Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
leif m. wright vulnerabilities and exploits
(subscribe to this query)
1000
VMScore
CVE-2001-0025
ad.cgi CGI program by Leif Wright allows remote malicious users to execute arbitrary commands via shell metacharacters in the file parameter.
Leif M. Wright Ad.cgi 1.0
1 EDB exploit
1000
VMScore
CVE-2001-0023
everythingform.cgi CGI program by Leif Wright allows remote malicious users to execute arbitrary commands via shell metacharacters in the config parameter.
Leif M. Wright Everythingform.cgi 2.0
1 EDB exploit
1000
VMScore
CVE-2001-0022
simplestguest.cgi CGI program by Leif Wright allows remote malicious users to execute arbitrary commands via shell metacharacters in the guestbook parameter.
Leif M. Wright Simplestguest.cgi 2.0
1 EDB exploit
1000
VMScore
CVE-2001-0024
simplestmail.cgi CGI program by Leif Wright allows remote malicious users to execute arbitrary commands via shell metacharacters in the MyEmail parameter.
Leif M. Wright Simplestmail.cgi 1.0
1 EDB exploit
755
VMScore
CVE-2004-2347
blog.cgi in Leif M. Wright Web Blog 1.1 and 1.1.5 allows remote malicious users to execute arbitrary commands via shell metacharacters such as '|' in the file parameter of ViewFile requests.
Leif M. Wright Web Blog 1.1
Leif M. Wright Web Blog 1.1.5
1 EDB exploit
668
VMScore
CVE-2006-0844
Leif M. Wright's Blog 3.5 does not make a password comparison when authenticating an administrator via a cookie, which allows remote malicious users to bypass login authentication, probably by setting the blogAdmin cookie.
Leif M. Wright Web Blog 3.5
668
VMScore
CVE-2005-1351
The ad.cgi script allows remote malicious users to execute arbitrary commands via shell metacharacters in the argument.
Leif M. Wright Ad.cgi
578
VMScore
CVE-2006-0845
Leif M. Wright's Blog 3.5 allows remote authenticated users with administrative privileges to execute arbitrary programs, including shell commands, by configuring the sendmail path to a malicious pathname.
Leif M. Wright Web Blog 3.5
505
VMScore
CVE-2004-2127
Directory traversal vulnerability in Web Blog 1.1 allows remote malicious users to read arbitrary files via a .. (dot dot) in the file variable.
Leif M. Wright Web Blog 1.1
1 EDB exploit
445
VMScore
CVE-2006-0843
Leif M. Wright's Blog 3.5 stores the config file and other txt files under the web root with insufficient access control, which allows remote malicious users to read the administrator's password.
Leif M. Wright Web Blog 3.5
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-26925
CVE-2023-41826
LFI
CVE-2022-22364
CVE-2024-2887
command injection
remote code execution
CVE-2024-34446
CVE-2022-48699
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »