/22 5:0 a.m.45 views

CVE-2001-0841

CVE-2001-0841 : Affected software is Ikonboard (Search.cgi in ib219 and earlier). The vulnerability is a directory traversal flaw that allows remote attackers to overwrite files and gain privileges by sending the dot-dot sequence in the amembernamecookie cookie. The available sources identify thi...

7.5CVSS7.3AI score0.0272EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2001/01/22 5:0 a.m.21 views

CVE-2000-0287

The BizDB CGI script bizdb-search.cgi allows remote attackers to execute arbitrary commands via shell metacharacters in the dbname parameter...

7.6AI score0.10625EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2000/11/28 12:0 a.m.60 views

Master Index search.cgi Traversal Arbitrary File/Directory Access

The version of Master Index running on the remote web server has a directory traversal vulnerability. Input to the 'catigory' parameter of search.cgi is not properly sanitized. A remote attacker could exploit this to read arbitrary files from the system. %NASLMINLEVEL 70300 C Tenable Network...

5CVSS5.8AI score0.07851EPSS
Exploits1References2
CVE
CVE
added 2000/03/22 5:0 a.m.52 views

CVE-2000-0188

EZShopper 3.0’s search.cgi is vulnerable to directory traversal and command injection. Remote attackers can read arbitrary files via a .. path and may execute shell commands through metacharacters. The Nessus entry also mentions directory traversal in loadpage.cgi and possible arbitrary command e...

7.5CVSS7.1AI score0.03005EPSS
Exploits1References2Affected Software1
exploitpack
exploitpack
added 2000/02/27 12:0 a.m.16 views

Alex Heiphetz Group eZshopper 3.0 - Remote Command Execution

Alex Heiphetz Group eZshopper 3.0 - Remote Command Execution source: https://www.securityfocus.com/bid/1014/info EZShopper is a perl-based E-Commerce software package offered by Alex Heiphetz Group, Inc. It is possible to remotely compromise a host due to a lack of checks on user input passed...

0.7AI score
Exploits0
Exploit DB
Exploit DB
added 2000/01/03 12:0 a.m.37 views

Solution Scripts Home Free 1.0 - 'search.cgi' Directory Traversal

source: https://www.securityfocus.com/bid/921/info Home Free is a suite of Perl cgi scripts that allow a website to support user contributions of various types. One of the scripts, search.cgi, accepts a parameter called letter which can be any text string. The supplied argument can contain the...

7.4AI score
Exploits0
Rows per page
Query Builder