Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

28 matches found

PyPA
PyPAadded 2022/08/25 6:15 p.m.8 views

PYSEC-2022-254

A vulnerability was found in modwsgi. The X-Client-IP header is not removed from a request from an untrusted proxy, allowing an attacker to pass the X-Client-IP header to the target WSGI application because the condition to remove it is missing...

7.5CVSS6.8AI score0.0069EPSS
Exploits1References4Affected Software1
CNNVD
CNNVDadded 2022/08/10 12:0 a.m.2 views

Siemens SICAM A8000 CP-8000 安全漏洞

The SICAM A8000 RTU Remote Terminal Unit series is a modular device family for remote control and automation applications in all energy supply areas.An authentication bypass vulnerability exists in the Siemens SICAM A8000 Web Server Module, which is caused by the component allowing the activation...

7.5CVSS7AI score0.00578EPSS
Exploits0References4
ATTACKERKB
ATTACKERKBadded 2022/05/18 8:15 p.m.6 views

CVE-2022-30033

Tenda TX9 Pro V22.03.02.10 is vulnerable to Buffer Overflow via the functtion setIPv6Status in httpd module...

7.8CVSS5.9AI score0.011EPSS
Exploits1References2
CNNVD
CNNVDadded 2022/04/04 12:0 a.m.2 views

Twisted 环境问题漏洞

Twisted is an event-driven open source web engine written in the Python language. Twisted suffers from an environmental issue vulnerability that stems from the fact that prior to version 22.4.0rc1, the Twisted Web HTTP 1.1 server was located in the Twisted. Web HTTP module, which parses several...

8.1CVSS7.6AI score0.028EPSS
Exploits0References22
RedHat Linux
RedHat Linuxadded 2015/08/17 8:10 a.m.1 views

subversion: (mod_dav_svn) remote denial of service with certain requests with dynamically evaluated revision numbers

An assertion failure flaw was found in the way the SVN server processed certain requests with dynamically evaluated revision numbers. A remote attacker could use this flaw to cause the SVN server both svnserve and httpd with the moddavsvn module to crash...

5CVSS7.4AI score0.12841EPSS
Exploits0References5
RedHat Linux
RedHat Linuxadded 2015/04/16 4:13 p.m.1 views

mod_jk: information leak due to incorrect JkMount/JkUnmount directives processing

It was discovered that a JkUnmount rule for a subtree of a previous JkMount rule could be ignored. This could allow a remote attacker to potentially access a private artifact in a tree that would otherwise not be accessible to them...

5CVSS6.7AI score0.07109EPSS
Exploits0References4
Tenable Nessus
Tenable Nessusadded 2013/08/21 12:0 a.m.21 views

CiscoWorks Common Services Arbitrary Code Execution (cisco-sa-20101027-cs)

The version of CiscoWorks Common Services installed on the remote Windows host is potentially affected by multiple buffer overflows in the Cisco developed authentication code of the web server module. By exploiting these flaws, a remote, unauthenticated attacker could execute arbitrary code subje...

10CVSS6.2AI score0.05992EPSS
Exploits0References2
Prion
Prionadded 2010/10/29 7:0 p.m.10 views

Buffer overflow

Multiple buffer overflows in the authentication functionality in the web-server module in Cisco CiscoWorks Common Services before 4.0 allow remote attackers to execute arbitrary code via a session on TCP port 1 443 or 2 1741, aka Bug ID CSCti41352...

10CVSS8.6AI score0.05992EPSS
Exploits0References6Affected Software7
Rows per page
Query Builder