CVE Search Engine - Security Vulnerabilities and Exploits Search Tool | Vulners.com

🔥 Daily Hot!

💪🏽 CPE Enhanced Advisories

🕶 Shadow Exploits

🕵🏼 Vulners CPE

🔐 Security news

💻 Exploit updates

📑 Blogs review

🐧 Linux vulnerabilities

🤖 AI High Score

show all

3714 matches found

Tenable Nessus•added 2004/07/06 12:0 a.m.•22 views

FreeBSD : Pavuk HTTP Location header overflow (137)

The following package needs to be updated: pavuk %NASLMINLEVEL 999999 @DEPRECATED@ This script has been deprecated by freebsdpkg76904dceccf311d8babb000854d03344.nasl. Disabled on 2011/10/02. C Tenable Network Security, Inc. This script contains information extracted from VuXML : Copyright 2003-20...

6.4AI score0.0292EPSS

Exploits0References15

securityvulns•added 2004/05/11 12:0 a.m.•35 views

IceCast buffer overflow

Authorization: HTTP header buffer overflow...

Exploits0References1Affected Software1

Exploit DB•added 2004/05/04 12:0 a.m.•29 views

Invision Power Board (IP.Board) < 1.3.1 - Design Error

IP.Board Design Error Vendor: Invision Power Services Product: IP.Board Version: = 1.3.1 Website: http://www.invisionpower.com/ BID: 10559 Description: Invision Power Board IPB is a professional forum system that has been built from the ground up with speed and security in mind, taking advantage ...

securityvulns•added 2004/04/20 12:0 a.m.•84 views

phpBB 2.0.8a and lower - IP spoofing vulnerability

Advisory Name : phpBB 2.0.8a and lower - IP spoofing vulnerability Release Date : Apr 18, 2004 Application : phpBB Version : phpBB 2.0.8a and previous versions Platform : PHP Vendor URL : http://www.phpbb.com/ Author : Wang / SRR Project Group of Ready Response [email protected] Overview A...

NVD•added 2004/04/19 4:0 a.m.•20 views

CVE-2004-1950

phpBB 2.0.8a and earlier trusts the IP address that is in the X-Forwarded-For in the HTTP header, which allows remote attackers to spoof IP addresses...

5CVSS6.6AI score0.01457EPSS

Exploits1References5

exploitpack•added 2004/03/30 12:0 a.m.•11 views

MPlayer 0.91.0 - Remote HTTP Header Buffer Overflow

MPlayer 0.91.0 - Remote HTTP Header Buffer Overflow source: https://www.securityfocus.com/bid/10008/info It has been reported that MPlayer is prone to a remote HTTP header buffer overflow vulnerability. This issue is due to a failure of the application to properly verify buffer bounds on the...

Exploit DB•added 2004/03/30 12:0 a.m.•22 views

MPlayer 0.9/1.0 - Remote HTTP Header Buffer Overflow

source: https://www.securityfocus.com/bid/10008/info It has been reported that MPlayer is prone to a remote HTTP header buffer overflow vulnerability. This issue is due to a failure of the application to properly verify buffer bounds on the 'Location' HTTP header during parsing. Successful...

exploitpack•added 2004/01/19 12:0 a.m.•13 views

GetWare Web Server Component - Content-Length Value Remote Denial of Service

GetWare Web Server Component - Content-Length Value Remote Denial of Service source: https://www.securityfocus.com/bid/9451/info The GetWare Web Server component has been reported prone to a remote denial of service vulnerability. It has been reported that the issue will present itself when the...

Exploit DB•added 2004/01/19 12:0 a.m.•21 views

GetWare Web Server Component - Content-Length Value Remote Denial of Service

source: https://www.securityfocus.com/bid/9451/info The GetWare Web Server component has been reported prone to a remote denial of service vulnerability. It has been reported that the issue will present itself when the affected web server receives malicious HTTP requests that contain negative...

securityvulns•added 2003/10/30 12:0 a.m.•29 views

TelCondex SimpleWebserver Buffer Overflow

TelCondex SimpleWebserver Buffer Overflow ========================================= The TelCondex SimpleWebserver 2.12.30210 Build 3285 is vulnerable to a remote executable buffer overflow, due to missing length check on the referer-variable of the HTTP-header. It is possible to overwrite the...

exploitpack•added 2003/04/15 12:0 a.m.•20 views

osCommerce 2.2 - Authentication Bypass

osCommerce 2.2 - Authentication Bypass source: https://www.securityfocus.com/bid/7357/info osCommerce has been reported prone to authentication bypass vulnerability. It has been reported that osCommerce uses HTTP header information as a part of its authentication mechanism. Reportedly an attacker...

