CVSS: 6.2EPSS: 0%CPEs: 4EXPL: 0CVE-2021-21055 – Adobe Dreamweaver Untrusted Search Path Vulnerability Could Lead To Information Disclosure
https://notcve.org/view.php?id=CVE-2021-21055
11 Feb 2021 — Adobe Dreamweaver versions 21.0 (and earlier) and 20.2 (and earlier) is affected by an untrusted search path vulnerability that could result in information disclosure. An attacker with physical access to the system could replace certain configuration files and dynamic libraries that Dreamweaver references, potentially resulting in information disclosure. Adobe Dreamweaver versiones 21.0 (y anteriores) y versiones 20.2 (y anteriores), están afectadas por una vulnerabilidad de ruta de búsqueda no confiable qu... • https://helpx.adobe.com/security/products/dreamweaver/apsb21-13.html • CWE-426: Untrusted Search Path •
CVSS: 9.1EPSS: 0%CPEs: 4EXPL: 0CVE-2004-1893
https://notcve.org/view.php?id=CVE-2004-1893
31 Dec 2004 — Dreamweaver MX, when "Using Driver On Testing Server" or "Using DSN on Testing Server" is selected, uploads the mmhttpdb.asp script to the web site but does not require authentication, which allows remote attackers to obtain sensitive information and possibly execute arbitrary SQL commands via a direct request to mmhttpdb.asp. • http://marc.info/?l=bugtraq&m=108102481929451&w=2 •