CVSS: 7.5EPSS: 5%CPEs: 7EXPL: 1CVE-2002-0680 – GoAhead Web Server 2.1.x - URL Encoded Slash Directory Traversal
https://notcve.org/view.php?id=CVE-2002-0680
12 Jul 2002 — Directory traversal vulnerability in GoAhead Web Server 2.1 allows remote attackers to read arbitrary files via a URL with an encoded / (%5C) in a .. (dot dot) sequence. NOTE: it is highly likely that this candidate will be REJECTED because it has been reported to be a duplicate of CVE-2001-0228. Vulnerabilidad de atravesamiento de directorios en GoAhead Web Server 2.1 permite a atacantes remotos mediante una URL con una "/" (carácter barra) codificada (%5C) en una secuencia .. (punto punto) • https://www.exploit-db.com/exploits/21607 •
CVSS: 7.5EPSS: 3%CPEs: 1EXPL: 2CVE-2001-0647 – Orange Software Orange Web Server 2.1 - Denial of Service
https://notcve.org/view.php?id=CVE-2001-0647
06 Aug 2001 — Orange Web Server 2.1, based on GoAhead, allows a remote attacker to perform a denial of service via an HTTP GET request that does not include the HTTP version. • https://www.exploit-db.com/exploits/20655 •