Vulnerabilities (CVE)

Filtered by vendor Lionmax Software Subscribe
Total 7 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2005-0522 1 Lionmax Software 1 Chat Anywhere 2024-11-20 4.6 MEDIUM N/A
Chat Anywhere 2.72a stores sensitive information such as passwords in plaintext in the .INI file for a chatroom, which allows local users to gain privileges.
CVE-2004-2724 1 Lionmax Software 1 Chat Anywhere 2024-11-20 7.1 HIGH N/A
LionMax Software Chat Anywhere 2.72a allows remote attackers to cause a denial of service (server crash and client CPU consumption) via a username beginning with percent (%) followed by a null character.
CVE-2004-1802 1 Lionmax Software 1 Chat Anywhere 2024-11-20 5.0 MEDIUM N/A
Chat Anywhere 2.72 and earlier allows remote attackers to hide their IP address by using %00 before the nickname, which causes the IP address to be displayed as $IP$ on the administration web page.
CVE-2004-0741 1 Lionmax Software 1 Www File Share Pro 2024-11-20 5.0 MEDIUM N/A
LionMax Software WWW File Share Pro 2.60 allows remote attackers to cause a denial of service (crash or hang) via a long URL, possibly triggering a buffer overflow.
CVE-2004-0061 1 Lionmax Software 1 Www File Share Pro 2024-11-20 7.5 HIGH N/A
WWW File Share Pro 2.42 and earlier allows remote attackers to bypass directory access restrictions via (1) a URL with a trailing . (dot), or (2) a URI with a leading slash or backslash character.
CVE-2004-0060 1 Lionmax Software 1 Www File Share Pro 2024-11-20 5.0 MEDIUM N/A
WWW File Share Pro 2.42 and earlier allows remote attackers to cause a denial of service (crash) via a large POST request.
CVE-2004-0059 1 Lionmax Software 1 Www File Share Pro 2024-11-20 5.0 MEDIUM N/A
Directory traversal vulnerability in upload capability of WWW File Share Pro 2.42 and earlier allows remote attackers to overwrite arbitrary files via .. (dot dot) sequences in the filename parameter of a Content-Disposition: header.