Lucene search
+L

25 matches found

Debian CVE
Debian CVE
added 2017/07/10 2:0 p.m.46 views

CVE-2016-10397

Removed by vendor...

7.5CVSS8.2AI score0.01908EPSS
Exploits0
UbuntuCve
UbuntuCve
added 2017/07/10 12:0 a.m.39 views

CVE-2016-10397

In PHP before 5.6.28 and 7.x before 7.0.13, incorrect handling of various URI components in the URL parser could be used by attackers to bypass hostname-specific URL checks, as demonstrated by evil.example.com:[email protected]/ and evil.example.com:[email protected]/ inputs to the parseurl...

7.5CVSS6.9AI score0.01908EPSS
Exploits0References6
OSV
OSV
added 2016/09/24 1:59 a.m.5 views

CVE-2016-6411

Cisco Firepower Management Center and FireSIGHT System Software 6.0.1 mishandle comparisons between URLs and X.509 certificates, which allows remote attackers to bypass intended do-not-decrypt settings via a crafted URL, aka Bug ID CSCva50585...

7.5CVSS5.8AI score0.00749EPSS
Exploits0References2
CVE
CVE
added 2006/02/18 2:0 a.m.48 views

CVE-2006-0760

LightTPD 1.4.8 and earlier; when the web root sits on a case-insensitive filesystem, the system may bypass URL checks and disclose sensitive information by mismatching file extension capitalization (e.g., index.PHP when PHP is enabled only for ".php"). Root cause is a case-insensitive handling of...

2.6CVSS6.5AI score0.02236EPSS
Exploits0References6Affected Software1
Cvelist
Cvelist
added 2006/02/18 2:0 a.m.25 views

CVE-2006-0760

LightTPD 1.4.8 and earlier, when the web root is on a case-insensitive filesystem, allows remote attackers to bypass URL checks and obtain sensitive information via file extensions with unexpected capitalization, as demonstrated by a request for index.PHP when the configuration invokes the PHP...

6.5AI score0.02236EPSS
Exploits0References6
Rows per page
Query Builder