Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
mattmurphy vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2003-0332
The ISAPI extension in BadBlue 1.7 up to and including 2.2, and possibly earlier versions, modifies the first two letters of a filename extension after performing a security check, which allows remote malicious users to bypass authentication via a filename with a .ats extension i...
Working Resources Inc. Badblue
1 EDB exploit
NA
CVE-2002-0840
Cross-site scripting (XSS) vulnerability in the default error page of Apache 2.0 prior to 2.0.43, and 1.3.x up to 1.3.26, when UseCanonicalName is "Off" and support for wildcard DNS is present, allows remote malicious users to execute script as other web page visitors v...
Apache Http Server 2.0.42
Oracle Application Server 9.0.2.1
Apache Http Server 1.3.23
Oracle Oracle9i 9.0.1
Oracle Oracle9i 9.0.2
Oracle Oracle8i 8.1.7 .0.0 Enterprise
Oracle Database Server 8.1.7
Apache Http Server 2.0.35
Apache Http Server 2.0.37
Apache Http Server 1.3.1
Apache Http Server 1.3.25
Oracle Oracle9i 9.0
Apache Http Server 1.3.19
Oracle Database Server 9.2.1
Apache Http Server 2.0.39
Apache Http Server 1.3.24
Oracle Application Server 9.0.2
Apache Http Server 1.3.20
Apache Http Server 1.3.6
Apache Http Server 2.0.41
Oracle Oracle8i 8.1.7.1
Oracle Oracle8i 8.1.7
1 EDB exploit
NA
CVE-2002-1986
Perception LiteServe 2.0 up to and including 2.0.1 allows remote malicious users to obtain the source code of CGI scripts via an HTTP request with a trailing dot (".").
Perception Liteserve 2.0.1
Perception Liteserve 2.0
Perception Liteserve 2.0.2
1 EDB exploit
NA
CVE-2002-2403
Directory traversal vulnerability in KeyFocus web server 1.0.8 allows remote malicious users to read arbitrary files for recognized MIME type files via "...", "....", ".....", and other multiple dot sequences.
Key Focus Kf Web Server 1.0.8
1 EDB exploit
NA
CVE-2002-2416
Directory traversal vulnerability in Zeroo web server 1.5 allows remote malicious users to read arbitrary files via a .. (dot dot) in a URL GET request.
Zeroo Http Server 1.5
2 EDB exploits
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
authentication bypass
CVE-2024-30051
remote
CVE-2024-27954
CVE-2023-51483
CVE-2023-47782
SSRF
CVE-2024-24715
CVE-2023-52424
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started