stephen_turner analog CVE Vulnerabilities (4)

CVEs: 4 CPE versions: View versions table

Summary

This page lists publicly disclosed CVE vulnerabilities affecting stephen_turner analog (linked via NVD CPE). Each row includes severity scores, summaries, and publication dates to help identify and analyze security issues.

Showing 14 of 4 CVEs
«« First « Prev Page 1 / 1 Next »
CVE Summary Source Max CVSS EPSS % Published Updated
CVE-2002-1154 anlgform.pl in Analog before 5.23 does not restrict access to the PROGRESSFREQ progress update command, which allows remote attackers to cause a denial of service (disk consumption) by using the command to report updates more frequently and fill the web server error log. [email protected] 5.0 1.67% 2002-10-11 2026-06-16
CVE-2002-0166 Cross-site scripting vulnerability in analog before 5.22 allows remote attackers to execute Javascript via an HTTP request containing the script, which is entered into a web logfile and not properly filtered by analog during display. [email protected] 7.5 1.80% 2002-04-22 2026-06-16
CVE-2001-0301 Buffer overflow in Analog before 4.16 allows remote attackers to execute arbitrary commands by using the ALIAS command to construct large strings. [email protected] 10.0 4.40% 2001-05-03 2026-06-16
CVE-1999-1287 Vulnerability in Analog 3.0 and earlier allows remote attackers to read arbitrary files via the forms interface. [email protected] 5.0 1.32% 1999-12-31 2026-06-16
«« First « Prev Page 1 / 1 Next »
cvelogic Threat Intelligence