Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
aprelium technologies abyss web server 1.0.3 vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2002-1080
The Administration console for Abyss Web Server 1.0.3 before Patch 2 allows remote malicious users to gain privileges and modify server configuration via direct requests to CHL files such as (1) srvstatus.chl, (2) consport.chl, (3) general.chl, (4) srvparam.chl, and (5) advanced....
Aprelium Technologies Abyss Web Server 1.0
Aprelium Technologies Abyss Web Server 1.0.3
5
CVSSv2
CVE-2002-1081
The Administration console for Abyss Web Server 1.0.3 allows remote malicious users to read files without providing login credentials via an HTTP request to a target file that ends in a "+" character.
Aprelium Technologies Abyss Web Server 1.0.3
Aprelium Technologies Abyss Web Server 1.0
5
CVSSv2
CVE-2002-1078
Abyss Web Server 1.0.3 allows remote malicious users to list directory contents via an HTTP GET request that ends in a large number of / (slash) characters.
Aprelium Technologies Abyss Web Server 1.0.3
5
CVSSv2
CVE-2002-1079
Directory traversal vulnerability in Abyss Web Server 1.0.3 allows remote malicious users to read arbitrary files via ..\ (dot-dot backslash) sequences in an HTTP GET request.
Aprelium Technologies Abyss Web Server 1.0.3 P2
1 EDB exploit
7.2
CVSSv2
CVE-2002-0544
Aprelium Abyss Web Server (abyssws) prior to 1.0.3 stores the administrative console password in plaintext in the abyss.conf file, which allows local users with access to the file to gain privileges.
Aprelium Technologies Abyss Web Server 1.0
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-33228
CVE-2024-20361
log injection
bypass
CVE-2024-4985
CVE-2024-35223
CVE-2024-29849
CVE-2024-31893
IMAP
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started