CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Tenable Nessus•added 2010/09/22 12:0 a.m.•63 views

Ubuntu 6.06 LTS / 8.04 LTS / 9.04 / 9.10 / 10.04 LTS : apache2 vulnerability (USN-990-2)

USN-860-1 introduced a partial workaround to Apache that disabled client initiated TLS renegotiation in order to mitigate CVE-2009-3555. USN-990-1 introduced the new RFC5746 renegotiation extension in openssl, and completely resolves the issue. After updating openssl, an Apache server will allow...

9.8CVSS7.6AI score0.03741EPSS

Exploits14References2

0day.today•added 2010/09/19 12:0 a.m.•18 views

Joomla Component com_restaurantguide Multiple Vulnerabilities

Exploit for php platform in category web applications ============================================================= Joomla Component comrestaurantguide Multiple Vulnerabilities ============================================================= Exploit Title: Joomla Component comrestaurantguide Multipl...

7.1AI score

ALT Linux•added 2010/09/16 12:0 a.m.•47 views

Security fix for the ALT Linux 8 package apache2 version 2.2.16-alt1

Sept. 16, 2010 Aleksey Avdeev 2.2.16-alt1 - 2.2.16 Closes: 23933 - Security fixes CVE-2009-3555, CVE-2010-0408, CVE-2010-0425, CVE-2010-043, CVE-2010-1452, CVE-2010-2068 - Updated messages a2en,dis: added an indication of the file Closes: 20932 - Move %apache2extraavailable/Directorydefault.conf....

10CVSS7AI score0.86822EPSS

Exploits28

ALT Linux•added 2010/09/16 12:0 a.m.•43 views

Security fix for the ALT Linux 10 package apache2 version 2.2.16-alt1

10CVSS7AI score0.86822EPSS

Exploits28

ALT Linux•added 2010/09/16 12:0 a.m.•40 views

Security fix for the ALT Linux 9 package apache2 version 2.2.16-alt1

10CVSS7AI score0.86822EPSS

Exploits28

Exploit DB•added 2010/05/28 12:0 a.m.•32 views

Joomla! Component BF Quiz 1.3.0 - SQL Injection (1)

Exploit Title: Joomla Component BF Quiz SQL Injection Vulnerability Date: 29th May 2010 Author: Valentin Category: webapps/0day Version: 1.3.0 Tested on: Debian, Apache2, MySQL 5 CVE : Code : :::::::::::::::::::::::::::::::::::::: 0x1 :::::::::::::::::::::::::::::::::::::: General Information...

7.4AI score

exploitpack•added 2010/05/28 12:0 a.m.•15 views

Joomla! Component BF Quiz 1.3.0 - SQL Injection (1)

Joomla! Component BF Quiz 1.3.0 - SQL Injection 1 Exploit Title: Joomla Component BF Quiz SQL Injection Vulnerability Date: 29th May 2010 Author: Valentin Category: webapps/0day Version: 1.3.0 Tested on: Debian, Apache2, MySQL 5 CVE : Code : :::::::::::::::::::::::::::::::::::::: 0x1...

0.4AI score

Packet Storm•added 2010/05/14 12:0 a.m.•16 views

Damianov.net Shoutbox 1.0 Cross Site Scripting

Exploit Title: damianov.net Shoutbox XSS Vulnerability Date: 13.05.2010 Author: Valentin Category: webapps/0day Version: 1.0 Tested on: Debian, Apache2, PHP5 CVE : Code : :::::::::::::::::::::::::::::::::::::: 0x1 :::::::::::::::::::::::::::::::::::::: General Information Advisory/Exploit Title =...

7.4AI score

Packet Storm•added 2010/05/03 12:0 a.m.•150 views

Rad User Manager Cross Site Scripting

Exploit Title: Rad User Manager XSS Vulnerabilities Date: 01.05.2010 Author: Valentin Category: webapps/0day Version: 2.90 Tested on: Debian Linux, Apache2, PHP5, MySQL5 CVE : Code : :::::::::::::::::::::::::::::::::::::: 0x1 :::::::::::::::::::::::::::::::::::::: General Information...

7.4AI score

exploitpack•added 2010/04/29 12:0 a.m.•13 views

chCounter - indirect SQL Injection Cross-Site Scripting

chCounter - indirect SQL Injection Cross-Site Scripting Exploit Title: chCounter indirect SQL Injection and XSS Vulnerabilities Date: 29.04.2010 Author: Valentin Category: webapps/0day Version: 3.1.1 Tested on: Debian, Apache2, PHP5, MySQL5 CVE : Code : :::::::::::::::::::::::::::::::::::::: 0x1...

0.3AI score

Tenable Nessus•added 2010/04/27 12:0 a.m.•30 views

openSUSE Security Update : apache2 (openSUSE-SU-2010:0165-1)

When using a multithreaded MPM apache could leak memory of requests handled by a different thread when processing subrequests CVE-2010-0434. Specially crafted requests could crash modproxyajp CVE-2010-0408. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package chec...

Tenable Nessus•added 2010/04/27 12:0 a.m.•25 views

openSUSE Security Update : apache2 (openSUSE-SU-2010:0165-1)

Tenable Nessus•added 2010/04/27 12:0 a.m.•37 views

openSUSE Security Update : apache2 (openSUSE-SU-2010:0165-1)

Tenable Nessus•added 2010/04/19 12:0 a.m.•74 views

Debian DSA-2035-1 : apache2 - multiple issues

Two issues have been found in the Apache HTTPD web server : - CVE-2010-0408 modproxyajp would return the wrong status code if it encountered an error, causing a backend server to be put into an error state until the retry timeout expired. A remote attacker could send malicious requests to trigger...

Debian•added 2010/04/17 8:58 p.m.•36 views

[SECURITY] [DSA-2035-1] New apache2 packages fix several issues

------------------------------------------------------------------------ Debian Security Advisory DSA-2035-1 [email protected] http://www.debian.org/security/ Stefan Fritsch April 17, 2010 http://www.debian.org/security/faq -...

5CVSS10AI score0.32487EPSS

Exploits2

exploitpack•added 2010/03/28 12:0 a.m.•14 views

Devana - SQL Injection

Devana - SQL Injection Exploit Title: Devana SQL Injection vulnerability Date: 28.03.2010 Author: Valentin Category: webapps/0day Version: Tested on: Debian lenny, Apache2, MySQL5 CVE : Code : :: General information :: Devana SQL injection vulnerability detected :: by Valentin Hoebel ::...

0.4AI score

0day.today•added 2010/03/28 12:0 a.m.•42 views

Devana v1.6.6 SQL Injection vulnerability

Exploit for php platform in category web applications ========================================= Devana v1.6.6 SQL Injection vulnerability ========================================= Exploit Title: Devana SQL Injection vulnerability Date: 28.03.2010 Author: Valentin Category: webapps/0day Version:...

7.1AI score