exploitDog

CVE-2001-1023

Опубликовано: 21 сент. 2001

Источник: nvd

CVSS2: 5

EPSS Низкий

Описание

Xcache 2.1 allows remote attackers to determine the absolute path of web server documents by requesting a URL that is not cached by Xcache, which returns the full pathname in the Content-PageName header.

Ссылки

http://archives.neohapsis.com/archives/bugtraq/2001-09/0182.html
Vendor Advisory
http://www.securityfocus.com/bid/3352
Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/7159
http://archives.neohapsis.com/archives/bugtraq/2001-09/0182.html
Vendor Advisory
http://www.securityfocus.com/bid/3352
Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/7159

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:xcache_technologies:xcache:2.0:*:*:*:*:*:*:*

cpe:2.3:a:xcache_technologies:xcache:2.1:*:*:*:*:*:*:*

EPSS

Процентиль: 71%

0.00684

Низкий

5 Medium

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

GHSA-rrv3-gv45-p4m4

github

больше 3 лет назад

Xcache 2.1 allows remote attackers to determine the absolute path of web server documents by requesting a URL that is not cached by Xcache, which returns the full pathname in the Content-PageName header.

EPSS

Процентиль: 71%

0.00684

Низкий

5 Medium

CVSS2

Дефекты

NVD-CWE-Other