CVE-2026-36760

creationtimestamp| type| source ---|---|--- 2026-04-30 19:46:40+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mkqewko3au2t 2026-04-30 19:47:06+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mkqexdt5sx2c 2026-04-30 20:45:24+00:00| seen|...

CVE-2026-36760

An issue in the fileMd5 parameter in the /a/file/upload endpoint of JeeSite v5.15.1 allows authenticated attackers with file upload permissions to execute a path traversal and write arbitrary files with whitelisted suffixes to arbitrary filesystem locations while chunked upload is enabled...

CLSA-2026-1777033551 httpd: Fix of CVE-2022-36760

CVE-2022-36760: modproxyajp: fix possible request smuggling via invalid Transfer-Encoding...

MiracleLinux 8 : httpd:2.4 (AXSA:2023-5145:01)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2023-5145:01 advisory. httpd: moddav: out-of-bounds read/write of zero byte CVE-2006-20001 httpd: modproxyajp: Possible request smuggling CVE-2022-36760 httpd: modproxy:...

MAL-2025-36760 Malicious code in texorator (npm)

The package texorator was found to contain malicious code...

Linux Distros Unpatched Vulnerability : CVE-2022-36760

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Inconsistent Interpretation of HTTP Requests 'HTTP Request Smuggling' vulnerability in modproxyajp of Apache HTTP Server allows an attacker to smuggle requests ...

TencentOS Server 4: httpd (TSSA-2024:0666)

The version of Tencent Linux installed on the remote TencentOS Server 4 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2024:0666 advisory. Package updates are available for TencentOS Server 4 that fix the following vulnerabilities...

TencentOS Server 3: httpd:2.4 (TSSA-2023:0196)

The version of Tencent Linux installed on the remote TencentOS Server 3 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2023:0196 advisory. Package updates are available for TencentOS Server 3 that fix the following vulnerabilities...

CVE-2020-36760

The Ocean Extra plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 1.6.5. This is due to missing or incorrect nonce validation on the addcoreextensionsbundlevalidation function. This makes it possible for unauthenticated attackers to validate...

actix-casbin (>=0.1.0 <=0.3.3), actix-casbin-auth (>=0.1.0 <=0.3.2) +29 more potentially affected by CVE-2024-36760 via rhai (>=0.11.1 <=1.17.1)

rhai CARGO version =0.11.1, =0.1.0, =0.1.0, =0.1.0, =0.3.0, =0.1.0, =0.1.0, =0.5.1, =0.1.0, =3.1.0, =0.1.0, =0.5.0, =0.9.4 and more Source cves: CVE-2024-36760 Source advisory: OSV:GHSA-67FV-9R7G-432H...

openSUSE: Security Advisory for apache2 (SUSE-SU-2023:0322-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CentOS 9 : httpd-2.4.53-11.el9

The remote CentOS Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the httpd-2.4.53-11.el9 build changelog. - out-of-bounds read/write of zero byte CVE-2006-20001 - Possible request smuggling CVE-2022-36760 - HTTP response splitting CVE-2022-37436...

F5 Networks BIG-IP : Apache HTTP server vulnerability (K000132643)

The version of F5 Networks BIG-IP installed on the remote host is prior to 15.1.10.3 / 16.1.4.2 / 17.1.1.1. It is, therefore, affected by a vulnerability as referenced in the K000132643 advisory. - Inconsistent Interpretation of HTTP Requests 'HTTP Request Smuggling' vulnerability in modproxyajp ...

CVE-2023-36760

creationtimestamp| type| source ---|---|--- 2023-09-12 20:23:14+00:00| seen| https://t.me/cibsecurity/70306...

CVE-2023-36760

3D Viewer Remote Code Execution Vulnerability...

CVE-2023-36760

Microsoft 3D Viewer is affected by CVE-2023-36760 (Remote Code Execution). The OpenVAS plugin lists affected Windows versions as Microsoft 3D Viewer

CVE-2023-36760 3D Viewer Remote Code Execution Vulnerability

...

CVE-2023-36760 3D Viewer Remote Code Execution Vulnerability

...

httpd:2.4 security update

httpd 2.4.37-56.0.1.7 - Resolves: 2176723 - CVE-2023-27522 httpd:2.4/httpd: modproxyuwsgi HTTP response splitting 2.4.37-56.0.1.6 - Set vstring per ORACLESUPPORTPRODUCT Orabug: 29892262 - Replace index.html with Oracle's index page oracleindex.html 2.4.37-56.6 - Resolves: 2190133 - modrewrite...

KLA60570 Multiple vulnerabilities in Microsoft Apps

Multiple vulnerabilities were found in Microsoft Apps. Malicious users can exploit these vulnerabilities to execute arbitrary code. Below is a complete list of vulnerabilities: 1. A remote code execution vulnerability in 3D Builder can be exploited remotely to execute arbitrary code. 2. A remote...