Lucene search
K

44 matches found

NVD
NVD
added 2006/10/26 5:7 p.m.15 views

CVE-2006-5554

Directory traversal vulnerability in index.php in Imageview 5 allows remote attackers to read or execute arbitrary local files via a .. dot dot in the usersettings cookie, as demonstrated by using the MyFile parameter in albumview.php to upload a text/plain .gif file containing PHP code, which is...

7.5CVSS7.2AI score0.02437EPSS
Exploits1References4
Cvelist
Cvelist
added 2006/10/26 5:0 p.m.21 views

CVE-2006-5554

Directory traversal vulnerability in index.php in Imageview 5 allows remote attackers to read or execute arbitrary local files via a .. dot dot in the usersettings cookie, as demonstrated by using the MyFile parameter in albumview.php to upload a text/plain .gif file containing PHP code, which is...

7.2AI score0.02437EPSS
Exploits1References4
Cvelist
Cvelist
added 2002/08/31 4:0 a.m.32 views

CVE-2000-1205

Cross site scripting vulnerabilities in Apache 1.3.0 through 1.3.11 allow remote attackers to execute script as other web site visitors via 1 the printenv CGI printenv.pl, which does not encode its output, 2 pages generated by the apsenderrorresponse function such as a default 404, which does not...

6.5AI score0.23456EPSS
Exploits0References11
NVD
NVD
added 2001/09/12 4:0 a.m.16 views

CVE-2001-0999

Outlook Express 6.00 allows remote attackers to execute arbitrary script by embedding SCRIPT tags in a message whose MIME content type is text/plain, contrary to the expected behavior that text/plain messages will not run script...

7.5CVSS7.3AI score0.12292EPSS
Exploits0References4
Rows per page
Query Builder