Perception : Security Vulnerabilities, CVEs,
Perception LiteServe 2.0 through 2.0.1 allows remote attackers to obtain the source code of CGI scripts via an HTTP request with a trailing dot (".").
Max CVSS
5.0
EPSS Score
2.60%
Published
2002-12-31
Updated
2008-09-05
Cross-site scripting (XSS) vulnerability in Perception LiteServe 2.0.1 allows remote attackers to execute arbitrary web script via (1) a Host: header when DNS wildcards are supported or (2) the query string in a "dir" request to indexed folders.
Max CVSS
4.3
EPSS Score
0.40%
Published
2002-12-31
Updated
2008-09-05
Perception LiteServe 2.0 allows remote attackers to read password protected files via a leading "/./" in a URL.
Max CVSS
5.0
EPSS Score
0.22%
Published
2002-12-31
Updated
2008-09-05
Buffer overflow in HTTP server in LiteServe 2.0, 2.0.1 and 2.0.2 allows remote attackers to cause a denial of service (hang) via a large number of percent characters (%) in an HTTP GET request.
Max CVSS
5.0
EPSS Score
0.28%
Published
2002-12-31
Updated
2008-09-05
Buffer overflow in the log viewing interface in Perception LiteServe 1.25 through 2.2 allows remote attackers to execute arbitrary code via a GET request with a long file name.
Max CVSS
10.0
EPSS Score
22.75%
Published
2003-11-04
Updated
2017-07-11
Perception LiteWeb allows remote attackers to bypass access controls for files via an extra leading / (slash) or leading \ (backslash) in the URL.
Max CVSS
7.5
EPSS Score
0.27%
Published
2005-06-09
Updated
2008-09-05
LiteWEB 2.7 allows remote attackers to cause a denial of service (hang) via a large number of requests for nonexistent pages.
Max CVSS
5.0
EPSS Score
9.24%
Published
2007-06-26
Updated
2018-10-16
7 vulnerabilities found