Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ziv kamir vulnerabilities and exploits
(subscribe to this query)
510
VMScore
CVE-2005-3293
Xerver 4.17 allows remote malicious users to (1) obtain source code of scripts via a request with a trailing "." (dot) or (2) list directory contents via a trailing null character.
Xerver Xerver 4.17h
2 EDB exploits
435
VMScore
CVE-2005-4774
Cross-site scripting (XSS) vulnerability in Xerver 4.17 allows remote malicious users to inject arbitrary web script or HTML after a /%00/ sequence at the end of the URI.
Xerver Xerver 4.17
1 EDB exploit
755
VMScore
CVE-2004-2071
Macallan Mail Solution 2.8.4.6 (Build 260), and possibly earlier versions, allows remote malicious users to bypass authentication in the web interface via an HTTP GET request with two slashes ("//") after the server name.
Macallan Mail Solution 2.8.4.6 Build 260
1 EDB exploit
505
VMScore
CVE-2004-2636
TinyWeb 1.9 allows remote malicious users to read source code of scripts via "/./" in the URL.
1 EDB exploit
405
VMScore
CVE-2004-2487
Directory traversal vulnerability in Nexgen FTP Server prior to 2.2.3.23 allows remote authenticated users to read or list arbitrary files via (1) "..", (2) "\..\" (backslash dot dot), or (3) "/../" sequences in (a) RETR (get), (b) NLST (ls), (c) LIS...
1 EDB exploit
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-29895
blind SQL injection
CVE-2024-5064
CVE-2023-52677
CVE-2023-52682
CVE-2024-30051
CVE-2024-35849
remote attackers
remote
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started