Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
oreilly website vulnerabilities and exploits
(subscribe to this query)
5
CVSSv2
CVE-1999-1180
O'Reilly WebSite 1.1e and Website Pro 2.0 allows remote malicious users to execute arbitrary commands via shell metacharacters in an argument to (1) args.cmd or (2) args.bat.
Oreilly Website 1.1e
Oreilly Website Pro 2.1
Oreilly Website Pro
Oreilly Website Pro 2.0
10
CVSSv2
CVE-2000-0622
Buffer overflow in Webfind CGI program in O'Reilly WebSite Professional web server 2.x allows remote malicious users to execute arbitrary commands via a URL containing a long "keywords" parameter.
Oreilly Website Professional 2.3.18
Oreilly Website Professional 2.4
Oreilly Website Professional 2.4.9
1 EDB exploit
10
CVSSv2
CVE-2000-0623
Buffer overflow in O'Reilly WebSite Professional web server 2.4 and previous versions allows remote malicious users to execute arbitrary commands via a long GET request or Referrer header.
Oreilly Website Professional 2.4.9
Oreilly Website Professional 2.4
Oreilly Website Professional 2.3.18
5
CVSSv2
CVE-2000-0066
WebSite Pro allows remote malicious users to determine the real pathname of webdirectories via a malformed URL request.
Oreilly Website Professional 2.4.9
Oreilly Website Professional 2.3.18
7.5
CVSSv2
CVE-1999-0178
Buffer overflow in the win-c-sample program (win-c-sample.exe) in the WebSite web server 1.1e allows remote malicious users to execute arbitrary code via a long query string.
Oreilly Oreilly Website 1.1e
1 EDB exploit
7.5
CVSSv2
CVE-2001-0626
O'Reilly Website Professional 2.5.4 and previous versions allows remote malicious users to determine the physical path to the root directory via a URL request containing a ":" character.
Oreilly Website Professional
1 EDB exploit
7.5
CVSSv2
CVE-2000-0769
O'Reilly WebSite Pro 2.3.7 installs the uploader.exe program with execute permissions for all users, which allows remote malicious users to create and execute arbitrary files by directly calling uploader.exe.
Oreilly Website Pro
7.5
CVSSv2
CVE-1999-0177
The uploader program in the WebSite web server allows a remote malicious user to execute arbitrary programs.
Oreilly Website 2.0
5
CVSSv2
CVE-2001-0394
Remote manager service in Website Pro 3.0.37 allows remote malicious users to cause a denial of service via a series of malformed HTTP requests to the /dyn directory.
Oreilly Website Pro 3.0.37
10
CVSSv2
CVE-1999-0233
IIS 1.0 allows users to execute arbitrary commands using .bat or .cmd files.
Microsoft Internet Information Services 1.0
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-26925
CVE-2023-41826
LFI
CVE-2022-22364
CVE-2024-2887
command injection
remote code execution
CVE-2024-34446
CVE-2022-48699
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started