2 matches found
CVE-2004-2112
CVE-2004-2112 describes a directory traversal vulnerability in BremsServer 1.2.4, where remote attackers can read arbitrary files by using ".." sequences in the URL. The affected component is the BremsServer web interface; root cause is improper validation of path traversal input, enabling access...
CVE-2004-2113
BremsServer 1.2.4 is affected by an XSS vulnerability that allows a remote attacker to inject arbitrary web script or HTML via the URL. The impact is partial integrity violation with no confidentiality or availability impact as per the CVE metrics; no specific exploit details or patches are provi...