Cherokee HTTPD <=0.5 - Cross-Site Scripting

Cherokee HTTPD 0.5 and earlier contains a cross-site scripting vulnerability which allows remote attackers to inject arbitrary web script or HTML via a malformed request that generates an HTTP 400 error, which is not properly handled when the error message is generated. id: CVE-2006-1681 info:...

EUVD-2004-2163

Malware in sbrugna...

EUVD-2001-1413

Malware in sbrugna...

EUVD-2019-1960

Malware in sbrugna...

EUVD-2001-1412

Malware in sbrugna...

EUVD-2014-4590

Malware in sbrugna...

EUVD-2019-11337

Malware in sbrugna...

EUVD-2011-2181

Malware in sbrugna...

EUVD-2009-3873

Malware in sbrugna...

EUVD-2009-4456

Malware in sbrugna...

EUVD-2004-1938

Malware in sbrugna...

EUVD-2011-2182

Malware in sbrugna...

EUVD-2004-1095

Malware in sbrugna...

EUVD-2020-5127

Malware in sbrugna...

EUVD-2006-1682

Malware in sbrugna...

EUVD-2003-1188

Malware in sbrugna...

EUVD-2019-11335

Malware in sbrugna...

canTot

This is a Python-based CLI framework called "canTot" that is designed for CAN Bus hacking and exploitation. It is similar to an exploit framework but focused on known CAN Bus vulnerabilities or "fun CAN Bus hacks." The framework is made up of several modules, each with its own specific...

SUSE CVE-2006-1681

Cross-site scripting XSS vulnerability in Cherokee HTTPD 0.5 and earlier allows remote attackers to inject arbitrary web script or HTML via a malformed request that generates an HTTP 400 error, which is not properly handled when the error message is generated...

CVE-2019-20800

In Cherokee through 1.2.104, remote attackers can trigger an out-of-bounds write in cherokeehandlercgiaddenvpair in handlercgi.c by sending many request headers, as demonstrated by a GET request with many "Host: 127.0.0.1" headers...