Lucene search
K

176 matches found

CNVD
CNVD
added 2016/04/24 12:0 a.m.2 views

Squid HTTP Caching Proxy Buffer Overflow Vulnerability (CNVD-2016-02510)

Squid is a suite of proxy server and web caching server software. Squid suffers from a buffer overflow vulnerability that could be exploited by a remote attacker to submit a special request, crash an application, or execute arbitrary code...

4.3CVSS9.9AI score0.14359EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2016/02/03 12:0 a.m.22 views

IBM WebSphere Application Server Information Disclosure Vulnerability (Feb 2016)

IBM WebSphere Application Server is prone to a remote information disclosure vulnerability SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE ...

4CVSS6AI score0.01103EPSS
Exploits0References2
Prion
Prion
added 2015/12/15 5:59 a.m.17 views

Information disclosure

The Edge Component Caching Proxy in IBM WebSphere Application Server WAS 8.0 before 8.0.0.12 and 8.5 before 8.5.5.8 does not properly encrypt data, which allows remote authenticated users to obtain sensitive information via unspecified vectors...

4CVSS6AI score0.01103EPSS
Exploits0References3Affected Software1
ATTACKERKB
ATTACKERKB
added 2015/12/15 5:59 a.m.3 views

CVE-2015-5004

The Edge Component Caching Proxy in IBM WebSphere Application Server WAS 8.0 before 8.0.0.12 and 8.5 before 8.5.5.8 does not properly encrypt data, which allows remote authenticated users to obtain sensitive information via unspecified vectors...

4CVSS5.5AI score0.01103EPSS
Exploits0References4
Cvelist
Cvelist
added 2015/12/15 2:0 a.m.21 views

CVE-2015-5004

The Edge Component Caching Proxy in IBM WebSphere Application Server WAS 8.0 before 8.0.0.12 and 8.5 before 8.5.5.8 does not properly encrypt data, which allows remote authenticated users to obtain sensitive information via unspecified vectors...

5.5AI score0.01103EPSS
Exploits0References3
CVE
CVE
added 2015/12/15 2:0 a.m.58 views

CVE-2015-5004

CVE-2015-5004 affects IBM WebSphere Application Server Edge Component Caching Proxy. The vulnerability could allow a remote authenticated attacker to obtain sensitive information due to improper encryption. Affected are IBM WebSphere Application Server versions 8.0 (pre-8.0.0.12) and 8.5 (pre-8.5...

4CVSS5.6AI score0.01103EPSS
Exploits0References3Affected Software1
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.14 views

IBM Websphere Edge Server 3.69/4.0 HTTP Header Injection Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/6001/info A vulnerability has been discovered in the Caching Proxy component bundled with the IBM Websphere Edge Server. Due to insufficient sanitization of user-supplied input it is possible for an attacker to construct ...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.12 views

IBM Websphere Caching Proxy 3.6/4.0 - Denial of Service Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/6002/info A vulnerability has been reported in the Caching Proxy component bundled with IBM WebSphere Edge Server. The vulnerability is due to inadequate checks when processing HTTP headers. An attacker can exploit this...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.15 views

IBM WebSphere Caching Proxy Server 5.0 2 Denial of Service Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/10651/info A denial of service vulnerability is reported in the Caching Proxy component bundled with the IBM Websphere Edge Server. It is reported that if the proxy is configured with the JunctionRewrite directive in...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.19 views

IBM Websphere Edge Server 3.6/4.0 Cross Site Scripting Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/6000/info A vulnerability has been discoverered in the Caching Proxy component bundled with the IBM Websphere Edge Server. It has been reported that the Caching Proxy is vulnerable to cross site scripting attacks. Due to...

7.1AI score
Exploits0
NVD
NVD
added 2013/11/26 5:25 a.m.47 views

CVE-2013-4522

lib/filelib.php in Moodle through 2.2.11, 2.3.x before 2.3.10, 2.4.x before 2.4.7, and 2.5.x before 2.5.3 does not send "Cache-Control: private" HTTP headers, which allows remote attackers to obtain sensitive information by requesting a file that had been previously retrieved by a caching proxy...

