9794 matches found
CVE-2021-20272
A flaw was found in privoxy before 3.0.32. An assertion failure could be triggered with a crafted CGI request leading to server crash...
CVE-2021-20272
A flaw was found in privoxy before 3.0.32. An assertion failure could be triggered with a crafted CGI request leading to server crash...
CVE-2021-20272
A flaw was found in privoxy before 3.0.32. An assertion failure could be triggered with a crafted CGI request leading to server crash...
Privoxy 安全漏洞
privoxy is a web proxy with advanced filtering features. An assertion failure vulnerability exists in versions prior to privoxy 3.0.32. An attacker can exploit this vulnerability to crash the server via a specially crafted CGI request...
CVE-2021-20273
A flaw was found in privoxy before 3.0.32. A crash can occur via a crafted CGI request if Privoxy is toggled off...
CVE-2021-20272
A flaw was found in privoxy before 3.0.32. An assertion failure could be triggered with a crafted CGI request leading to server crash...
PT-2021-13864 · Privoxy +4 · Privoxy +4
Name of the Vulnerable Software and Affected Versions: privoxy versions prior to 3.0.32 Description: A flaw was found in the software, allowing an assertion failure to be triggered with a crafted CGI request, leading to a server crash. This issue can be exploited by attackers to cause a denial of...
Denial Of Service (DoS)
privoxy is vulnerable to denial of service DoS attacks. An attacker could cause an application crash via a crafted CGI request with invalid image types resulting in denial of service conditions...
Denial Of Service (DoS)
privoxy is vulnerable to denial of service DoS. The vulnerability exists through an assertion when parsing a CGI request...
CVE-2021-26702
EPrints 3.4.2 exposes a reflected XSS opportunity in the dataset parameter to the cgi/datasetdictionary URI...
CVE-2021-26704
EPrints 3.4.2 allows remote attackers to execute arbitrary commands via crafted input to the verb parameter in a cgi/toolbox/toolbox URI...
CVE-2021-26476
EPrints 3.4.2 allows remote attackers to execute OS commands via crafted LaTeX input to a cgi/cal?year= URI...
CVE-2021-26475
EPrints 3.4.2 exposes a reflected XSS opportunity in the via a cgi/cal URI...
CVE-2021-26475
EPrints 3.4.2 exposes a reflected XSS opportunity in the via a cgi/cal URI...
Input validation
EPrints 3.4.2 allows remote attackers to read arbitrary files and possibly execute commands via crafted LaTeX input to a cgi/latex2png?latex= URI...
Cross site scripting
EPrints 3.4.2 exposes a reflected XSS opportunity in the via a cgi/cal URI...
Input validation
EPrints 3.4.2 allows remote attackers to execute arbitrary commands via crafted input to the verb parameter in a cgi/toolbox/toolbox URI...
CVE-2021-26704
EPrints 3.4.2 allows remote attackers to execute arbitrary commands via crafted input to the verb parameter in a cgi/toolbox/toolbox URI...
CVE-2021-26475
CVE-2021-26475 affects EPrints 3.4.2 and describes a reflected cross-site scripting vulnerability exposed through the cgi/cal URI. The issue is a reflected XSS in the year parameter of the cgi/cal URI, allowing arbitrary JavaScript to be executed in the victim’s browser and potentially leading to...
CVE-2021-26475
EPrints 3.4.2 exposes a reflected XSS opportunity in the via a cgi/cal URI...