Oreilly » Website Professional : Security Vulnerabilities, CVEs,
O'Reilly Website Professional 2.5.4 and earlier allows remote attackers to determine the physical path to the root directory via a URL request containing a ":" character.
Max CVSS
7.5
EPSS Score
3.09%
Published
2001-08-22
Updated
2017-10-10
Buffer overflow in O'Reilly WebSite Professional web server 2.4 and earlier allows remote attackers to execute arbitrary commands via a long GET request or Referrer header.
Max CVSS
10.0
EPSS Score
0.25%
Published
2000-07-17
Updated
2008-09-10
Buffer overflow in Webfind CGI program in O'Reilly WebSite Professional web server 2.x allows remote attackers to execute arbitrary commands via a URL containing a long "keywords" parameter.
Max CVSS
10.0
EPSS Score
2.45%
Published
2000-07-19
Updated
2017-10-10
WebSite Pro allows remote attackers to determine the real pathname of webdirectories via a malformed URL request.
Max CVSS
5.0
EPSS Score
0.47%
Published
2000-01-13
Updated
2022-08-17
4 vulnerabilities found