Exploit DB•added 2003/04/15 12:0 a.m.•18 views

osCommerce 2.2 - Authentication Bypass

source: https://www.securityfocus.com/bid/7357/info osCommerce has been reported prone to authentication bypass vulnerability. It has been reported that osCommerce uses HTTP header information as a part of its authentication mechanism. Reportedly an attacker may spoof parts of the HTTP header and...

Exploit DB•added 2002/11/30 12:0 a.m.•24 views

Pserv 2.0 - User-Agent HTTP Header Buffer Overflow (1)

source: https://www.securityfocus.com/bid/6286/info A buffer overflow vulnerability has been reported in Pserv. The buffer overflow condition is due to the way Pserv handles data streams from remote connections. An attacker can exploit this vulnerability by issuing a HTTP request with an overly...

securityvulns•added 2002/11/06 12:0 a.m.•83 views

ZoneEdit Account Hijack Vulnerability

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ===================================================================== secondmotion-SM-SA-02-02 Security Advisory ===================================================================== Topic: ZoneEdit Account Hijack Vulnerability Announced: 2002-11-05...

NVD•added 2002/11/04 5:0 a.m.•11 views

CVE-2002-1168

Cross-site scripting XSS vulnerability in IBM Web Traffic Express Caching Proxy Server 3.6 and 4.x before 4.0.1.26 allows remote attackers to execute script as other users via an HTTP request that contains an Location: header with a "%0a%0d" CRLF sequence, which echoes the Location as an HTTP...

6.8CVSS5.9AI score0.01635EPSS

Exploits0References2

Exploit DB•added 2002/11/01 12:0 a.m.•34 views

Linksys WAP11 1.3/1.4 / D-Link DI-804 4.68/Dl-704 2.56 b5 - Embedded HTTP Server Denial of Service

source: https://www.securityfocus.com/bid/6090/info A denial of service vulnerability has been reported for several networking devices. The condition will be triggered when the embedded web server, used by the devices, receives an overly long HTTP header. An attacker can exploit this vulnerabilit...

exploitpack•added 2002/10/23 12:0 a.m.•15 views

IBM Websphere Edge Server 3.694.0 - HTTP Header Injection

IBM Websphere Edge Server 3.694.0 - HTTP Header Injection source: https://www.securityfocus.com/bid/6001/info A vulnerability has been discovered in the Caching Proxy component bundled with the IBM Websphere Edge Server. Due to insufficient sanitization of user-supplied input it is possible for a...

Exploit DB•added 2002/10/23 12:0 a.m.•21 views

IBM Websphere Edge Server 3.69/4.0 - HTTP Header Injection

source: https://www.securityfocus.com/bid/6001/info A vulnerability has been discovered in the Caching Proxy component bundled with the IBM Websphere Edge Server. Due to insufficient sanitization of user-supplied input it is possible for an attacker to construct a malicious link which contains...

NVD•added 2002/10/04 4:0 a.m.•12 views

CVE-2002-1032

Buffer overflow in KeyFocus KF web server 1.0.5 and earlier allows remote attackers to cause a denial of service and possibly execute arbitrary code via a malformed HTTP header...

7.5CVSS8AI score0.02345EPSS

Exploits0References1

Exploit DB•added 2002/09/07 12:0 a.m.•25 views

PHP 4.2.3 - Header Function Script Injection

source: https://www.securityfocus.com/bid/5669/info PHP is a freely available, open source web scripting language package. It is available for Microsoft Windows, Linux, and Unix operating systems. It has been reported that a vulnerability in the PHP header function exists. It may be possible for ...

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by