Weblogexpert Weblog Expert vulnerabilities
2 known vulnerabilities affecting weblogexpert/weblog_expert.
Total CVEs
2
CISA KEV
0
Public exploits
2
Exploited in wild
0
Severity breakdown
HIGH2
Vulnerabilities
Page 1 of 1
CVE-2018-7582P3HIGHCVSS 7.5PoCv9.42018-03-09
CVE-2018-7582 [HIGH] CWE-770 CVE-2018-7582: WebLog Expert Web Server Enterprise 9.4 allows Remote Denial Of Service (daemon crash) via a long HT
WebLog Expert Web Server Enterprise 9.4 allows Remote Denial Of Service (daemon crash) via a long HTTP Accept Header to TCP port 9991.
nvd
CVE-2018-7581P3HIGHCVSS 7.8PoCv9.42018-03-09
CVE-2018-7581 [HIGH] CWE-732 CVE-2018-7581: \ProgramData\WebLog Expert\WebServer\WebServer.cfg in WebLog Expert Web Server Enterprise 9.4 has we
\ProgramData\WebLog Expert\WebServer\WebServer.cfg in WebLog Expert Web Server Enterprise 9.4 has weak permissions (BUILTIN\Users:(ID)C), which allows local users to set a cleartext password and login as admin.
nvd