Pi3web Security Vulnerabilities and Issues — Pi3web CVE List

Lucene search

Pi3Pi3web

6 matches found

CVE•added 2001/05/03 4:0 a.m.•46 views

CVE-2001-0303

tstisapi.dll in Pi3Web 1.0.1 web server allows remote attackers to determine the physical path of the server via a URL that requests a non-existent file.

5CVSS6.3AI score0.00623EPSS

CVE•added 2001/05/03 4:0 a.m.•36 views

CVE-2001-0302

Buffer overflow in tstisapi.dll in Pi3Web 1.0.1 web server allows remote attackers to cause a denial of service, and possibly execute arbitrary commands, via a long URL.

5CVSS7.8AI score0.09566EPSS

CVE•added 2002/03/25 5:0 a.m.•36 views

CVE-2002-0142

CGI handler in John Roy Pi3Web for Windows 2.0 beta 1 and 2 allows remote attackers to cause a denial of service (crash) via a series of requests whose physical path is exactly 260 characters long and ends in a series of . (dot) characters.

7.5CVSS6.4AI score0.05682EPSS

CVE•added 2003/06/16 4:0 a.m.•35 views

CVE-2003-0276

Buffer overflow in Pi3Web 2.0.1 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a GET request with a large number of / characters.

5CVSS8AI score0.1612EPSS

CVE•added 2004/02/17 5:0 a.m.•34 views

CVE-2003-1032

Pi3Web web server 2.0.2 Beta 1, when the Directory Index is configured to use the "Name" column and sort using the column title as a hyperlink, allows remote attackers to cause a denial of service (crash) via a malformed URL to the web server, possibly involving a buffer overflow.

5CVSS7.4AI score0.04823EPSS

CVE•added 2002/07/26 4:0 a.m.•30 views

CVE-2002-0433

Pi3Web 2.0.0 allows remote attackers to view restricted files via an HTTP request containing a "*" (wildcard or asterisk) character.

5CVSS7.1AI score0.00684EPSS