Perception: Security Vulnerabilities
LiteWEB 2.7 allows remote attackers to cause a denial of service (hang) via a large number of requests for nonexistent pages.
CVSS Score
5.0
EPSS Score
0.042
Published
2007-06-26
Perception LiteWeb allows remote attackers to bypass access controls for files via an extra leading / (slash) or leading \ (backslash) in the URL.
CVSS Score
7.5
EPSS Score
0.005
Published
2005-06-09
Buffer overflow in the log viewing interface in Perception LiteServe 1.25 through 2.2 allows remote attackers to execute arbitrary code via a GET request with a long file name.
CVSS Score
10.0
EPSS Score
0.237
Published
2003-11-04
Perception LiteServe 2.0 through 2.0.1 allows remote attackers to obtain the source code of CGI scripts via an HTTP request with a trailing dot (".").
CVSS Score
5.0
EPSS Score
0.034
Published
2002-12-31
Cross-site scripting (XSS) vulnerability in Perception LiteServe 2.0.1 allows remote attackers to execute arbitrary web script via (1) a Host: header when DNS wildcards are supported or (2) the query string in a "dir" request to indexed folders.
CVSS Score
4.3
EPSS Score
0.01
Published
2002-12-31
Perception LiteServe 2.0 allows remote attackers to read password protected files via a leading "/./" in a URL.
CVSS Score
5.0
EPSS Score
0.003
Published
2002-12-31
Buffer overflow in HTTP server in LiteServe 2.0, 2.0.1 and 2.0.2 allows remote attackers to cause a denial of service (hang) via a large number of percent characters (%) in an HTTP GET request.
CVSS Score
5.0
EPSS Score
0.006
Published
2002-12-31