![]() "lotus","/certlog.nsf","200","GET","This database can be read without authentication." "lotus","/certa.nsf","200","GET","This database can be read without authentication." "lotus","/cersvr.nsf","200","GET","Server certificate data can be accessed remotely." "lotus","/catalog.nsf","200","GET","A list of server databases can be retrieved, as well as a list of ACLs." "lotus","/calendar.nsf","200","GET","This database can be read without authentication." "lotus","/busytime.nsf","200","GET","This database can be read without authentication." "lotus","/books.nsf","200","GET","This database can be read without authentication. "lotus","/bookmark.nsf","200","GET","This database can be read without authentication." "lotus","/billing.nsf","200","GET","This database can be read without authentication. ![]() "lotus","/archive/l_domlog.nsf","200","GET","This database can be read without authentication." "lotus","/archive/a_domlog.nsf","200","GET","This database can be read without authentication." "lotus","/alog.nsf","200","GET","This database can be read without authentication." "lotus","/agentrunner.nsf","200","GET","This database can be read without authentication." "lotus","/admin5.nsf","200","GET","This database can be read without authentication." "lotus","/admin4.nsf","200","GET","This database can be read without authentication." "lotus","/admin.nsf","200","GET","This database can be read without authentication." "lotus","/accounts.nsf","200","GET","This database can be read without authentication. "lotus","/account.nsf","200","GET","This database can be read without authentication. "lotus","/a_domlog.nsf","200","GET","This database can be read without authentication." "lotus","/852566C90012664F","200","GET","This database can be read using the replica id without authentication." ![]() "lotus","/?OpenServer","\/icons\/abook\.gif","GET","This install allows remote users to enumerate DB names, see " Disable this capability via server options." "lotus","/?Open","nsf","GET","This displays a list of all databases on the server. "jrun","/./","Index of ","GET","Appending '/./' to a directory allows of Perl script","GET","Lotus reveals file system paths when requesting DOS devices with bad of","GET","Lotus reveals file system paths when requesting DOS devices with bad of Perl script","GET","Lotus reveals file system paths when requesting DOS devices with bad syntax." "jeus","/nosuchurl/>","","GET","JEUS is vulnerable to Cross Site Scripting (XSS) when requesting non-existing JSP pages. "jeus","/examples/session","Session servlet","GET","JEUS default servlet examples are vulnerable to Cross Site Scripting (XSS) when requesting non-existing JSP pages. "jeus","/examples/jsp/snp/snoop.jsp","Request Information","GET","Displays information about page retrievals" "jeus","/examples/jsp/index.html","JSP Samples","GET","JEUS default JSP pages present." ![]() "jeus","/examples/info","Info servlet","GET","JEUS default servlet example" "jeus","/examples/include1","Include1 servlet","GET","JEUS default servlet example" "jeus","/examples/header","Header servlet","GET","JEUS default servlet example" "jeus","/examples/forward2","Forward2 servlet","GET","JEUS default servlet example" "jeus","/examples/forward1","Forward1 servlet","GET","JEUS default servlet example" "jeus","/examples/cookie","Cookie servlet","GET","JEUS default servlet examples are vulnerable to Cross Site Scripting (XSS) when requesting non-existing JSP pages. "jeus","/examples/context","Context servlet","GET","JEUS default servlet examples disclose server directory" "jeus","/examples/","Servlet Samples","GET","JEUS default servlet example pages present" "iplanet","/manual/servlets/scripts/shoes/shoeform.htm","invokes a jsp","GET","iPlanet default servlet found. "iplanet","/manual/servlets/scripts/servlet1/servform.htm","invokes a servlet","GET","iPlanet default servlet found. Upgrade to SunOne DS5.2 and in iDS5.1 SP2 Hotfix 2." "iplanet","/admin-serv/tasks/configuration/ViewLog?file=passwd
0 Comments
Leave a Reply. |