Vulnerabilities > Fools Workshop

DATE CVE VULNERABILITY TITLE RISK
2004-11-23 CVE-2004-0303 Remote File Disclosure vulnerability in Owl's Workshop
OWLS 1.0 allows remote attackers to retrieve arbitrary files via absolute pathnames in (1) the file parameter in /glossaries/index.php, (2) the filename parameter in /readings/index.php, or (3) the filename parameter in /multiplechoice/resultsignore.php, as demonstrated using /etc/passwd.
network
low complexity
fools-workshop
5.0
2004-11-23 CVE-2004-0302 Remote File Disclosure vulnerability in Fools Workshop Owls Workshop 1.0
Directory traversal vulnerability in OWLS 1.0 allows remote attackers to read arbitrary files via a ..
network
low complexity
fools-workshop
5.0