Lucene search
K

59 matches found

NVD
NVD
added 2012/03/19 6:55 p.m.12 views

CVE-2009-5113

Cross-site scripting XSS vulnerability in wgarcmin.cgi in WebGlimpse 2.18.7 and earlier allows remote attackers to inject arbitrary web script or HTML via the DOC parameter...

4.3CVSS5.7AI score0.0096EPSS
Exploits1References2
NVD
NVD
added 2012/03/19 6:55 p.m.10 views

CVE-2009-5114

Directory traversal vulnerability in wgarcmin.cgi in WebGlimpse 2.18.7 and earlier allows remote attackers to read arbitrary files via a .. dot dot in the DOC parameter...

5CVSS6.7AI score0.13653EPSS
Exploits1References2
NVD
NVD
added 2012/03/19 6:55 p.m.19 views

CVE-2009-5112

wgarcmin.cgi in WebGlimpse 2.18.7 and earlier allows remote attackers to obtain the installation path via a crafted request...

5CVSS6.5AI score0.05406EPSS
Exploits1References2
Prion
Prion
added 2012/03/19 6:55 p.m.12 views

Directory traversal

Directory traversal vulnerability in wgarcmin.cgi in WebGlimpse 2.18.7 and earlier allows remote attackers to read arbitrary files via a .. dot dot in the DOC parameter...

5CVSS7.1AI score0.13653EPSS
Exploits1References2Affected Software1
Prion
Prion
added 2012/03/19 6:55 p.m.11 views

Cross site scripting

Cross-site scripting XSS vulnerability in wgarcmin.cgi in WebGlimpse 2.18.7 and earlier allows remote attackers to inject arbitrary web script or HTML via the DOC parameter...

4.3CVSS6.2AI score0.0096EPSS
Exploits1References2Affected Software1
Cvelist
Cvelist
added 2012/03/19 6:0 p.m.28 views

CVE-2009-5112

wgarcmin.cgi in WebGlimpse 2.18.7 and earlier allows remote attackers to obtain the installation path via a crafted request...

6.5AI score0.05406EPSS
Exploits1References2
CVE
CVE
added 2012/03/19 6:0 p.m.41 views

CVE-2009-5112

CVE-2009-5112 affects WebGlimpse (version 2.18.7 and earlier). The issue allows remote attackers to disclose the installation path via a crafted request to wgarcmin.cgi. The description provided does not include exploit specifics beyond this disclosure vector. No patched version or remediation de...

5CVSS6.7AI score0.05406EPSS
Exploits1References2Affected Software1
Cvelist
Cvelist
added 2012/03/19 6:0 p.m.19 views

CVE-2009-5113

Cross-site scripting XSS vulnerability in wgarcmin.cgi in WebGlimpse 2.18.7 and earlier allows remote attackers to inject arbitrary web script or HTML via the DOC parameter...

5.7AI score0.0096EPSS
Exploits1References2
Cvelist
Cvelist
added 2012/03/19 6:0 p.m.18 views

CVE-2009-5114

Directory traversal vulnerability in wgarcmin.cgi in WebGlimpse 2.18.7 and earlier allows remote attackers to read arbitrary files via a .. dot dot in the DOC parameter...

6.7AI score0.13653EPSS
Exploits1References2
CVE
CVE
added 2012/03/19 6:0 p.m.37 views

CVE-2009-5113

The CVE-2009-5113 entry describes a cross-site scripting (XSS) vulnerability in WebGlimpse, specifically in the wgarcmin.cgi component of WebGlimpse 2.18.7 and earlier. The issue allows remote attackers to inject arbitrary web script or HTML via the DOC parameter. The available sources (NVD/NVD m...

4.3CVSS5.9AI score0.0096EPSS
Exploits1References2Affected Software1
CVE
CVE
added 2012/03/19 6:0 p.m.38 views

CVE-2012-1787

CVE-2012-1787 describes multiple cross-site scripting (XSS) vulnerabilities in Webglimpse’s wgarcmin.cgi script for version 2.20.0 and earlier. The flaw allows remote attackers to inject arbitrary web script or HTML by supplying crafted values in the (1) URL, (2) FILE, or (3) DOMAIN parameters, e...

