Lucene search
Apache Team FoundationHTTPD:FC2D5D7BE57E19705780F8CE841B00C1HistoryMay 31, 2012 - 12:00 a.m.
Apache Httpd < 2.4.3 : XSS in mod_negotiation when untrusted uploads are supported
2012-05-3100:00:00
Apache Team Foundation
httpd.apache.org
13
4.3 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
0.864 High
EPSS
Percentile
98.6%
Possible XSS for sites which use mod_negotiation and allow untrusted uploads to locations which have MultiViews enabled. Note: This issue is also known as CVE-2008-0455.
| CPE | Name | Operator | Version |
|---|---|---|---|
| apache httpd | eq | 2.4.2 | |
| apache httpd | eq | 2.4.1 |
Related
openvas
openvas
Apache HTTP Server XSS Vulnerability (Sep 2012) - Linux
2021-11-01 00:00:00
RedHat Update for httpd RHSA-2013:0130-01
2013-01-11 00:00:00
Fedora Update for httpd FEDORA-2013-1661
2013-02-15 00:00:00
httpd
httpd
fedora
fedora
[SECURITY] Fedora 17 Update: httpd-2.2.23-1.fc17
2013-02-12 04:59:23
nessus
nessus
RHEL 5 : httpd (RHSA-2013:0130)
2013-01-08 00:00:00
Scientific Linux Security Update : httpd on SL5.x i386/x86_64 (20130108)
2013-01-17 00:00:00
Oracle Linux 6 : httpd (ELSA-2013-0512)
2013-07-12 00:00:00
veracode
veracode
Arbitrary File Upload
2019-05-02 04:45:35
Cross-site Scripting (XSS)
2019-01-15 08:51:39
Access Restriction Bypass
2019-05-02 04:43:29
centos
centos
httpd, mod_ssl security update
2013-01-09 20:52:40
httpd, mod_ssl security update
2013-02-27 19:35:19
oraclelinux
oraclelinux
httpd security, bug fix, and enhancement update
2013-01-11 00:00:00
httpd security, bug fix, and enhancement update
2013-02-22 00:00:00
redhat
redhat
(RHSA-2013:0512) Low: httpd security, bug fix, and enhancement update
2013-02-21 00:00:00
(RHSA-2013:0130) Low: httpd security, bug fix, and enhancement update
2013-01-08 00:00:00
f5
f5
SOL15901 - Apache HTTP server vulnerability CVE-2012-2687
2014-12-10 00:00:00
K15901 : Apache HTTP server vulnerability CVE-2012-2687
2015-06-08 00:00:00
K17201 : Apache HTTP server vulnerability CVE-2008-0455
2015-09-01 00:00:00
cve
cve
CVE-2012-2687
2012-08-22 19:55:01
CVE-2008-0455
2008-01-25 01:00:00
cvelist
cvelist
CVE-2012-2687
2012-08-22 19:00:00
CVE-2008-0455
2008-01-25 00:00:00
prion
prion
Cross site scripting
2012-08-22 19:55:00
Cross site scripting
2008-01-25 01:00:00
debiancve
debiancve
CVE-2012-2687
2012-08-22 19:55:01
CVE-2008-0455
2008-01-25 01:00:00
nvd
nvd
CVE-2012-2687
2012-08-22 19:55:01
CVE-2008-0455
2008-01-25 01:00:00
ubuntucve
ubuntucve
CVE-2012-2687
2012-08-22 00:00:00
CVE-2008-0455
2008-01-25 00:00:00
checkpoint_advisories
checkpoint_advisories
securityvulns
securityvulns
Apache security vulnerabilities
2012-10-01 00:00:00
[ MDVSA-2012:154 ] apache
2012-10-01 00:00:00
seebug
seebug
Apache 2.4.2 HTTP Server HTML注入和信息泄露漏洞
2012-08-23 00:00:00
threatpost
threatpost
Apache Fixes Two Security Flaws in Version 2.4.3
2012-08-21 17:45:56
ubuntu
ubuntu
Apache HTTP Server vulnerabilities
2012-11-08 00:00:00
freebsd
freebsd
apache22 -- several vulnerabilities
2012-09-13 00:00:00
altlinux
altlinux
Security fix for the ALT Linux 9 package apache2 version 2.2.24-alt1
2013-04-14 00:00:00
Security fix for the ALT Linux 8 package apache2 version 2.2.24-alt1
2013-04-14 00:00:00
Security fix for the ALT Linux 10 package apache2 version 2.2.24-alt1
2013-04-14 00:00:00
gentoo
gentoo
Apache: Multiple vulnerabilities
2008-03-11 00:00:00
oracle
oracle
Oracle Critical Patch Update - July 2013
2013-07-16 00:00:00
4.3 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
0.864 High
EPSS
Percentile
98.6%
Related for HTTPD:FC2D5D7BE57E19705780F8CE841B00C1