Lucene search
K

9794 matches found

Cvelist
Cvelist
added 2021/03/09 1:10 p.m.18 views

CVE-2021-20272

A flaw was found in privoxy before 3.0.32. An assertion failure could be triggered with a crafted CGI request leading to server crash...

7.4AI score0.02108EPSS
Exploits0References4
Debian CVE
Debian CVE
added 2021/03/09 1:10 p.m.19 views

CVE-2021-20272

A flaw was found in privoxy before 3.0.32. An assertion failure could be triggered with a crafted CGI request leading to server crash...

7.5CVSS7.2AI score0.02108EPSS
Exploits0
AlpineLinux
AlpineLinux
added 2021/03/09 1:10 p.m.32 views

CVE-2021-20272

A flaw was found in privoxy before 3.0.32. An assertion failure could be triggered with a crafted CGI request leading to server crash...

7.5CVSS7.2AI score0.02108EPSS
Exploits0
CNNVD
CNNVD
added 2021/03/09 12:0 a.m.5 views

Privoxy 安全漏洞

privoxy is a web proxy with advanced filtering features. An assertion failure vulnerability exists in versions prior to privoxy 3.0.32. An attacker can exploit this vulnerability to crash the server via a specially crafted CGI request...

7.5CVSS5.6AI score0.02108EPSS
Exploits0References10
UbuntuCve
UbuntuCve
added 2021/03/09 12:0 a.m.26 views

CVE-2021-20273

A flaw was found in privoxy before 3.0.32. A crash can occur via a crafted CGI request if Privoxy is toggled off...

7.5CVSS7AI score0.01953EPSS
Exploits0References4
UbuntuCve
UbuntuCve
added 2021/03/09 12:0 a.m.21 views

CVE-2021-20272

A flaw was found in privoxy before 3.0.32. An assertion failure could be triggered with a crafted CGI request leading to server crash...

7.5CVSS7AI score0.02108EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2021/03/09 12:0 a.m.5 views

PT-2021-13864 · Privoxy +4 · Privoxy +4

Name of the Vulnerable Software and Affected Versions: privoxy versions prior to 3.0.32 Description: A flaw was found in the software, allowing an assertion failure to be triggered with a crafted CGI request, leading to a server crash. This issue can be exploited by attackers to cause a denial of...

7.8CVSS7.5AI score0.02355EPSS
Exploits0References76
Veracode
Veracode
added 2021/03/06 11:6 p.m.18 views

Denial Of Service (DoS)

privoxy is vulnerable to denial of service DoS attacks. An attacker could cause an application crash via a crafted CGI request with invalid image types resulting in denial of service conditions...

7.5CVSS3.2AI score0.01953EPSS
Exploits0References6Affected Software1
Veracode
Veracode
added 2021/03/06 11:6 p.m.21 views

Denial Of Service (DoS)

privoxy is vulnerable to denial of service DoS. The vulnerability exists through an assertion when parsing a CGI request...

7.5CVSS3.8AI score0.02108EPSS
Exploits0References5Affected Software1
NVD
NVD
added 2021/03/01 10:15 p.m.14 views

CVE-2021-26702

EPrints 3.4.2 exposes a reflected XSS opportunity in the dataset parameter to the cgi/datasetdictionary URI...

6.1CVSS0.02663EPSS
Exploits1References2
OSV
OSV
added 2021/03/01 10:15 p.m.13 views

CVE-2021-26704

EPrints 3.4.2 allows remote attackers to execute arbitrary commands via crafted input to the verb parameter in a cgi/toolbox/toolbox URI...

8.8CVSS7.9AI score
Exploits0References3
OSV
OSV
added 2021/03/01 10:15 p.m.18 views

CVE-2021-26476

EPrints 3.4.2 allows remote attackers to execute OS commands via crafted LaTeX input to a cgi/cal?year= URI...

9.8CVSS7.5AI score
Exploits0References2
NVD
NVD
added 2021/03/01 10:15 p.m.14 views

CVE-2021-26475

EPrints 3.4.2 exposes a reflected XSS opportunity in the via a cgi/cal URI...

6.1CVSS0.06115EPSS
Exploits1References2
OSV
OSV
added 2021/03/01 10:15 p.m.9 views

CVE-2021-26475

EPrints 3.4.2 exposes a reflected XSS opportunity in the via a cgi/cal URI...

6.1CVSS5.9AI score
Exploits0References2
Prion
Prion
added 2021/03/01 10:15 p.m.11 views

Input validation

EPrints 3.4.2 allows remote attackers to read arbitrary files and possibly execute commands via crafted LaTeX input to a cgi/latex2png?latex= URI...

6.8CVSS9.5AI score0.04181EPSS
Exploits1References3Affected Software1
Prion
Prion
added 2021/03/01 10:15 p.m.14 views

Cross site scripting

EPrints 3.4.2 exposes a reflected XSS opportunity in the via a cgi/cal URI...

4.3CVSS5.9AI score0.06115EPSS
Exploits1References2Affected Software1
Prion
Prion
added 2021/03/01 10:15 p.m.18 views

Input validation

EPrints 3.4.2 allows remote attackers to execute arbitrary commands via crafted input to the verb parameter in a cgi/toolbox/toolbox URI...

6.5CVSS8.9AI score0.03072EPSS
Exploits1References3Affected Software1
Cvelist
Cvelist
added 2021/03/01 9:2 p.m.11 views

CVE-2021-26704

EPrints 3.4.2 allows remote attackers to execute arbitrary commands via crafted input to the verb parameter in a cgi/toolbox/toolbox URI...

9.2AI score0.03072EPSS
Exploits1References3
CVE
CVE
added 2021/03/01 9:1 p.m.83 views

CVE-2021-26475

CVE-2021-26475 affects EPrints 3.4.2 and describes a reflected cross-site scripting vulnerability exposed through the cgi/cal URI. The issue is a reflected XSS in the year parameter of the cgi/cal URI, allowing arbitrary JavaScript to be executed in the victim’s browser and potentially leading to...

6.1CVSS6.1AI score0.06115EPSS
Exploits1References2Affected Software1
Cvelist
Cvelist
added 2021/03/01 9:1 p.m.23 views

CVE-2021-26475

EPrints 3.4.2 exposes a reflected XSS opportunity in the via a cgi/cal URI...

6.1AI score0.06115EPSS
Exploits1References2
Rows per page
Query Builder