search menu icon-carat-right cmu-wordmark
Carnegie Mellon University

Software Engineering Institute

CERT Coordination Center

CERT/CC Vulnerability Notes Database


Published Public Updated ID CVSS Title
2002-09-26 2002-09-25 2003-05-30 VU#406121 Apache mod_dav module vulnerable to DoS
2002-09-26 2001-08-20 2002-09-26 VU#471075 4D WebServer does not adequately validate user input thereby allowing directory traversal
2002-09-26 2001-08-21 2002-09-26 VU#782243 TDForum does not adequately validate user input thereby allowing users to embed malicious script code in messages
2002-09-26 2002-01-08 2002-09-26 VU#575619 Allaire Forums does not verify user information stored in hidden form fields
2002-09-26 2001-04-23 2002-09-26 VU#951632 WebCalendar does not adequately validate user input
2002-09-26 2001-05-07 2003-02-24 VU#471691 A1Stats multiple CGI scripts fail to adequately validate user input
2002-09-26 2001-12-15 2002-09-26 VU#672419 Unix Manual PHP-Script does not adequately validate user input thereby allowing arbitrary command execution
2002-09-26 2001-12-31 2002-09-26 VU#764027 zml.cgi does not adequately validate user input thereby allowing directory traversal
2002-09-26 2001-09-20 2002-09-26 VU#794211 Pi-Soft SpoonFTP does not adequately validate user input thereby allowing directory traversal
2002-09-26 2002-07-22 2002-09-26 VU#940203 DansGuardian content filtering proxy fails to adequately validate user input thereby allowing user to access restricted site via hex encoded URLs
2002-09-27 2002-09-09 2003-04-15 VU#464817 Sun Solaris asppls(1M) vulnerable to arbitrary file overwriting via symlink redirection of temporary file
2002-09-27 2001-06-02 2003-09-23 VU#255915 WebBoard does not adequately validate user input thereby permitting arbitrary JavaScript execution
2002-09-27 2001-04-05 2002-09-27 VU#339779 Savant Web Server has a buffer overflow vulnerability
2002-09-27 2001-10-15 2002-09-27 VU#341539 Novell GroupWise Server web-based front-end does not adequately validate user input thereby allowing directory traversal
2002-09-27 2001-11-29 2003-09-18 VU#220715 Alchemy Eye HTTP Server does not adequately validate user input thereby allowing remote command execution

Sponsored by CISA.

Download PGP Key

Read CERT/CC Blog

Learn about Vulnerability Analysis