Nulllogic: Security Vulnerabilities
SQL injection vulnerability in the auth_checkpass function in the login page in NullLogic Groupware 1.2.7 allows remote attackers to execute arbitrary SQL commands via the username parameter.
CVSS Score
7.5
EPSS Score
0.004
Published
2009-07-07
Heap-based buffer overflow in Null HTTP Server 0.5.0 and earlier allows remote attackers to execute arbitrary code via a negative value in the Content-Length HTTP header.
CVSS Score
7.5
EPSS Score
0.145
Published
2003-04-02
Cross-site scripting (XSS) vulnerability in Null HTTP Server 0.5.0 and earlier allows remote attackers to insert arbitrary HTML into a "404 Not Found" response.
CVSS Score
4.3
EPSS Score
0.004
Published
2003-04-02