CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

5876 matches found

NVD•added 2014/03/18 5:18 a.m.•18 views

CVE-2014-0098

The logcookie function in modlogconfig.c in the modlogconfig module in the Apache HTTP Server before 2.4.8 allows remote attackers to cause a denial of service segmentation fault and daemon crash via a crafted cookie that is not properly handled during truncation...

5CVSS6.9AI score0.50788EPSS

Exploits2References54

NVD•added 2014/03/18 5:18 a.m.•21 views

CVE-2013-6438

The davxmlgetcdata function in main/util.c in the moddav module in the Apache HTTP Server before 2.4.8 does not properly remove whitespace characters from CDATA sections, which allows remote attackers to cause a denial of service daemon crash via a crafted DAV WRITE request...

5CVSS6.8AI score0.39561EPSS

Exploits2References48

OSV•added 2014/03/18 5:18 a.m.•6 views

CVE-2013-6438

5CVSS6.3AI score0.39561EPSS

Exploits2References55

Prion•added 2014/03/18 5:18 a.m.•21 views

Information disclosure

5CVSS6.8AI score0.50788EPSS

Exploits2References54Affected Software3

Prion•added 2014/03/18 5:18 a.m.•25 views

Cross site request forgery (csrf)

5CVSS6.8AI score0.39561EPSS

Exploits2References48Affected Software2

Cvelist•added 2014/03/18 1:0 a.m.•32 views

CVE-2013-6438

7AI score0.39561EPSS

Exploits2References48

CVE•added 2014/03/18 1:0 a.m.•1765 views

CVE-2013-6438

The vulnerability CVE-2013-6438 affects the Apache HTTP Server mod_dav component. The flaw is in dav_xml_get_cdata (main/util.c) where whitespace is not correctly removed from CDATA sections, enabling a remote attacker to trigger a denial of service (daemon crash) with a crafted DAV WRITE request...

5CVSS8AI score0.39561EPSS

Exploits2References48Affected Software1

Debian CVE•added 2014/03/18 1:0 a.m.•32 views

CVE-2014-0098

5CVSS7AI score0.50788EPSS

Exploits2

Debian CVE•added 2014/03/18 1:0 a.m.•38 views

CVE-2013-6438

5CVSS6.5AI score0.39561EPSS

Exploits2

CVE•added 2014/03/18 1:0 a.m.•1959 views

CVE-2014-0098

CVE-2014-0098 affects the Apache HTTP Server (mod_log_config) prior to version 2.4.8. The vulnerability is caused by how log_cookie is handled during truncation, allowing remote attackers to trigger a denial-of-service (segmentation fault and daemon crash). Public advisories and vendor notes (e.g...

5CVSS8AI score0.50788EPSS

Exploits2References54Affected Software1

UbuntuCve•added 2014/03/18 12:0 a.m.•30 views

CVE-2013-6438

5CVSS6.9AI score0.39561EPSS

Exploits2References3

UbuntuCve•added 2014/03/18 12:0 a.m.•33 views

CVE-2014-0098

5CVSS6.9AI score0.50788EPSS

Exploits2References2

Check Point Advisories•added 2014/03/17 12:0 a.m.•12 views

Apache HTTP Server Header Injection Cross-Site Scripting (CVE-2006-3918)

A Cross-Site Scripting vulnerability has been reported in Apache HTTP servers. The vulnerability is due to lack of sanitization for data supplied in the HTTP request header. A remote attacker can exploit this vulnerability by sending an HTTP request containing crafted request header to the target...

0.2AI score0.91373EPSS

Exploits7

Fedora•added 2014/03/15 3:0 p.m.•51 views

[SECURITY] Fedora 19 Update: php-5.5.10-1.fc19

PHP is an HTML-embedded scripting language. PHP attempts to make it easy for developers to write dynamically generated web pages. PHP also offers built-in database integration for several commercial and non-commercial database management systems, so writing a database-enabled webpage with PHP is...

7.5CVSS0.4AI score0.40224EPSS

Exploits13

Fedora•added 2014/03/09 4:40 a.m.•67 views

[SECURITY] Fedora 20 Update: php-5.5.10-1.fc20

7.5CVSS0.4AI score0.40224EPSS

Exploits9

Tenable Nessus•added 2014/03/07 12:0 a.m.•37 views

CentOS 5 / 6 : subversion (CESA-2014:0255)

Updated subversion packages that fix three security issues are now available for Red Hat Enterprise Linux 5 and 6. The Red Hat Security Response Team has rated this update as having Moderate security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severity rating...

7.8CVSS7.6AI score0.27105EPSS

Exploits0References5

Cent OS•added 2014/03/06 11:19 a.m.•78 views

mod_dav_svn, subversion security update

CentOS Errata and Security Advisory CESA-2014:0255 Updated subversion packages that fix three security issues are now available for Red Hat Enterprise Linux 5 and 6. The Red Hat Security Response Team has rated this update as having Moderate security impact. Common Vulnerability Scoring System CV...

7.8CVSS7.4AI score0.27105EPSS

Exploits0References7

Tenable Nessus•added 2014/01/20 12:0 a.m.•83 views

IBM WebSphere Application Server 7.0 < Fix Pack 31 Multiple Vulnerabilities

IBM WebSphere Application Server 7.0 before Fix Pack 31 appears to be running on the remote host. It is, therefore, potentially affected by the following vulnerabilities : - A flaw in the modrewrite module of Apache HTTP Server potentially allows a remote attacker to execute arbitrary code via...

6.8CVSS7.6AI score0.52396EPSS

Exploits5References18

OpenVAS•added 2013/12/23 12:0 a.m.•45 views

Fedora Update for php FEDORA-2013-23215

Check for the Version of php OpenVAS Vulnerability Test Fedora Update for php FEDORA-2013-23215 Authors: System Generated Check Copyright: Copyright C 2013 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the terms of...

7.5CVSS7.3AI score0.40224EPSS

Exploits12References2

Fedora•added 2013/12/20 2:4 a.m.•59 views

[SECURITY] Fedora 18 Update: php-5.4.23-1.fc18

7.5CVSS0.6AI score0.40224EPSS

Exploits12

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by