2 results (0.001 seconds)

CVSS: 5.0EPSS: 1%CPEs: 1EXPL: 0

Xeneo Web Server 2.2.22.0 allows remote attackers to obtain the source code of script files via crafted requests containing dot, space, and slash characters in the file extension. • http://secunia.com/advisories/19325 http://secunia.com/secunia_research/2006-20/advisory http://www.osvdb.org/25283 http://www.securityfocus.com/bid/17858 http://www.vupen.com/english/advisories/2006/1682 https://exchange.xforce.ibmcloud.com/vulnerabilities/26294 •

CVSS: 5.0EPSS: 3%CPEs: 2EXPL: 2

Northern Solutions Xeneo Web Server 2.1.0.0, 2.0.759.6, and other versions before 2.1.5 allows remote attackers to cause a denial of service (crash) via a GET request for a "%" URI. El Sevidor Web Northern Solutions Xeneo 2.1.0.0, 2.0.759.6 y otras versiones anteriores a 2.1.5 permite a atacantes remotos causar una denegación de servicio (caída) mediante una petición GET a una URL "%" • https://www.exploit-db.com/exploits/21982 http://marc.info/?l=bugtraq&m=103642597302308&w=2 http://www.idefense.com/advisory/11.04.02b.txt http://www.iss.net/security_center/static/10534.php http://www.securityfocus.com/bid/6098 •