Lucene search
K

7 matches found

OSV
OSV
added 2025/04/15 9:15 a.m.6 views

CVE-2024-45712

SolarWinds Serv-U is vulnerable to a client-side cross-site scripting XSS vulnerability. The vulnerability can only be performed by an authenticated account, on the local machine, from the local browser session. Therefore the risk is very low...

5.4CVSS5.7AI score0.00328EPSS
Exploits1References2
SUSE CVE
SUSE CVE
added 2023/02/15 4:30 a.m.8 views

SUSE CVE-2018-7159

The HTTP parser in all current versions of Node.js ignores spaces in the Content-Length header, allowing input such as Content-Length: 1 2 to be interpreted as having a value of 12. The HTTP specification does not allow for spaces in the Content-Length value and the Node.js HTTP parser has been...

5.3CVSS8.4AI score0.03621EPSS
Exploits0References6
OSV
OSV
added 2018/05/17 2:29 p.m.4 views

UBUNTU-CVE-2018-7159

The HTTP parser in all current versions of Node.js ignores spaces in the Content-Length header, allowing input such as Content-Length: 1 2 to be interpreted as having a value of 12. The HTTP specification does not allow for spaces in the Content-Length value and the Node.js HTTP parser has been...

5.3CVSS6.7AI score0.03621EPSS
Exploits0References2
OSV
OSV
added 2018/05/17 2:29 p.m.3 views

ALPINE-CVE-2018-7159

The HTTP parser in all current versions of Node.js ignores spaces in the Content-Length header, allowing input such as Content-Length: 1 2 to be interpreted as having a value of 12. The HTTP specification does not allow for spaces in the Content-Length value and the Node.js HTTP parser has been...

5.3CVSS8.8AI score0.03621EPSS
Exploits0References1
OSV
OSV
added 2018/05/17 2:29 p.m.5 views

DEBIAN-CVE-2018-7159

The HTTP parser in all current versions of Node.js ignores spaces in the Content-Length header, allowing input such as Content-Length: 1 2 to be interpreted as having a value of 12. The HTTP specification does not allow for spaces in the Content-Length value and the Node.js HTTP parser has been...

5.3CVSS9AI score0.03621EPSS
Exploits0References1
OSV
OSV
added 2018/05/17 2:29 p.m.5 views

AZL-40842 CVE-2018-7159 affecting package rubygem-http_parser for versions less than 0.8.0-1

The HTTP parser in all current versions of Node.js ignores spaces in the Content-Length header, allowing input such as Content-Length: 1 2 to be interpreted as having a value of 12. The HTTP specification does not allow for spaces in the Content-Length value and the Node.js HTTP parser has been...

5.3CVSS6.5AI score0.03621EPSS
Exploits0References1
securityvulns
securityvulns
added 2005/07/07 12:0 a.m.33 views

Interspire ArticleLive 2005 XSS problem

"Critical Security" advisory 001 www.critical.lt - security today Vulnerable product: Interspire ArcticleLive 2005 latest url: http://www.interspire.com/articlelive/demo.php Vulnerability type: Cross Site Scripting Risk: very low Credits: "Critical Security", website: http://www.critical.lt The...

Exploits0
Rows per page
Query Builder