EUVD-2002-1153

Malware in sbrugna...

Fedora: Security Advisory for trafficserver (FEDORA-2022-62b61a8542)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Moodle vulnerable to Exposure of Sensitive Information to an Unauthorized Actor

lib/filelib.php in Moodle through 2.2.11, 2.3.x before 2.3.10, 2.4.x before 2.4.7, and 2.5.x before 2.5.3 does not send "Cache-Control: private" HTTP headers, which allows remote attackers to obtain sensitive information by requesting a file that had been previously retrieved by a caching proxy...

Information Disclosure

Moodle is vulnerable to information disclosure. The library does not send Cache-Control: private headers, allowing a malicious user to send requests for files that were previously retrieved by a caching proxy server...

CVE-2013-4522

lib/filelib.php in Moodle through 2.2.11, 2.3.x before 2.3.10, 2.4.x before 2.4.7, and 2.5.x before 2.5.3 does not send "Cache-Control: private" HTTP headers, which allows remote attackers to obtain sensitive information by requesting a file that had been previously retrieved by a caching proxy...

Design/Logic Flaw

lib/filelib.php in Moodle through 2.2.11, 2.3.x before 2.3.10, 2.4.x before 2.4.7, and 2.5.x before 2.5.3 does not send "Cache-Control: private" HTTP headers, which allows remote attackers to obtain sensitive information by requesting a file that had been previously retrieved by a caching proxy...

CVE-2013-4522

CVE-2013-4522 affects Moodle: lib/filelib.php (various 2.2–2.5 branches) fails to send Cache-Control: private headers, enabling a caching proxy to serve previously retrieved files and potentially expose sensitive information. Impact is information exposure via cached responses; no exploit details...

CVE-2013-4522

lib/filelib.php in Moodle through 2.2.11, 2.3.x before 2.3.10, 2.4.x before 2.4.7, and 2.5.x before 2.5.3 does not send "Cache-Control: private" HTTP headers, which allows remote attackers to obtain sensitive information by requesting a file that had been previously retrieved by a caching proxy...

Squid Unsupported Version Detection

According to its self-reported version number, the installation of Squid running on the remote host is no longer supported. Lack of support implies that no new security patches for the product will be released by the vendor. As a result, it is likely to contain security vulnerabilities. C Tenable...

CVE-2002-1169

The CVE-2002-1169 entry affects IBM Web Traffic Express Caching Proxy Server 3.6 and 4.x prior to 4.0.1.26. The underlying issue is a malformed HTTP request to helpout.exe that omits the HTTP version number, causing ibmproxy.exe to crash and resulting in a denial of service. Connected sources (Op...

IBM Websphere Caching Proxy Server 5.0 2 - Denial of Service

source: https://www.securityfocus.com/bid/10651/info A denial of service vulnerability is reported in the Caching Proxy component bundled with the IBM Websphere Edge Server. It is reported that if the proxy is configured with the JunctionRewrite directive in conjunction with the UseCookie option,...

CVE-2002-1167

IBM Web Traffic Express Caching Proxy Server 3.6 and 4.x prior to 4.0.1.26 is affected by a cross-site scripting (XSS) vulnerability that allows remote attackers to execute scripts as other users via an HTTP GET request. The connected documents confirm the affected product and method but do not p...