Nulllogic : Security Vulnerabilities, CVEs,

CVE-2009-2354

SQL injection vulnerability in the auth_checkpass function in the login page in NullLogic Groupware 1.2.7 allows remote attackers to execute arbitrary SQL commands via the username parameter.
Max CVSS
7.5
EPSS Score
0.13%
Published
2009-07-07
Updated
2018-10-10

CVE-2002-1497

Cross-site scripting (XSS) vulnerability in Null HTTP Server 0.5.0 and earlier allows remote attackers to insert arbitrary HTML into a "404 Not Found" response.
Max CVSS
4.3
EPSS Score
0.22%
Published
2003-04-02
Updated
2018-05-03

CVE-2002-1496

Heap-based buffer overflow in Null HTTP Server 0.5.0 and earlier allows remote attackers to execute arbitrary code via a negative value in the Content-Length HTTP header.
Max CVSS
7.5
EPSS Score
3.79%
Published
2003-04-02
Updated
2008-09-05
3 vulnerabilities found
This web site uses cookies for managing your session, storing preferences, website analytics and additional purposes described in our privacy policy.
By using this web site you are agreeing to CVEdetails.com terms of use!
Accept Close