VYPR

Raidenhttpd

by Raidenhttpd

CVEs (7)

  • CVE-2007-6453Dec 20, 2007
    risk 0.03cvss epss 0.05

    Directory traversal vulnerability in raidenhttpd-admin/workspace.php in RaidenHTTPD 2.0.19, when the WebAdmin function is enabled, allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the ulang parameter.

  • CVE-2006-4723Sep 12, 2006
    risk 0.03cvss epss 0.03

    PHP remote file inclusion vulnerability in raidenhttpd-admin/slice/check.php in RaidenHTTPD 1.1.49, when register_globals and WebAdmin is enabled, allows remote attackers to execute arbitrary PHP code via a URL in the SoftParserFileXml parameter.

  • CVE-2008-0622Feb 6, 2008
    risk 0.00cvss epss 0.01

    Cross-site scripting (XSS) vulnerability in RaidenHTTPD 2.0.19 and earlier allows remote attackers to inject arbitrary web script or HTML via unspecified vectors related to the ulang parameter.

  • CVE-2007-3343Jun 22, 2007
    risk 0.00cvss epss 0.01

    Cross-site scripting (XSS) vulnerability in RaidenHTTPD before 2.0.14 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

  • CVE-2006-0949Mar 6, 2006
    risk 0.00cvss epss 0.02

    RaidenHTTPD 1.1.47 allows remote attackers to obtain source code of script files, including PHP, via crafted requests involving (1) "." (dot), (2) space, and (3) "/" (slash) characters.

  • CVE-2005-0623Mar 1, 2005
    risk 0.00cvss epss 0.03

    Buffer overflow in RaidenHTTPD 1.1.32, and possibly other versions before 1.1.34, allows remote attackers to execute arbitrary code via a long URL.

  • CVE-2005-0622Mar 1, 2005
    risk 0.00cvss epss 0.02

    RaidenHTTPD 1.1.32, and possibly other versions before 1.1.34, allows remote attackers to view the PHP source code via an HTTP GET request for a filename with a trailing (1) . (dot) or (2) space.