Nextweb (i)site Security Vulnerabilities and Issues — Nextweb (i)site CVE List

Lucene search

NextwebNextweb (i)site

2 matches found

CVE•added 2005/06/02 4:0 a.m.•52 views

CVE-2005-1835

NEXTWEB (i)Site stores databases under the web document root with insufficient access control, which allows remote attackers to obtain sensitive information via a direct request to databases/Users.mdb.

5CVSS6.6AI score0.00676EPSS

CVE•added 2005/06/02 4:0 a.m.•33 views

CVE-2005-1836

NEXTWEB (i)Site allows remote attackers to cause a denial of service (error 500) via a crafted HTTP request, possibly involving wildcard requests for .jsp files.

5CVSS7.1AI score0.02944EPSS