[Forgot Password]
Login  Register Subscribe

30481

 
 

423868

 
 

255116

 
 

909

 
 

198683

 
 

282

 
 
 
Paid content will be excluded from the download.

Filter
Matches : 26496 Download | Alert*

The host is installed with Apache HTTP Server 2.2.x before 2.2.24-dev or 2.4.x before 2.4.4 and is prone to multiple cross-site scripting (XSS) vulnerabilities. The flaws are present in the application, which fails to properly handle a crafted string. Successful exploitation allows remote attackers to inject arbitrary web script or HTML.

The host is installed with Apache HTTP Server 2.2.x before 2.2.24-dev or 2.4.x before 2.4.4 and is prone to multiple cross-site scripting (XSS) vulnerabilities. The flaws are present in the application, which fails to handle vectors involving hostnames and URIs in the mod_imagemap, mod_info, mod_ldap, mod_proxy_ftp and mod_status modules. Successful exploitation allows remote attackers to inject a ...

The host is installed with Apache HTTP Server through 2.4.58 and is prone to an uncontrolled resource consumption vulnerability. A flaw is present in the application, which fails to properly handle a HTTP/2 incoming headers exceeding the limit. Successful exploitation could allows attackers to cause DoS by memory exhaustion on endless continuation frames.

The host is installed with Apache HTTP Server through 2.4.58 and is prone to a HTTP Response splitting vulnerability. A flaw is present in the application, which fails to properly handle HTTP response. Successful exploitation could allow an attacker that can inject malicious response headers into backend applications to cause an HTTP desynchronization attack.

The host is installed with Apache HTTP Server through 2.4.58 and is prone to a HTTP Response splitting vulnerability. A flaw is present in the application, which fails to properly handle input validation. Successful exploitation allows malicious or exploitable backend/content generators to split HTTP responses.

The host is installed with Apache HTTP Server before 2.4.58 and is prone to an out of memory vulnerability. A flaw is present in the application, which fails to properly handle a RST frame. Successful exploitation allows attackers to cause out of memory.

The host is installed with Apache HTTP Server 2.2.x through 2.2.33 or 2.4.x before 2.4.26 and is prone to a security bypass vulnerability. A flaw is present in the application, which fails to handle use of the ap_get_basic_auth_pw() by third-party modules outside of the authentication phase. Successful exploitation could allow remote attackers to bypass authentication requirements.

The host is installed with Apache HTTP Server 2.2.x before 2.2.33 or 2.4.x before 2.4.26 and is prone to a null pointer dereference vulnerability. A flaw is present in the application, which fails to properly handle third-party modules. Successful exploitation could allow remote attackers to dereference a NULL pointer when third-party modules call ap_hook_process_connection() during an HTTP reques ...

The host is installed with Apache HTTP Server 2.2.32 and 2.4.24 and is prone to an unspecified vulnerability. A flaw is present in the application, which fails to handle ap_find_token(). Successful exploitation could allow remote attackers to cause a segmentation fault, or to force ap_find_token() to return an incorrect value.

The host is installed with Apache HTTP Server 2.2.x before 2.2.33 or 2.4.x before 2.4.26 and is prone to a buffer overflow vulnerability. A flaw is present in the application, which fails to handle mod_mime. Successful exploitation could allow remote attackers to read one byte past the end of a buffer when sending a malicious Content-Type response header.


Pages:      Start    1    2    3    4    5    6    7    8    9    10    11    12    13    14    ..   2649

© SecPod Technologies