Lucene search
K

16622 matches found

OSV
OSV
added 2026/06/08 4:26 p.m.11 views

ROOT-APP-NPM-CVE-2026-41324 CVE-2026-41324 in @rootio/basic-ftp - Patched by Root

Root has patched CVE-2026-41324 in the @rootio/basic-ftp package for Root:npm. Multiple fixed versions available...

7.5CVSS5.8AI score0.00332EPSS
Exploits1
OSV
OSV
added 2026/06/08 4:26 p.m.5 views

ROOT-APP-NPM-CVE-2026-27699 CVE-2026-27699 in @rootio/basic-ftp - Patched by Root

Root has patched CVE-2026-27699 in the @rootio/basic-ftp package for Root:npm. Multiple fixed versions available...

9.1CVSS5.9AI score0.00528EPSS
Exploits2
OSV
OSV
added 2026/06/08 4:26 p.m.4 views

ROOT-APP-NPM-GHSA-RP42-5VXX-QPWR GHSA-rp42-5vxx-qpwr in @rootio/basic-ftp - Patched by Root

Root has patched GHSA-rp42-5vxx-qpwr in the @rootio/basic-ftp package for Root:npm. Multiple fixed versions available...

7.5CVSS5.7AI score
Exploits0
OSV
OSV
added 2026/06/08 4:16 p.m.4 views

UBUNTU-CVE-2026-29170

A cross-site scripting vulnerability exists in modproxyftp's HTML directory list generation in Apache HTTP Server 2.4.67 and earlier when listing FTP directory contents either via forward or reverse proxy configuration. Users are recommended to upgrade to version 2.4.68, which fixes this issue...

6.1CVSS5.1AI score0.00504EPSS
Exploits0References5
EUVD
EUVD
added 2026/06/08 3:11 p.m.11 views

EUVD-2026-35088

Loop with Unreachable Exit Condition 'Infinite Loop' vulnerability in the modproxyftp module in Apache HTTP Server with an attacker controlled backend FTP server. This issue affects undefined: from 2.4.0 through 2.4.67. Users are recommended to upgrade to version 2.4.68, which fixes the issue...

5.4AI score0.00562EPSS
Exploits0References1
AlpineLinux
AlpineLinux
added 2026/06/08 3:11 p.m.11 views

CVE-2026-44186

Loop with Unreachable Exit Condition 'Infinite Loop' vulnerability in the modproxyftp module in Apache HTTP Server with an attacker controlled backend FTP server. This issue affects undefined: from 2.4.0 through 2.4.67. Users are recommended to upgrade to version 2.4.68, which fixes the issue...

7.3CVSS5.4AI score0.00562EPSS
Exploits0
Cvelist
Cvelist
added 2026/06/08 3:11 p.m.108 views

CVE-2026-44186 Apache HTTP Server: Loop in `proxy_ftp_handler` in mod_proxy_ftp

Loop with Unreachable Exit Condition 'Infinite Loop' vulnerability in the modproxyftp module in Apache HTTP Server with an attacker controlled backend FTP server. This issue affects undefined: from 2.4.0 through 2.4.67. Users are recommended to upgrade to version 2.4.68, which fixes the issue...

0.00562EPSS
Exploits0References1
CVE
CVE
added 2026/06/08 3:11 p.m.121 views

CVE-2026-44186

CVE-2026-44186 affects Apache HTTP Server (mod_proxy_ftp). A loop with an unreachable exit condition can occur when handling an attacker-controlled backend FTP server, impacting 2.4.0 through 2.4.67. The issue’s remediation is to upgrade to Apache HTTP Server 2.4.68 or later. The provided connect...

7.3CVSS5.4AI score0.00562EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2026/06/08 3:10 p.m.79 views

CVE-2026-29170

CVE-2026-29170 describes a cross-site scripting (XSS) vulnerability in Apache HTTP Server 2.4.67 and earlier, affecting mod_proxy_ftp during HTML directory list generation when listing FTP directory contents via forward or reverse proxy configurations. The vulnerability arises in the HTML directo...

6.1CVSS5.2AI score0.00504EPSS
Exploits0References2Affected Software1
AlpineLinux
AlpineLinux
added 2026/06/08 3:10 p.m.52 views

CVE-2026-29170

A cross-site scripting vulnerability exists in modproxyftp's HTML directory list generation in Apache HTTP Server 2.4.67 and earlier when listing FTP directory contents either via forward or reverse proxy configuration. Users are recommended to upgrade to version 2.4.68, which fixes this issue...

