Lucene search
K

104 matches found

Cvelist
Cvelist
added 2026/01/12 6:23 p.m.22 views

CVE-2026-22781 TinyWeb CGI Command Injection

TinyWeb is a web server HTTP, HTTPS written in Delphi for Win32. TinyWeb HTTP Server before version 1.98 is vulnerable to OS command injection via CGI ISINDEX-style query parameters. The query parameters are passed as command-line arguments to the CGI executable via Windows CreateProcess. An...

10CVSS0.02174EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2026/01/12 12:0 a.m.6 views

PT-2026-2293

Name of the Vulnerable Software and Affected Versions TinyWeb versions prior to 1.98 Description TinyWeb is a web server for Win32. Versions of TinyWeb HTTP Server before 1.98 contain a flaw that allows for operating system command injection. This occurs through CGI ISINDEX-style query parameters...

10CVSS7.3AI score0.02174EPSS
Exploits0References8
CNNVD
CNNVD
added 2026/01/12 12:0 a.m.5 views

TinyWeb Server 操作系统命令注入漏洞

TinyWeb Server is a web server by Maxim Masiutin, an individual developer. An operating system command injection vulnerability exists in versions of TinyWeb Server prior to 1.98, which stems from passing commands via CGI ISINDEX style query parameters, which could lead to an OS command injection...

10CVSS7.3AI score0.02174EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2026/01/09 9:35 a.m.5 views

CVE-2024-34199

TinyWeb 1.94 and below allows unauthenticated remote attackers to cause a denial of service Buffer Overflow when sending excessively large elements in the request line...

8.6CVSS7AI score0.01226EPSS
Exploits1References1
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2003-1500

Malware in sbrugna...

7.8CVSS6.4AI score0.01691EPSS
Exploits1References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2004-2627

Malware in sbrugna...

5CVSS6.4AI score0.0287EPSS
Exploits1References6
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2024-46436

Malicious code in bioql PyPI...

6.9CVSS5.6AI score0.00669EPSS
Exploits1References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2024-34679

Malicious code in bioql PyPI...

8.6CVSS6.6AI score0.01226EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/23 8:28 a.m.6 views

CVE-2024-5193

A security vulnerability has been detected in Ritlabs TinyWeb Server 1.94. This vulnerability affects unknown code of the component Request Handler. The manipulation with the input %0D%0A leads to crlf injection. It is possible to initiate the attack remotely. The exploit has been disclosed...

6.9CVSS5.8AI score0.00669EPSS
Exploits1References1
NVD
NVD
added 2024/05/22 11:15 a.m.10 views

CVE-2024-5193

A security vulnerability has been detected in Ritlabs TinyWeb Server 1.94. This vulnerability affects unknown code of the component Request Handler. The manipulation with the input %0D%0A leads to crlf injection. It is possible to initiate the attack remotely. The exploit has been disclosed...

6.9CVSS5.7AI score0.00669EPSS
Exploits1References7
Vulnrichment
Vulnrichment
added 2024/05/22 10:31 a.m.19 views

CVE-2024-5193 Ritlabs TinyWeb Server Request crlf injection

A security vulnerability has been detected in Ritlabs TinyWeb Server 1.94. This vulnerability affects unknown code of the component Request Handler. The manipulation with the input %0D%0A leads to crlf injection. It is possible to initiate the attack remotely. The exploit has been disclosed...

6.9CVSS5.7AI score0.00669EPSS
Exploits1References7
CVE
CVE
added 2024/05/22 10:31 a.m.52 views

CVE-2024-5193

CVE-2024-5193 affects Ritlabs TinyWeb Server 1.94. The vulnerability arises in the Request Handler where crafting input containing %0D%0A enables CRLF injection. It can be exploited remotely, and public disclosures exist. Upgrading to TinyWeb Server 1.99 mitigates the issue; the patch identifier ...

6.9CVSS5.7AI score0.00669EPSS
Exploits1References7Affected Software1
Cvelist
Cvelist
added 2024/05/22 10:31 a.m.18 views

CVE-2024-5193 Ritlabs TinyWeb Server Request crlf injection

A security vulnerability has been detected in Ritlabs TinyWeb Server 1.94. This vulnerability affects unknown code of the component Request Handler. The manipulation with the input %0D%0A leads to crlf injection. It is possible to initiate the attack remotely. The exploit has been disclosed...

6.9CVSS5.7AI score0.00669EPSS
Exploits1References7
OSV
OSV
added 2024/05/22 10:31 a.m.5 views

CVE-2024-5193 Ritlabs TinyWeb Server Request crlf injection

A security vulnerability has been detected in Ritlabs TinyWeb Server 1.94. This vulnerability affects unknown code of the component Request Handler. The manipulation with the input %0D%0A leads to crlf injection. It is possible to initiate the attack remotely. The exploit has been disclosed...

6.9CVSS6AI score0.00669EPSS
Exploits1References9
CNNVD
CNNVD
added 2024/05/22 12:0 a.m.6 views

Ritlabs TinyWeb Server 安全漏洞

Ritlabs TinyWeb Server is a small but full-featured Web server from Ritlabs. A security vulnerability exists in Ritlabs TinyWeb Server version 1.94, which stems from the fact that incorrect manipulation of the input %0D%0A can lead to crlf injection...

6.9CVSS5.5AI score0.00669EPSS
Exploits1References5
NVD
NVD
added 2024/05/14 3:38 p.m.8 views

CVE-2024-34199

TinyWeb 1.94 and below allows unauthenticated remote attackers to cause a denial of service Buffer Overflow when sending excessively large elements in the request line...

8.6CVSS6.7AI score0.01226EPSS
Exploits1References3
CNNVD
CNNVD
added 2024/05/14 12:0 a.m.3 views

TinyWeb Security Vulnerability

TinyWeb is a simple and lightweight HTTP server from the individual developer Konstantin Belyalov. A security vulnerability exists in TinyWeb version 1.94 and earlier, which originates from a denial of service that allows an unauthenticated, remote attacker to send too large an element in a reque...

8.6CVSS6.7AI score0.01226EPSS
Exploits1References2
OSV
OSV
added 2024/05/10 4:24 p.m.4 views

CVE-2024-34199

TinyWeb 1.94 and below allows unauthenticated remote attackers to cause a denial of service Buffer Overflow when sending excessively large elements in the request line...

8.6CVSS6.8AI score0.01226EPSS
Exploits1References5
CVE
CVE
added 2024/05/10 4:24 p.m.79 views

CVE-2024-34199

TinyWeb 1.94 and earlier are affected by an unauthenticated remote DoS due to a buffer overflow when oversized elements appear in the request line. The root cause is not explicitly detailed beyond the described buffer overflow in the request line, and the exploitation is network-based with no aut...

8.6CVSS7AI score0.01226EPSS
Exploits1References3Affected Software1
Cvelist
Cvelist
added 2024/05/10 4:24 p.m.14 views

CVE-2024-34199

TinyWeb 1.94 and below allows unauthenticated remote attackers to cause a denial of service Buffer Overflow when sending excessively large elements in the request line...

7AI score0.01226EPSS
Exploits1References3
Rows per page
Query Builder