VYPR

Wwwisis

by Wwwisis

CVEs (3)

  • CVE-2007-5484Oct 16, 2007
    risk 0.03cvss epss 0.03

    Directory traversal vulnerability in wxis.exe in WWWISIS 7.1 allows local users to read arbitrary files via a .. (dot dot) in the IsisScript parameter to iah.

  • CVE-2007-5455Oct 14, 2007
    risk 0.03cvss epss 0.02

    Cross-site scripting (XSS) vulnerability in wxis.exe in WWWISIS 7.1 and earlier allows remote attackers to inject arbitrary web script or HTML via a call to the iah/iah.xis IsisScript code, possibly involving the lang or exprSearch parameter.

  • CVE-2002-0508Aug 12, 2002
    risk 0.00cvss epss 0.05

    wwwisis 3.45 and earlier allows remote attackers to execute arbitrary commands and read files via the parameters (1) prolog or (2) epilog.