Lucene search
K

389 matches found

Laminas
Laminas
added 2022/07/25 9:35 p.m.51 views

HTTP Host Header Attack Vulnerabilities

The package laminas/laminas-diactoros Diactoros is a PSR-7 HTTP Message and PSR-17 HTTP Message Factory implementation, providing HTTP request and response message representations both for making HTTP client requests and responding to HTTP requests server-side. When responding to an incoming...

6.3AI score
Exploits0References3Affected Software2
Friends Of PHP
Friends Of PHP
added 2022/07/25 7:29 p.m.29 views

Diactoros before 2.11.1 vulnerable to HTTP Host Header Attack.

Description Impact Applications that use Diactoros, and are either not behind a proxy, or can be accessed via untrusted proxies, can potentially have the host, protocol, and/or port of a Laminas\Diactoros\Uri instance associated with the incoming server request modified to reflect values from...

5.8CVSS5.8AI score0.00615EPSS
Exploits0Affected Software1
Friends Of PHP
Friends Of PHP
added 2022/07/25 7:29 p.m.24 views

Diactoros before 2.11.1 vulnerable to HTTP Host Header Attack.

Impact Applications that use Diactoros, and are either not behind a proxy, or can be accessed via untrusted proxies, can potentially have the host, protocol, and/or port of a Laminas\Diactoros\Uri instance associated with the incoming server request modified to reflect values from X-Forwarded-...

7.2CVSS6.3AI score0.00615EPSS
Exploits0Affected Software1
OSV
OSV
added 2022/05/17 2:43 a.m.7 views

GHSA-P2J4-VRGX-96QG MODX Revolution XSS via HTTP Host header

In MODX Revolution before 2.5.7, an attacker might be able to trigger XSS by injecting a payload into the HTTP Host header of a request. This is exploitable only in conjunction with other issues such as Cache Poisoning...

4.7CVSS4.5AI score0.00649EPSS
Exploits1References4
Github Security Blog
Github Security Blog
added 2022/05/17 2:43 a.m.16 views

MODX Revolution XSS via HTTP Host header

In MODX Revolution before 2.5.7, an attacker might be able to trigger XSS by injecting a payload into the HTTP Host header of a request. This is exploitable only in conjunction with other issues such as Cache Poisoning...

4.7CVSS5.9AI score0.00649EPSS
Exploits1References4Affected Software1
Github Security Blog
Github Security Blog
added 2022/05/17 12:27 a.m.29 views

Django DNS Rebinding Vulnerability

Django before 1.8.x before 1.8.16, 1.9.x before 1.9.11, and 1.10.x before 1.10.3, when settings.DEBUG is True, allow remote attackers to conduct DNS rebinding attacks by leveraging failure to validate the HTTP Host header against settings.ALLOWEDHOSTS...

8.1CVSS7AI score0.06074EPSS
Exploits0References13Affected Software1
OSV
OSV
added 2022/05/14 3:49 a.m.22 views

GHSA-RM2J-X595-Q9CJ Django Vulnerable to Cache Poisoning

Django before 1.2.7 and 1.3.x before 1.3.1 uses a request's HTTP Host header to construct a full URL in certain circumstances, which allows remote attackers to conduct cache poisoning attacks via a crafted request...

8.7CVSS6AI score0.02304EPSS
Exploits0References12
OSV
OSV
added 2022/05/13 1:8 a.m.37 views

GHSA-2MVG-C6MG-3Q63 Concrete CMS vulnerable to cross-site scripting (XSS)

concrete5 8.1.0 places incorrect trust in the HTTP Host header during caching, if the administrator did not define a "canonical" URL on installation of concrete5 using the "Advanced Options" settings. Remote attackers can make a GET request with any domain name in the Host header. This is stored...

6.1CVSS6AI score0.02752EPSS
Exploits5References6
OSV
OSV
added 2022/05/02 3:12 a.m.45 views

GHSA-5CW4-GGX9-36VG Apache Tomcat Denial of Service via Malformed Request Headers

Apache Tomcat 4.1.0 through 4.1.39, 5.5.0 through 5.5.27, and 6.0.0 through 6.0.18, when the Java AJP connector and modjk load balancing are used, allows remote attackers to cause a denial of service application outage via a crafted request with invalid headers, related to temporary blocking of...

5CVSS4.7AI score0.10053EPSS
Exploits1References45
OSV
OSV
added 2022/02/25 12:1 a.m.11 views

GHSA-PW97-6V74-9W3P EC-CUBE improperly handles HTTP Host header values

EC-CUBE 3.0.0 to 3.0.18-p3 and EC-CUBE 4.0.0 to 4.1.1 improperly handle HTTP Host header values, which may lead a remote unauthenticated attacker to direct the vulnerable version of EC-CUBE to send an Email with some forged reissue-password URL to EC-CUBE users...

