An issue in all versions of Douran DSGate allows a local authenticated privileged attacker to execute arbitrary code via the debug...
6.7CVSS
6.6AI Score
0.0004EPSS
download.aspx in Douran Portal 3.9.7.8 allows remote attackers to obtain source code of arbitrary files under the web root via (1) a trailing ".", (2) a trailing space, or (3) mixed case in the FileNameAttach...
7.2AI Score
0.017EPSS
DOURAN Software Technologies ISPUtil 3.32.84.1, and possibly earlier versions, stores sensitive information under the web root with insufficient access control, which allows remote attackers to obtain user and reseller data via a direct request for scripts/activesessions.ini. NOTE: the provenance.....
6.4AI Score
0.006EPSS
Cross-site scripting (XSS) vulnerability in register.aspx in Douran FollowWeb allows remote attackers to inject arbitrary web script or HTML via unknown attack vectors. NOTE: the provenance of this information is unknown; the details are obtained solely from third party...
5.5AI Score
0.002EPSS