Lucene search
K

9 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2002-2355

Malware in sbrugna...

4.3CVSS6.4AI score0.01065EPSS
Exploits0References6
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2002-2354

Malware in sbrugna...

4.3CVSS6.4AI score0.01511EPSS
Exploits1References6
NVD
NVD
added 2014/12/12 12:59 a.m.14 views

CVE-2014-7260

The Server Side Includes SSI implementation in the File Upload BBS component in ULTRAPOP.JP i-HTTPD allows remote attackers to execute arbitrary commands by uploading files containing commands in SSI directives...

7.5CVSS7.6AI score0.02103EPSS
Exploits0References3
Cvelist
Cvelist
added 2014/12/12 12:0 a.m.19 views

CVE-2014-7260

The Server Side Includes SSI implementation in the File Upload BBS component in ULTRAPOP.JP i-HTTPD allows remote attackers to execute arbitrary commands by uploading files containing commands in SSI directives...

7.6AI score0.02103EPSS
Exploits0References3
Japan Vulnerability Notes
Japan Vulnerability Notes
added 2014/12/09 5:40 a.m.2 views

"File Upload BBS" of i-HTTPD vulnerable to remote command execution

Overview i-HTTPD is a web server for Windows, implementing Server Side Includes SSI. i-HTTPD contains "File Upload BBS". When "File Upload BBS" is activated, a user can upload files on the server, and i-HTTPD processes SSI directives in the uploaded files CWE-97. Yamagata of webappsec.jp reported...

7.5CVSS7AI score0.02103EPSS
Exploits0References5
Cvelist
Cvelist
added 2007/10/31 4:0 p.m.27 views

CVE-2002-2376

Cross-site scripting XSS vulnerability in E-Guestsign.pl in E-Guest 1.1 allows remote attackers to inject arbitrary SSI directives, web script, and HTML via the 1 full name, 2 email, 3 homepage, and 4 location parameters. NOTE: this issue might overlap CVE-2005-1605...

5.7AI score0.01511EPSS
Exploits1References5
CVE
CVE
added 2007/10/31 4:0 p.m.64 views

CVE-2002-2376

CVE-2002-2376 is an XSS vulnerability in E-Guest_sign.pl for E-Guest 1.1. The issue allows remote attackers to inject arbitrary SSI directives, web script, and HTML through the (1) full name, (2) email, (3) homepage, and (4) location parameters. The description notes possible overlap with CVE-200...

4.3CVSS6.1AI score0.01511EPSS
Exploits1References5Affected Software1
NVD
NVD
added 2002/12/31 5:0 a.m.12 views

CVE-2002-2377

Cross-site scripting XSS vulnerability in addentry.cgi in ZAP 1.0.3 allows remote attackers to inject arbitrary SSi directives, web script, and HTML via the entry field...

4.3CVSS5.8AI score0.01065EPSS
Exploits0References5
Cvelist
Cvelist
added 2002/03/09 5:0 a.m.39 views

CVE-2001-0506

Buffer overflow in ssinc.dll in IIS 5.0 and 4.0 allows local users to gain system privileges via a Server-Side Includes SSI directive for a long filename, which triggers the overflow when the directory name is added, aka the "SSI privilege elevation" vulnerability...

6.7AI score0.68934EPSS
Exploits2References6
Rows per page
Query Builder