5.3CVSS5.2AI score0.01138EPSS
Exploits0References4
Prion
Prion
added 2022/02/24 3:15 p.m.24 views

Design/Logic Flaw

EC-CUBE 3.0.0 to 3.0.18-p3 and EC-CUBE 4.0.0 to 4.1.1 improperly handle HTTP Host header values, which may lead a remote unauthenticated attacker to direct the vulnerable version of EC-CUBE to send an Email with some forged reissue-password URL to EC-CUBE users...

5CVSS5.3AI score0.01138EPSS
Exploits0References2Affected Software1
OSV
OSV
added 2022/02/24 9:50 a.m.13 views

CVE-2022-25355

EC-CUBE 3.0.0 to 3.0.18-p3 and EC-CUBE 4.0.0 to 4.1.1 improperly handle HTTP Host header values, which may lead a remote unauthenticated attacker to direct the vulnerable version of EC-CUBE to send an Email with some forged reissue-password URL to EC-CUBE users...

5.3CVSS7AI score0.01138EPSS
Exploits0References4
Cvelist
Cvelist
added 2022/02/24 9:50 a.m.34 views

CVE-2022-25355

EC-CUBE 3.0.0 to 3.0.18-p3 and EC-CUBE 4.0.0 to 4.1.1 improperly handle HTTP Host header values, which may lead a remote unauthenticated attacker to direct the vulnerable version of EC-CUBE to send an Email with some forged reissue-password URL to EC-CUBE users...

5.6AI score0.01138EPSS
Exploits0References2
Japan Vulnerability Notes
Japan Vulnerability Notes
added 2022/02/22 12:0 a.m.84 views

JVN#53871926: EC-CUBE improperly handles HTTP Host header values

EC-CUBE provided by EC-CUBE CO.,LTD. improperly handles HTTP Host header values CWE-913. Impact A remote attacker may direct the vulnerable version of EC-CUBE to send an Email with some forged reissue-password URL to EC-CUBE users. Solution Apply Workaround Apply the following workaround to avoid...

5.3CVSS5.2AI score0.01138EPSS
Exploits0
NVD
NVD
added 2022/02/14 8:15 p.m.39 views

CVE-2021-43106

A Header Injection vulnerability exists in Compass Plus TranzWare Online FIMI Web Interface Tranzware Online TWO 5.3.33.3 F38 and FIMI 4.2.19.4 25.The HTTP host header can be manipulated and cause the application to behave in unexpected ways. Any changes made to the header would just cause the...

6.1CVSS0.00683EPSS
Exploits1References1
Prion
Prion
added 2022/02/14 8:15 p.m.15 views

Design/Logic Flaw

A Header Injection vulnerability exists in Compass Plus TranzWare Online FIMI Web Interface Tranzware Online TWO 5.3.33.3 F38 and FIMI 4.2.19.4 25.The HTTP host header can be manipulated and cause the application to behave in unexpected ways. Any changes made to the header would just cause the...

5.8CVSS6.4AI score0.00683EPSS
Exploits1References1Affected Software2
Cvelist
Cvelist
added 2022/02/14 7:48 p.m.36 views

CVE-2021-43106

A Header Injection vulnerability exists in Compass Plus TranzWare Online FIMI Web Interface Tranzware Online TWO 5.3.33.3 F38 and FIMI 4.2.19.4 25.The HTTP host header can be manipulated and cause the application to behave in unexpected ways. Any changes made to the header would just cause the...

6.6AI score0.00683EPSS
Exploits1References1
Veracode
Veracode
added 2021/12/17 12:40 a.m.34 views

Authorization Bypass

haproxy is vulnerable to authorization bypass. Lack of validation of the HTTP Host header could potentially result in bypass of access controls due to a mishandling of the Host and authority. The fix for the original CVE is correctly included in OpenShift 4.9.11.The release of OpenShift 4.9.6...

7.5CVSS1.5AI score0.02341EPSS
Exploits0References4Affected Software1
Tenable Nessus
Tenable Nessus
added 2021/11/12 12:0 a.m.37 views

RHEL 7 / 8 : OpenShift Container Platform 4.9.6 packages and (RHSA-2021:4118)

The remote Redhat Enterprise Linux 7 / 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2021:4118 advisory. - haproxy: does not ensure that the scheme and path portions of a URI have the expected characters CVE-2021-39240 - haproxy: an HTTP...

7.5CVSS7.2AI score0.57934EPSS
Exploits6References13
Tenable Nessus
Tenable Nessus
added 2021/11/11 12:0 a.m.32 views

EulerOS 2.0 SP9 : haproxy (EulerOS-SA-2021-2712)

According to the versions of the haproxy package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - An issue was discovered in HAProxy 2.0 before 2.0.24, 2.2 before 2.2.16, 2.3 before 2.3.13, and 2.4 before 2.4.3. An HTTP method name may contai...

7.5CVSS6.5AI score0.02341EPSS
Exploits0References3
Rows per page
Query Builder