Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
donato ferrante vulnerabilities and exploits
(subscribe to this query)
5
CVSSv2
CVE-2004-1973
DiGi Web Server allows remote malicious users to cause a denial of service (CPU consumption) via an HTTP GET request that contains a large number of / (slash) characters, which consumes resources when DiGi converts the slashes to \ (backslash) characters.
Digi Www Server Compieuw
1 EDB exploit
4.3
CVSSv2
CVE-2004-2119
Cross-site scripting (XSS) vulnerability in Tiny Server 1.1 allows remote malicious users to inject arbitrary web script or HTML via the URL.
Tinyserver Tinyserver 1.1
1 EDB exploit
5
CVSSv2
CVE-2004-2617
Directory traversal vulnerability in Pegasi Web Server (PWS) 0.2.2 allows remote malicious users to read files outside of the web root via a .. (dot dot) directly after the initial '/' (slash) in the URI.
Pegasi Web Server Pegasi Web Server 0.2.2
1 EDB exploit
5
CVSSv2
CVE-2004-2646
The addUser function in UserManager.java in Free Web Chat 2.0 allows remote malicious users to cause a denial of service (uncaught NullPointerException) via unknown attack vectors that cause the usrName variable to be null.
1 EDB exploit
5
CVSSv2
CVE-2004-0349
Directory traversal vulnerability in GWeb HTTP Server 0.6 allows remote malicious users to view arbitrary files via a .. (dot dot) in the URL.
Gweb Gweb Http Server 0.5
Gweb Gweb Http Server 0.6
1 EDB exploit
5
CVSSv2
CVE-2005-1493
Directory traversal vulnerability in SimpleCam 1.2 allows remote malicious users to read arbitrary files via a ..\ (dot dot backslash) in the URL.
Dead Pirate Software Simplecam 1.2
1 EDB exploit
10
CVSSv2
CVE-2004-1127
Buffer overflow in Open Dc Hub 0.7.14 allows remote attackers, with administrator privileges, to execute arbitrary code via a long RedirectAll command.
Open Dc Hub Direct Connect Peer-to-peer Client 0.7.14
1 EDB exploit
5
CVSSv2
CVE-2006-0971
Directory traversal vulnerability in Lionel Reyero DirectContact 0.3b allows remote malicious users to read arbitrary files via a .. (dot dot) in the URL.
Lionel Reyero Directcontact 0.3b
1 EDB exploit
6.8
CVSSv2
CVE-2003-1199
Cross-site scripting (XSS) vulnerability in MyProxy 20030629 allows remote malicious users to inject arbitrary web script or HTML via the URL.
Myproxy Myproxy 2003-06-29
1 EDB exploit
4.3
CVSSv2
CVE-2004-2096
Cross-site scripting (XSS) vulnerability in Mephistoles httpd 0.6.0 final allows remote malicious users to execute arbitrary script as other users by injecting arbitrary HTML or script into the URL.
Mephistoles Internet Suite Mephistoles Httpd 0.6 P2
Mephistoles Internet Suite Mephistoles Httpd 0.6 Final
Mephistoles Internet Suite Mephistoles Httpd 0.6 P1
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3380
CVE-2024-1694
local file inclusion
CVE-2024-5645
CVE-2024-24919
XSS
CVE-2024-36774
CVE-2024-21306
SQL
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
NEXT »