Lucene search
K

6 matches found

RedhatCVE
RedhatCVE
added 2026/01/09 10:9 a.m.9 views

CVE-2019-11389

An issue was discovered in OWASP ModSecurity Core Rule Set CRS through 3.1.0. /rules/REQUEST-933-APPLICATION-ATTACK-PHP.conf allows remote attackers to cause a denial of service ReDOS by entering a specially crafted string with next at the beginning and nested repetition operators. NOTE: the...

5.3CVSS6.8AI score0.01671EPSS
Exploits1References1
Circl
Circl
added 2025/10/07 1:48 p.m.5 views

CVE-2025-11389

creationtimestamp| type| source ---|---|--- 2025-10-07 13:48:23+00:00| seen| https://infosec.exchange/users/cR0w/statuses/115333195472561898...

9CVSS5.8AI score0.00742EPSS
Exploits1References1
CVE
CVE
added 2021/12/20 10:45 p.m.34 views

CVE-2020-11389

This CVE entry is rejected/not used and does not represent an active vulnerability.

6.7AI score
Exploits0
OSV
OSV
added 2019/04/21 2:29 a.m.9 views

CVE-2019-11389

An issue was discovered in OWASP ModSecurity Core Rule Set CRS through 3.1.0. /rules/REQUEST-933-APPLICATION-ATTACK-PHP.conf allows remote attackers to cause a denial of service ReDOS by entering a specially crafted string with next at the beginning and nested repetition operators. NOTE: the...

5.3CVSS5.1AI score
Exploits0References2
CVE
CVE
added 2019/04/21 1:15 a.m.60 views

CVE-2019-11389

CVE-2019-11389 affects the OWASP ModSecurity Core Rule Set (CRS) up to version 3.1.0. The issue is in /rules/REQUEST-933-APPLICATION-ATTACK-PHP.conf, where a specially crafted string starting with next# and containing nested repetition operators can cause a denial of service (ReDoS) via the regul...

5.3CVSS5.2AI score0.01671EPSS
Exploits1References2Affected Software1
CVE
CVE
added 2017/08/02 9:0 p.m.47 views

CVE-2017-11389

CVE-2017-11389 is a directory traversal vulnerability in Trend Micro Control Manager 6.0 that allows remote code execution by dropping arbitrary files in a web-facing directory. The root cause is improper validation of a user-supplied path in the module cmdHandlerFileHandling.dll, enabling an att...

9.8CVSS9.7AI score0.27446EPSS
Exploits0References4Affected Software1
Rows per page
Query Builder