Opera, probably before 7.50, sends Referer headers containing https:// URLs in requests for http:// URLs, which allows remote attackers to obtain potentially sensitive information by reading Referer log data.
Max CVSS
4.3
EPSS Score
0.26%
Published
2003-12-31
Updated
2009-01-29
Netscape 4 sends Referer headers containing https:// URLs in requests for http:// URLs, which allows remote attackers to obtain potentially sensitive information by reading Referer log data.
Max CVSS
5.0
EPSS Score
0.30%
Published
2003-12-31
Updated
2009-01-29
Microsoft Internet Explorer 5.22, and other 5 through 6 SP1 versions, sends Referer headers containing https:// URLs in requests for http:// URLs, which allows remote attackers to obtain potentially sensitive information by reading Referer log data.
Max CVSS
5.0
EPSS Score
2.13%
Published
2003-12-31
Updated
2021-07-23
ScozNet ScozBook 1.1 BETA allows remote attackers to obtain sensitive information via an invalid PG parameter in view.php, which reveals the installation path in an error message.
Max CVSS
5.0
EPSS Score
1.74%
Published
2003-12-31
Updated
2018-10-19
Haakon Nilsen Simple Internet Publishing System (SIPS) 0.2.2 stores sensitive information under the web root with insufficient access control, which allows remote attackers to obtain password and other user information via a direct request to a user-specific configuration directory.
Max CVSS
4.3
EPSS Score
1.21%
Published
2003-12-31
Updated
2018-10-19
XOOPS 2.0, and possibly earlier versions, allows remote attackers to obtain sensitive information via an invalid xoopsOption parameter, which reveals the installation path in an error message.
Max CVSS
5.0
EPSS Score
1.39%
Published
2003-12-31
Updated
2017-08-08
MyABraCaDaWeb 1.0.2 and earlier allows remote attackers to obtain sensitive information via an invalid IDAdmin or other parameter, which reveals the installation path in an error message.
Max CVSS
5.0
EPSS Score
1.81%
Published
2003-12-31
Updated
2018-10-19
WF-Chat 1.0 Beta stores sensitive information under the web root with insufficient access control, which allows remote attackers to obtain authentication information via a direct request to (1) !pwds.txt and (2) !nicks.txt.
Max CVSS
5.0
EPSS Score
1.95%
Published
2003-12-31
Updated
2018-10-19
Justice Guestbook 1.3 allows remote attackers to obtain the full installation path via a direct request to cfooter.php3, which leaks the path in an error message.
Max CVSS
5.0
EPSS Score
2.56%
Published
2003-12-31
Updated
2018-10-19
PHP-Nuke 7.0 allows remote attackers to obtain the installation path via certain characters such as (1) ", (2) ', or (3) > in the search field, which reveals the path in an error message.
Max CVSS
5.0
EPSS Score
0.17%
Published
2003-12-31
Updated
2008-09-05
cart.pl in Dansie shopping cart allows remote attackers to obtain the installation path via an invalid db parameter, which leaks the path in an error message.
Max CVSS
5.0
EPSS Score
1.12%
Published
2003-12-31
Updated
2017-07-29
Phorum 3.4 through 3.4.2 allows remote attackers to obtain the full path of the web server via an incorrect HTTP request to (1) smileys.php, (2) quick_listrss.php, (3) purge.php, (4) news.php, (5) memberlist.php, (6) forum_listrss.php, (7) forum_list_rdf.php, (8) forum_list.php, or (9) move.php, which leaks the information in an error message.
Max CVSS
5.0
EPSS Score
0.43%
Published
2003-12-31
Updated
2017-07-29
CommuniGate Pro 3.1 through 4.0.6 sends the session ID in the referer field for an HTTP request for an image, which allows remote attackers to hijack mail sessions via an e-mail with an IMG tag that references a malicious URL that captures the referer.
