Getahead: >> Direct Web Remoting >> 1.0 Security Vulnerabilities
Getahead Direct Web Remoting (DWR) before 1.1.4 allows attackers to obtain unauthorized access to public methods via a crafted request that bypasses the include/exclude checks.
CVSS Score
7.5
EPSS Score
0.007
Published
2007-01-12
Getahead Direct Web Remoting (DWR) before 1.1.4 allows attackers to cause a denial of service (memory exhaustion and servlet outage) via unknown vectors related to a large number of calls in a batch.
CVSS Score
5.0
EPSS Score
0.008
Published
2007-01-12