This page aggregates publicly disclosed CVE and security risk information related to oreilly, with CVSS, EPSS, publication dates, and vulnerability intelligence data to help assess potential risk and remediation priority.
| CVE | 概要 | ソース | CVSS 最大値 | EPSS(%) | 公開 | 更新 |
|---|---|---|---|---|---|---|
| CVE-2001-0743 | Paging function in O'Reilly WebBoard Pager 4.10 allows remote attackers to cause a denial of service via a message with an escaped ' character followed by JavaScript commands. | [email protected] | 5.0 | 2.96% | 2001-10-18 | 2026-04-16 |
| CVE-2001-0626 | O'Reilly Website Professional 2.5.4 and earlier allows remote attackers to determine the physical path to the root directory via a URL request containing a ":" character. | [email protected] | 7.5 | 3.06% | 2001-08-22 | 2026-04-16 |
| CVE-2001-0394 | Remote manager service in Website Pro 3.0.37 allows remote attackers to cause a denial of service via a series of malformed HTTP requests to the /dyn directory. | [email protected] | 5.0 | 0.67% | 2001-08-22 | 2026-04-16 |
| CVE-2000-0769 | O'Reilly WebSite Pro 2.3.7 installs the uploader.exe program with execute permissions for all users, which allows remote attackers to create and execute arbitrary files by directly calling uploader.exe. | [email protected] | 7.5 | 0.57% | 2000-10-20 | 2026-04-16 |
| CVE-2000-0622 | Buffer overflow in Webfind CGI program in O'Reilly WebSite Professional web server 2.x allows remote attackers to execute arbitrary commands via a URL containing a long "keywords" parameter. | [email protected] | 10.0 | 6.87% | 2000-07-19 | 2026-04-16 |
| CVE-2000-0623 | Buffer overflow in O'Reilly WebSite Professional web server 2.4 and earlier allows remote attackers to execute arbitrary commands via a long GET request or Referrer header. | [email protected] | 10.0 | 2.93% | 2000-07-17 | 2026-04-16 |
| CVE-2000-0066 | WebSite Pro allows remote attackers to determine the real pathname of webdirectories via a malformed URL request. | [email protected] | 5.0 | 0.56% | 2000-01-13 | 2026-04-16 |
| CVE-1999-1180 | O'Reilly WebSite 1.1e and Website Pro 2.0 allows remote attackers to execute arbitrary commands via shell metacharacters in an argument to (1) args.cmd or (2) args.bat. | [email protected] | 5.0 | 1.55% | 1999-02-16 | 2026-04-16 |
| CVE-1999-0177 | The uploader program in the WebSite web server allows a remote attacker to execute arbitrary programs. | [email protected] | 7.5 | 0.56% | 1997-09-01 | 2026-04-16 |
| CVE-1999-0178 | Buffer overflow in the win-c-sample program (win-c-sample.exe) in the WebSite web server 1.1e allows remote attackers to execute arbitrary code via a long query string. | [email protected] | 7.5 | 6.96% | 1997-01-01 | 2026-04-16 |