Max CVSS
5.8
EPSS Score
0.92%
Published
2003-12-31
Updated
2017-07-29
The default configuration of ColdFusion MX has the "Enable Robust Exception Information" option selected, which allows remote attackers to obtain the full path of the web server via a direct request to CFIDE/probe.cfm, which leaks the path in an error message.
Max CVSS
5.0
EPSS Score
2.07%
Published
2003-12-31
Updated
2017-07-29
The Web_Links module in PHP-Nuke 6.0 through 6.5 final allows remote attackers to obtain the full web server path via an invalid cid parameter that is non-numeric or null, which leaks the pathname in an error message.
Max CVSS
4.3
EPSS Score
1.03%
Published
2003-12-31
Updated
2017-07-29
Apache HTTP Server 1.3.22 through 1.3.27 on OpenBSD allows remote attackers to obtain sensitive information via (1) the ETag header, which reveals the inode number, or (2) multipart MIME boundary, which reveals child process IDs (PID).
Max CVSS
4.3
EPSS Score
0.16%
Published
2003-12-31
Updated
2017-10-20
TOPo 1.43 allows remote attackers to obtain sensitive information by sending an HTTP request with an invalid parameter to (1) in.php or (2) out.php, which reveals the path to the TOPo directory in the error message.
Max CVSS
5.0
EPSS Score
1.59%
Published
2003-12-31
Updated
2017-07-29
Lotus Domino Server 5.0 and 6.0 allows remote attackers to read the source code for files via an HTTP request with a filename with a trailing dot.
Max CVSS
5.0
EPSS Score
0.39%
Published
2003-12-31
Updated
2017-07-29
DotBr 0.1 stores config.inc with insufficient access control under the web document root, which allows remote attackers to obtain sensitive information such as SQL usernames and passwords.
Max CVSS
7.5
EPSS Score
0.88%
Published
2003-12-31
Updated
2017-07-29
Cisco IOS 12.0 through 12.2, when IP routing is disabled, accepts false ICMP redirect messages, which allows remote attackers to cause a denial of service (network routing modification).
Max CVSS
9.3
EPSS Score
0.56%
Published
2003-12-31
Updated
2017-07-29
clarkconnectd in ClarkConnect Linux 1.2 allows remote attackers to obtain sensitive information about the server via the characters (1) A, which reveals the date and time, (2) F, (3) M, which reveals 'ifconfig' information, (4) P, which lists the processes, (5) Y, which reveals the snort log files, or (6) b, which reveals /var/log/messages.
Max CVSS
5.0
EPSS Score
0.40%
Published
2003-12-31
Updated
2017-07-29
VisNetic WebSite 3.5 allows remote attackers to obtain the full pathname of the server via a request containing a folder that does not exist, which leaks the pathname in an error message, as demonstrated using _vti_bin/fpcount.exe.
Max CVSS
5.0
EPSS Score
0.61%
Published
2003-08-18
Updated
2017-07-11
Microsoft Outlook 2002 does not properly handle requests to encrypt email messages with V1 Exchange Server Security certificates, which causes Outlook to send the email in plaintext, aka "Flaw in how Outlook 2002 handles V1 Exchange Server Security Certificates could lead to Information Disclosure."
Max CVSS
5.0
EPSS Score
0.31%
Published
2003-02-07
Updated
2018-10-12
Multiple ethernet Network Interface Card (NIC) device drivers do not pad frames with null bytes, which allows remote attackers to obtain information from previous packets or kernel memory by using malformed packets, as demonstrated by Etherleak.
Max CVSS
5.0
EPSS Score
2.33%
Published
2003-01-17
Updated
2019-04-30
MidiCart stores the midicart.mdb database file under the Web document root, which allows remote attackers to steal sensitive information by directly requesting the database.
Max CVSS
5.0
EPSS Score
1.13%
Published
2003-04-11
Updated
2008-09-05
26 vulnerabilities found
1 2
This web site uses cookies for managing your session, storing preferences, website analytics and additional purposes described in our privacy policy.
By using this web site you are agreeing to CVEdetails.com terms of use!