UBUNTU-CVE-2017-6413

The "OpenID Connect Relying Party and OAuth 2.0 Resource Server" aka modauthopenidc module before 2.1.6 for the Apache HTTP Server does not skip OIDCCLAIM and OIDCAuthNHeader headers in an "AuthType oauth20" configuration, which allows remote attackers to bypass authentication via crafted HTTP...

RHEL 6 : JBoss Core Services (RHSA-2017:0193)

Updated packages that provide Red Hat JBoss Core Services Pack Apache Server 2.4.23 and fix several bugs, and add various enhancements are now available for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability...

reversemap - Analyse SQL injection attempts in web server logs

Analyse SQL injection attempts in web server logs The program can either be run in batch mode or interactive mode. In batch mode the program will accept Apache web server logs and will deobfuscate requested URLs from the logs. In interactive mode the program will prompt for user input and will...

HTTP_Upload 1.0.0.b3 Arbitrary File Upload

Credits: John Page AKA Hyp3rlinx + Website: hyp3rlinx.altervista.org + Source: http://hyp3rlinx.altervista.org/advisories/PEAR-HTTPUPLOAD-ARBITRARY-FILE-UPLOAD.txt + ISR: ApparitionSEC + Vendor: ============ pear.php.net Product: ==================== HTTPUpload v1.0.0b3 Download:...

Apache HTTP Server Security Bypass Vulnerability (CNVD-2016-13233)

Apache httpd is the U.S. Apache Apache Software Foundation, an open source HTTP server developed and maintained specifically for modern operating systems. A security vulnerability exists in Apache httpd versions prior to 2.4.25, which stems from the program's failure to properly parse HTTP header...

mod_cluster: Protocol parsing logic error

An error was found in protocol parsing logic of modcluster load balancer Apache HTTP Server modules. An attacker could use this flaw to cause a Segmentation Fault in the serving httpd process...

Edge SkateShop - Authentication bypass

Edge SkateShop - Authentication bypass Exploit Title: Edge SkateShop Authentication Bypass Date: 6/12/2016 Exploit Author: Delilah Vendor HomePage: http://www.sourcecodester.com/php/10964/basic-shopping-cartphpmysql.html Software Link:...

DEBIAN-CVE-2016-8740

The modhttp2 module in the Apache HTTP Server 2.4.17 through 2.4.23, when the Protocols configuration includes h2 or h2c, does not restrict request-header length, which allows remote attackers to cause a denial of service memory consumption via crafted CONTINUATION frames in an HTTP/2 request...

Exploit for Race Condition in Oracle Mysql

It is an exploit module for Apache HTTP Server. The target pr...

mod_cluster: remotely Segfault Apache http server

It was discovered that it is possible to remotely Segfault Apache http server with a specially crafted string sent to the modcluster via service messages MCMP...

httpd: HTTP request smuggling attack against chunked request parser

Multiple flaws were found in the way httpd parsed HTTP requests and responses using chunked transfer encoding. A remote attacker could use these flaws to create a specially crafted request, which httpd would decode differently from an HTTP proxy software in front of it, possibly leading to HTTP...

Design/Logic Flaw

modcluster, as used in Red Hat JBoss Web Server 2.1, allows remote attackers to cause a denial of service Apache http server crash via an MCMP message containing a series of = equals characters after a legitimate element...

SimplePHPQuiz - Blind SQL Injection

Exploit for php platform in category web applications Exploit Title: SimplePHPQuiz - Blind SQL Injection Date: 2016-08-23 Exploit Author: HaHwul Exploit Author Blog: www.hahwul.com Vendor Homepage: https://github.com/valokafor/SimplePHPQuiz Software Link:...

mod_cluster: remotely Segfault Apache http server

It was discovered that it is possible to remotely Segfault Apache http server with a specially crafted string sent to the modcluster via service messages MCMP...

Local Security Bypass Vulnerability in mod_nss Module

modnss is a module that provides encryption for the Apache HTTP server based on the Secure Sockets Layer SSL and Transport Layer Security TLS protocols and uses the Network Security Services NSS security library to provide encryption. A local security bypass vulnerability exists in the modnss...

SUSE-SU-2016:1819-1 Security update for apache2

This update for apache2 fixes the following issues: It used to be possible to set an arbitrary $HTTPPROXY environment variable for request handlers -- like CGI scripts -- by including a specially crafted HTTP header in the request CVE-2016-5387. As a result, these server components would...

SUSE-SU-2016:1820-1 Security update for apache2-mod_fcgid

This update for apache2-modfcgid fixes the following issues: It used to be possible to set an arbitrary $HTTPPROXY environment variable for request handlers -- like CGI scripts -- by including a specially crafted HTTP header in the request CVE-2016-1000104. As a result, these server components...

UBUNTU-CVE-2016-5387

The Apache HTTP Server through 2.4.23 follows RFC 3875 section 4.1.18 and therefore does not protect applications from the presence of untrusted client data in the HTTPPROXY environment variable, which might allow remote attackers to redirect an application's outbound HTTP traffic to an arbitrary...

Apache HTTP Server Denial of Service Vulnerability (CNVD-2016-04612)

Apache HTTP Server is an open source web server from the Apache Software Foundation. Apache HTTP Server versions 2.4.17 and 2.4.18, with modhttp2 enabled, do not limit the number of simultaneous stream jobs for a single HTTP/2 connection. By modifying the stream control window, a remote attacker...

The vulnerability of the Apache HTTP Server’s software allows a remote attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The status of the competition in the modstatus module of the Apache HTTP Server allows malicious actors operating remotely to trigger service failures overflow of buffers in dynamic memory, gain access to confidential information, or execute arbitrary code through a specially crafted request. Thi...