Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cgi script center auction weaver 1.0 vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2000-0810
Auction Weaver 1.0 up to and including 1.04 does not properly validate the names of form fields, which allows remote malicious users to delete arbitrary files and directories via a .. (dot dot) attack.
Cgi Script Center Auction Weaver 1.0
Cgi Script Center Auction Weaver 1.03
Cgi Script Center Auction Weaver 1.01
Cgi Script Center Auction Weaver 1.04
Cgi Script Center Auction Weaver 1.02
5
CVSSv2
CVE-2000-0811
Auction Weaver 1.0 up to and including 1.04 allows remote malicious users to read arbitrary files via a .. (dot dot) attack on the username or bidfile form fields.
Cgi Script Center Auction Weaver 1.0
Cgi Script Center Auction Weaver 1.03
Cgi Script Center Auction Weaver 1.01
Cgi Script Center Auction Weaver 1.04
Cgi Script Center Auction Weaver 1.02
10
CVSSv2
CVE-2000-0690
Auction Weaver CGI script 1.02 and previous versions allows remote malicious users to execute arbitrary commands via shell metacharacters in the fromfile parameter.
Cgi Script Center Auction Weaver 1.0
Cgi Script Center Auction Weaver 1.02
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-5841
file upload
man-in-the-middle
arbitrary
CVE-2024-27801
CVE-2024-28020
CVE-2024-30080
CVE-2024-30069
CVE-2024-5843
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started