Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
aprelium technologies abyss web server 1.0.3 vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2002-1080
The Administration console for Abyss Web Server 1.0.3 before Patch 2 allows remote malicious users to gain privileges and modify server configuration via direct requests to CHL files such as (1) srvstatus.chl, (2) consport.chl, (3) general.chl, (4) srvparam.chl, and (5) advanced....
Aprelium Technologies Abyss Web Server 1.0
Aprelium Technologies Abyss Web Server 1.0.3
5
CVSSv2
CVE-2002-1081
The Administration console for Abyss Web Server 1.0.3 allows remote malicious users to read files without providing login credentials via an HTTP request to a target file that ends in a "+" character.
Aprelium Technologies Abyss Web Server 1.0.3
Aprelium Technologies Abyss Web Server 1.0
5
CVSSv2
CVE-2002-1078
Abyss Web Server 1.0.3 allows remote malicious users to list directory contents via an HTTP GET request that ends in a large number of / (slash) characters.
Aprelium Technologies Abyss Web Server 1.0.3
5
CVSSv2
CVE-2002-1079
Directory traversal vulnerability in Abyss Web Server 1.0.3 allows remote malicious users to read arbitrary files via ..\ (dot-dot backslash) sequences in an HTTP GET request.
Aprelium Technologies Abyss Web Server 1.0.3 P2
1 EDB exploit
7.2
CVSSv2
CVE-2002-0544
Aprelium Abyss Web Server (abyssws) prior to 1.0.3 stores the administrative console password in plaintext in the abyss.conf file, which allows local users with access to the file to gain privileges.
Aprelium Technologies Abyss Web Server 1.0
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-49223
CVE-2024-0044
information disclosure
CVE-2024-35753
HTML injection
CVE-2024-21306
CVE-2024-35733
SQL injection
CVE-2024-35732
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started