Vulnerabilities (CVE)

Filtered by vendor Desiderata Software Subscribe
Total 2 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2006-1483 1 Desiderata Software 1 Blazix Web Server 2024-02-28 5.0 MEDIUM N/A
Blazix Web Server before 1.2.6, when running on Windows, allows remote attackers to obtain the source code of JSP files via (1) . (dot), (2) space, and (3) slash characters in the extension of a URL.
CVE-2002-1451 1 Desiderata Software 1 Blazix 2024-02-28 5.0 MEDIUM N/A
Blazix before 1.2.2 allows remote attackers to read source code of JSP scripts or list restricted web directories via an HTTP request that ends in a (1) "+" or (2) "\" (backslash) character.