5CVSS6.1AI score0.01538EPSS
Exploits1References3
Prion
Prion
added 2013/11/26 5:25 a.m.14 views

Design/Logic Flaw

lib/filelib.php in Moodle through 2.2.11, 2.3.x before 2.3.10, 2.4.x before 2.4.7, and 2.5.x before 2.5.3 does not send "Cache-Control: private" HTTP headers, which allows remote attackers to obtain sensitive information by requesting a file that had been previously retrieved by a caching proxy...

5CVSS6.7AI score0.01538EPSS
Exploits1References3Affected Software1
OSV
OSV
added 2013/11/26 5:25 a.m.5 views

UBUNTU-CVE-2013-4522

lib/filelib.php in Moodle through 2.2.11, 2.3.x before 2.3.10, 2.4.x before 2.4.7, and 2.5.x before 2.5.3 does not send "Cache-Control: private" HTTP headers, which allows remote attackers to obtain sensitive information by requesting a file that had been previously retrieved by a caching proxy...

5CVSS5.8AI score0.01538EPSS
Exploits1References5
CVE
CVE
added 2013/11/26 2:0 a.m.54 views

CVE-2013-4522

CVE-2013-4522 affects Moodle: lib/filelib.php (various 2.2–2.5 branches) fails to send Cache-Control: private headers, enabling a caching proxy to serve previously retrieved files and potentially expose sensitive information. Impact is information exposure via cached responses; no exploit details...

5CVSS6.2AI score0.01538EPSS
Exploits1References3Affected Software1
Cvelist
Cvelist
added 2013/11/26 2:0 a.m.32 views

CVE-2013-4522

lib/filelib.php in Moodle through 2.2.11, 2.3.x before 2.3.10, 2.4.x before 2.4.7, and 2.5.x before 2.5.3 does not send "Cache-Control: private" HTTP headers, which allows remote attackers to obtain sensitive information by requesting a file that had been previously retrieved by a caching proxy...

6AI score0.01538EPSS
Exploits1References3
securityvulns
securityvulns
added 2012/07/09 12:0 a.m.48 views

IBM Edge Components Caching Proxy crossite scripting

Crossite scripting on non-existent page...

6.8CVSS1.7AI score0.03278EPSS
Exploits0References1Affected Software1
securityvulns
securityvulns
added 2012/07/09 12:0 a.m.54 views

IBM Edge Components Caching Proxy XSS Followup

Rapid7 probably found this vulnerability on October 23 2002 http://seclists.org/fulldisclosure/2002/Oct/330 and its called CVE- 2002-1167 They don't show the output and specify it is error message but the injection method is the same. The update is it works on IBM Edge Components Caching Proxy -...

Exploits0
Packet Storm
Packet Storm
added 2012/06/30 12:0 a.m.37 views

IBM Edge Components Caching Proxy Cross Site Scripting

Rapid7 probably found this vulnerability on October 23 2002 http://seclists.org/fulldisclosure/2002/Oct/330 and its called CVE- 2002-1167 They don't show the output and specify it is error message but the injection method is the same. The update is it works on IBM Edge Components Caching Proxy -...

0.4AI score
Exploits0
OpenVAS
OpenVAS
added 2012/02/03 12:0 a.m.20 views

Fedora Update for polipo FEDORA-2012-0849

Check for the Version of polipo OpenVAS Vulnerability Test Fedora Update for polipo FEDORA-2012-0849 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the term...

7.5AI score0.11055EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2012/01/31 12:0 a.m.54 views

Squid Unsupported Version Detection

According to its self-reported version number, the installation of Squid running on the remote host is no longer supported. Lack of support implies that no new security patches for the product will be released by the vendor. As a result, it is likely to contain security vulnerabilities. C Tenable...

5.6AI score
Exploits0References2
Rows per page
Query Builder