Filtered by vendor Desiderata Software
Subscribe
Total
2 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2006-1483 | 1 Desiderata Software | 1 Blazix Web Server | 2018-10-18 | 5.0 MEDIUM | N/A |
Blazix Web Server before 1.2.6, when running on Windows, allows remote attackers to obtain the source code of JSP files via (1) . (dot), (2) space, and (3) slash characters in the extension of a URL. | |||||
CVE-2002-1451 | 1 Desiderata Software | 1 Blazix | 2008-09-05 | 5.0 MEDIUM | N/A |
Blazix before 1.2.2 allows remote attackers to read source code of JSP scripts or list restricted web directories via an HTTP request that ends in a (1) "+" or (2) "\" (backslash) character. |