4.3CVSS5.9AI score0.01805EPSS
Exploits1References6Affected Software1
CVE
CVE
added 2012/03/19 6:0 p.m.73 views

CVE-2009-5114

WebGlimpse 2.18.7 and earlier is affected by a directory traversal vulnerability in wgarcmin.cgi that allows remote attackers to read arbitrary files via a .. in the DOC parameter. Affected component is WebGlimpse, version 2.18.7 and prior; root cause CWE-22 (path traversal). Impact per sources: ...

5CVSS6.9AI score0.13653EPSS
Exploits1References2Affected Software1
securityvulns
securityvulns
added 2012/03/19 12:0 a.m.100 views

Brute Force и XSS уязвимости в Webglimpse

Здравствуйте 3APA3A! После предыдущих многочисленных Cross-Site Scripting, Full path disclosure, Directory Traversal и Authorization bypass уязвимостей в Webglimpse SecurityVulns ID: 9436, 9443, 9778, 9876, сообщаю вам о найденных мною новых уязвимостях в Webglimpse. Это Brute Force и Cross-Site...

6.4AI score
Exploits0
Exploit DB
Exploit DB
added 2012/03/18 12:0 a.m.31 views

WebGlimpse 2.x - 'wgarcmin.cgi' Full Path Disclosure

source: https://www.securityfocus.com/bid/52646/info WebGlimpse is prone to a path-disclosure vulnerability. Exploiting this issue can allow an attacker to access sensitive data that may be used to launch further attacks against a vulnerable computer. WebGlimpse 2.18.7 is vulnerable; other versio...

7.4AI score
Exploits0
exploitpack
exploitpack
added 2012/03/18 12:0 a.m.12 views

WebGlimpse 2.x - wgarcmin.cgi Full Path Disclosure

WebGlimpse 2.x - wgarcmin.cgi Full Path Disclosure source: https://www.securityfocus.com/bid/52646/info WebGlimpse is prone to a path-disclosure vulnerability. Exploiting this issue can allow an attacker to access sensitive data that may be used to launch further attacks against a vulnerable...

7.4AI score
Exploits0
exploitpack
exploitpack
added 2012/02/26 12:0 a.m.16 views

Webglimpse 2.x - Multiple Cross-Site Scripting Vulnerabilities

Webglimpse 2.x - Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/52170/info Webglimpse is prone to multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. Exploiting these issues could allow an attacker to...

7AI score
Exploits0
Exploit DB
Exploit DB
added 2012/02/26 12:0 a.m.22 views

Webglimpse 2.x - Multiple Cross-Site Scripting Vulnerabilities

source: https://www.securityfocus.com/bid/52170/info Webglimpse is prone to multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. Exploiting these issues could allow an attacker to execute arbitrary script on the affected server and steal...

7AI score
Exploits0
Packet Storm
Packet Storm
added 2012/02/26 12:0 a.m.37 views

Webglimpse Brute Force / Cross Site Scripting

Hello list! I want to warn you about new security vulnerabilities in Webglimpse in addition to previous ones. These are Brute Force and Cross-Site Scripting vulnerabilities. During 2008-2009 I've disclosed multiple vulnerabilities in Webglimpse http://securityvulns.com/source15611.html, such as...

7.4AI score
Exploits0
securityvulns
securityvulns
added 2009/04/28 12:0 a.m.57 views

Multiple vulnerabilities in Webglimpse

Здравствуйте 3APA3A! Сообщаю вам о найденных мною множественных уязвимостях в Webglimpse. Это Full path disclosure, Cross-Site Scripting, Directory Traversal и Authorization bypass уязвимости. Уязвимости в админке Webglimpse в которую можно попасть через гостевой аккаунт, или захватив кукис админ...

7.2AI score
Exploits0
securityvulns
securityvulns
added 2009/04/28 12:0 a.m.64 views

Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)

PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc. Webglimpse: information leak, crossite scripting, directory traversal, authentication bypass...

1.7AI score
Exploits0References3Affected Software1
Rows per page
Query Builder