Oreilly » Website Pro : Security Vulnerabilities, CVEs,
Remote manager service in Website Pro 3.0.37 allows remote attackers to cause a denial of service via a series of malformed HTTP requests to the /dyn directory.
Max CVSS
5.0
EPSS Score
0.84%
Published
2001-08-22
Updated
2017-10-10
O'Reilly WebSite Pro 2.3.7 installs the uploader.exe program with execute permissions for all users, which allows remote attackers to create and execute arbitrary files by directly calling uploader.exe.
Max CVSS
7.5
EPSS Score
0.37%
Published
2000-10-20
Updated
2016-10-18
O'Reilly WebSite 1.1e and Website Pro 2.0 allows remote attackers to execute arbitrary commands via shell metacharacters in an argument to (1) args.cmd or (2) args.bat.
Max CVSS
5.0
EPSS Score
0.21%
Published
1999-02-16
Updated
2008-09-10
3 vulnerabilities found