Deerfield Visnetic Website vulnerabilities
3 known vulnerabilities affecting deerfield/visnetic_website.
Total CVEs
3
CISA KEV
0
Public exploits
1
Exploited in wild
0
Severity breakdown
MEDIUM3
Vulnerabilities
Page 1 of 1
CVE-2002-2246P4MEDIUMCVSS 4.3PoC≤ 3.5.132002-12-31
CVE-2002-2246 [MEDIUM] CWE-79 CVE-2002-2246: Cross-site scripting (XSS) vulnerability in VisNetic Website before 3.5.15 allows remote attackers t
Cross-site scripting (XSS) vulnerability in VisNetic Website before 3.5.15 allows remote attackers to inject arbitrary web script or HTML via the HTTP referer header (HTTP_REFERER) to a non-existent page, which is injected into the resulting 404 error page.
nvd
CVE-2002-2241P4MEDIUMCVSS 5.0≤ 3.5.132002-12-31
CVE-2002-2241 [MEDIUM] CWE-399 CVE-2002-2241: Buffer overflow in httpd32.exe in Deerfield VisNetic WebSite before 3.5.15 allows remote attackers t
Buffer overflow in httpd32.exe in Deerfield VisNetic WebSite before 3.5.15 allows remote attackers to cause a denial of service (crash) via a long HTTP OPTIONS request.
nvd
CVE-2003-0456P4MEDIUMCVSS 5.0v3.5.13v3.5.15+1 more2003-08-18
CVE-2003-0456 [MEDIUM] CWE-200 CVE-2003-0456: VisNetic WebSite 3.5 allows remote attackers to obtain the full pathname of the server via a request
VisNetic WebSite 3.5 allows remote attackers to obtain the full pathname of the server via a request containing a folder that does not exist, which leaks the pathname in an error message, as demonstrated using _vti_bin/fpcount.exe.
nvd