4 matches found
CVE-2026-54088
File Browser is a file managing interface for uploading, deleting, previewing, renaming, and editing files within a specified directory. Prior to 2.63.6, the Hook Authentication feature in File Browser allows administrators to delegate login verification to an external shell command. User-supplie...
mod_gnutls: Certificate validation error
Background modgnutls is an extension for Apache’s httpd. It uses the GnuTLS library to provide HTTPS. It supports some protocols and features that modssl does not. Description It was discovered that the authentication hook in modgnutls does not validate client’s certificates even when option...
CVE-2015-2091
The authentication hook mgshookauthz in mod-gnutls 0.5.10 and earlier does not validate client certificates when "GnuTLSClientVerify require" is set, which allows remote attackers to spoof clients via a crafted certificate...
CVE-2015-2091
Summary: CVE-2015-2091 affects mod-gnutls (Apache module) versions = 0.7.3 in the Gentoo advisory). Remediation (supported by sources): upgrade mod-gnutls to patched versions; apply vendor advisories that list updated releases. No exploit details are provided beyond the vulnerability description ...