86 matches found
CVE-2024-12147
A vulnerability was found in Netgear R6900 1.0.1.261.0.20. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file upgradecheck.cgi of the component HTTP Header Handler. The manipulation of the argument Content-Length leads to buffer overflow. The...
CVE-2024-12147 Netgear R6900 HTTP Header upgrade_check.cgi buffer overflow
A vulnerability was found in Netgear R6900 1.0.1.261.0.20. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file upgradecheck.cgi of the component HTTP Header Handler. The manipulation of the argument Content-Length leads to buffer overflow. The...
CVE-2023-4463
A vulnerability classified as problematic was found in Poly CCX 400, CCX 600, Trio 8800 and Trio C60. This vulnerability affects unknown code of the component HTTP Header Handler. The manipulation of the argument Cookie leads to denial of service. The attack can be initiated remotely. The exploit...
Design/Logic Flaw
A vulnerability classified as problematic was found in Poly CCX 400, CCX 600, Trio 8800 and Trio C60. This vulnerability affects unknown code of the component HTTP Header Handler. The manipulation of the argument Cookie leads to denial of service. The attack can be initiated remotely. The exploit...
CVE-2023-4463
The CVE-2023-4463 entry affects Poly CCX 400, CCX 600, Trio 8800, and Trio C60. The vulnerability is in the HTTP Header Handler component, where manipulating the Cookie argument can cause denial of service. Exploitation can be performed remotely, and public disclosure of the exploit is noted. Con...
PT-2023-29275 · Poly · Poly Ccx 400 +3
Name of the Vulnerable Software and Affected Versions: Poly CCX 400 affected versions not specified Poly CCX 600 affected versions not specified Poly Trio 8800 affected versions not specified Poly Trio C60 affected versions not specified Description: A vulnerability was found in the HTTP Header...
GHSA-8Q38-W56M-QQ2C Header injection in TurboGears
A vulnerability classified as critical has been found in OnShift TurboGears 1.0.11.10. This affects an unknown part of the file turbogears/controllers.py of the component HTTP Header Handler. The manipulation leads to http response splitting. It is possible to initiate the attack remotely...
CVE-2019-25101
A vulnerability classified as critical has been found in OnShift TurboGears 1.0.11.10. This affects an unknown part of the file turbogears/controllers.py of the component HTTP Header Handler. The manipulation leads to http response splitting. It is possible to initiate the attack remotely...
CVE-2019-25101
A vulnerability classified as critical has been found in OnShift TurboGears 1.0.11.10. This affects an unknown part of the file turbogears/controllers.py of the component HTTP Header Handler. The manipulation leads to http response splitting. It is possible to initiate the attack remotely...
Design/Logic Flaw
A vulnerability classified as critical has been found in OnShift TurboGears 1.0.11.10. This affects an unknown part of the file turbogears/controllers.py of the component HTTP Header Handler. The manipulation leads to http response splitting. It is possible to initiate the attack remotely...
CVE-2019-25101 OnShift TurboGears HTTP Header controllers.py response splitting
A vulnerability classified as critical has been found in OnShift TurboGears 1.0.11.10. This affects an unknown part of the file turbogears/controllers.py of the component HTTP Header Handler. The manipulation leads to http response splitting. It is possible to initiate the attack remotely...
CVE-2019-25101
OnShift TurboGears 1.0.11.10 is affected by a critical issue in the HTTP Header Handler (tur bogears/controllers.py) that enables HTTP response splitting. The vulnerability is exploitable remotely and is addressed by upgrading to version 1.0.11.11. The patch is identified as f68bbaba47f4474e1da55...
PT-2022-25520 · Codeboxr · Codeboxr Cbx User Online & Last Login Plugin
Name of the Vulnerable Software and Affected Versions: codeboxr CBX User Online & Last Login Plugin affected versions not specified Description: A vulnerability was found in the codeboxr CBX User Online & Last Login Plugin, affecting the HTTP Header Handler component. The manipulation of the...
PT-2022-25493 · WordPress · Iridium Intelligence Bad Ip Wp Plugin
Name of the Vulnerable Software and Affected Versions: Iridium Intelligence bad ip WP Plugin affected versions not specified Description: A vulnerability was found in the HTTP Header Handler component of the Iridium Intelligence bad ip WP Plugin. The manipulation of the X-Forwarded-For argument...
PT-2022-25549 · WordPress · Getseofix Show Visitor Ip Address Widget/Shortcode Plugin
Name of the Vulnerable Software and Affected Versions: getseofix Show Visitor IP Address Widget and Shortcode Plugin affected versions not specified Description: A problematic vulnerability was found in the HTTP Header Handler component. The manipulation of the X-Forwarded-For argument leads to...
PT-2022-25528 · Unknown · Yellow Tree Geolocation Ip Detection Plugin
Name of the Vulnerable Software and Affected Versions: Yellow Tree Geolocation IP Detection Plugin affected versions not specified Description: A vulnerability was found in the Yellow Tree Geolocation IP Detection Plugin, classified as problematic. It affects an unknown function of the component...
WordPress Zoho Activity Log Input Validation Error Vulnerability
WordPress and WordPress plugin are both products of the WordPress Foundation. WordPress is a set of blogging platforms developed using the PHP language. WordPress plugin is an application plugin. WordPress Zoho Activity Log is vulnerable to an input validation error that originates from unknown...
CVE-2022-3941
A vulnerability has been found in Activity Log Plugin and classified as critical. This vulnerability affects unknown code of the component HTTP Header Handler. The manipulation of the argument X-Forwarded-For leads to improper output neutralization for logs. The attack can be initiated remotely...
CVE-2022-3941
A vulnerability has been found in Activity Log Plugin and classified as critical. This vulnerability affects unknown code of the component HTTP Header Handler. The manipulation of the argument X-Forwarded-For leads to improper output neutralization for logs. The attack can be initiated remotely...
Design/Logic Flaw
A vulnerability has been found in Activity Log Plugin and classified as critical. This vulnerability affects unknown code of the component HTTP Header Handler. The manipulation of the argument X-Forwarded-For leads to improper output neutralization for logs. The attack can be initiated remotely...