Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
- EPSS 2.92%
- Veröffentlicht 09.01.2001 05:00:00
- Zuletzt bearbeitet 16.06.2026 21:53:10
Unify ServletExec AS v3.0C allows remote attackers to read source code for JSP pages via an HTTP request that ends with characters such as ".", or "+", or "%20".
- EPSS 5.13%
- Veröffentlicht 11.12.2000 05:00:00
- Zuletzt bearbeitet 16.06.2026 21:52:59
eWave ServletExec 3.0C and earlier does not restrict access to the UploadServlet Java/JSP servlet, which allows remote attackers to upload files and execute arbitrary commands.
- EPSS 8.49%
- Veröffentlicht 11.12.2000 05:00:00
- Zuletzt bearbeitet 16.06.2026 21:52:59
eWave ServletExec JSP/Java servlet engine, versions 3.0C and earlier, allows remote attackers to cause a denial of service via a URL that contains the "/servlet/" string, which invokes the ServletExec servlet and causes an exception if the servlet is...
7.5
CVE-2000-0498
- EPSS 2.26%
- Veröffentlicht 08.06.2000 04:00:00
- Zuletzt bearbeitet 16.06.2026 21:51:51
Unify eWave ServletExec allows a remote attacker to view source code of a JSP program by requesting a URL which provides the JSP extension in upper case.
1