6.1CVSS5.1AI score0.00504EPSS
Exploits0
Debian CVE
Debian CVE
added 2026/06/08 3:10 p.m.8 views

CVE-2026-29170

A cross-site scripting vulnerability exists in modproxyftp's HTML directory list generation in Apache HTTP Server 2.4.67 and earlier when listing FTP directory contents either via forward or reverse proxy configuration. Users are recommended to upgrade to version 2.4.68, which fixes this issue...

6.1CVSS5.2AI score0.00504EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2026/06/08 8:58 a.m.13 views

CVE-2026-11451

A flaw has been found in GL.iNet GL-MT3000 4.4.5. This impacts the function snprintf of the file /cgi-bin/glc of the component FTP Protocol Handler. Executing a manipulation of the argument mediadir can lead to command injection. It is possible to launch the attack remotely. Upgrading to version...

7.5CVSS7.2AI score0.02027EPSS
Exploits1References1
ATTACKERKB
ATTACKERKB
added 2026/06/08 6:0 a.m.8 views

CVE-2026-11494

A security vulnerability has been detected in TOTOLINK AC1200 T8 4.1.5cu.8611. This affects an unknown function of the file /etc/vsftpd.conf of the component vsftpd. The manipulation leads to least privilege violation. The attack may be initiated remotely. The exploit has been disclosed publicly...

5.3CVSS5.1AI score0.00215EPSS
Exploits0References6Affected Software1
Vulnrichment
Vulnrichment
added 2026/06/08 5:30 a.m.7 views

CVE-2026-11492 D-Link DIR-823G vsftpd vsftpd.conf least privilege violation

A security flaw has been discovered in D-Link DIR-823G 1.0.2B05. The affected element is an unknown function of the file /etc/vsftpd.conf of the component vsftpd. Performing a manipulation results in least privilege violation. The attack can be initiated remotely. The exploit has been released to...

5.3CVSS5.1AI score0.00511EPSS
Exploits1References6
EUVD
EUVD
added 2026/06/08 5:30 a.m.12 views

EUVD-2026-35023

A security flaw has been discovered in D-Link DIR-823G 1.0.2B05. The affected element is an unknown function of the file /etc/vsftpd.conf of the component vsftpd. Performing a manipulation results in least privilege violation. The attack can be initiated remotely. The exploit has been released to...

5.3CVSS5.1AI score0.00511EPSS
Exploits1References6
CNNVD
CNNVD
added 2026/06/08 12:0 a.m.7 views

TOTOLINK CP450 安全漏洞

TOTOLINK CP450 is an outdoor wireless customer terminal device developed by TOTOLINK Corporation. It is primarily used to provide wireless broadband access services, especially suitable for wireless network coverage in rural or remote areas. The TOTOLINK CP450 version 4.1.0cu.747 contains a...

5.3CVSS5AI score0.00206EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/06/08 12:0 a.m.8 views

Apache HTTP Server 安全漏洞

Apache HTTP Server is an open-source web server developed by the Apache Foundation in the United States. This server is known for its speed, reliability, and ability to be expanded through simple APIs. There is a bug in Apache HTTP Server involving infinite loops; however, detailed information...

7.3CVSS5.8AI score0.00562EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/06/08 12:0 a.m.10 views

Apache HTTP Server 跨站脚本漏洞

Apache HTTP Server is an open-source web server developed by the Apache Foundation in the United States. This server is known for its speed, reliability, and ability to be expanded through simple APIs. Versions of Apache HTTP Server 2.4.67 and earlier had a cross-site scripting vulnerability. Thi...

6.1CVSS4.9AI score0.00504EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/06/08 12:0 a.m.14 views

PT-2026-47324

Name of the Vulnerable Software and Affected Versions Apache HTTP Server versions 2.4.0 through 2.4.67 Description The mod proxy ftp module contains a loop with an unreachable exit condition, leading to an infinite loop when interacting with an attacker-controlled backend FTP server...

9.8CVSS5.4AI score0.99957EPSS
Exploits25References116
Positive Technologies
Positive Technologies
added 2026/06/08 12:0 a.m.16 views

PT-2026-47314

Name of the Vulnerable Software and Affected Versions Apache HTTP Server versions prior to 2.4.68 Description A cross-site scripting issue exists in the HTML directory list generation of mod proxy ftp when listing FTP directory contents through forward or reverse proxy configurations...

9.8CVSS5.2AI score0.99957EPSS
Exploits24References114
Rows per page
Query Builder