Lucene search
K

7 matches found

OSV
OSV
added 2026/05/18 8:56 a.m.64 views

BIT-TOMCAT-2020-1938

When using the Apache JServ Protocol AJP, care must be taken when trusting incoming connections to Apache Tomcat. Tomcat treats AJP connections as having higher trust than, for example, a similar HTTP connection. If such connections are available to an attacker, they can be exploited in ways that...

9.8CVSS7.7AI score0.9927EPSS
Exploits45References53
NCSC
NCSC
added 2023/09/14 12:0 a.m.40 views

Vulnerabilities fixed in Cisco IOS XR

Cisco has fixed vulnerabilities in IOS XR. A unauthenticated malicious party could exploit the vulnerabilities to cause a denial-of-service, or to bypass existing ACLs bypassing them by sending specially prepared network traffic. Cisco has also fixed vulnerabilities that allow a local,...

7.8CVSS7.8AI score0.00545EPSS
Exploits1
Wordfence Blog
Wordfence Blog
added 2023/09/13 3:15 p.m.15 views

Malware Scanning: An Essential Layer of Website Security

Wordfence recently launched Wordfence CLI, a high performance command line malware scanner, which makes use of our extensive set of malware detection signatures to rapidly scan file systems for infections. In recent years, the WordPress community has seen a shift in emphasis towards prevention,...

7.7AI score
Exploits0
Cisco
Cisco
added 2023/04/05 4:0 p.m.11 views

Cisco Meraki Local Status Page Configuration Hardening

Cisco Meraki devices implement a Local Status Page LSP feature. This is a web-based interface that is primarily intended to provide administrators with the ability to apply configuration settings that are required for the device to connect to the Cisco Meraki Dashboard, perform local...

7.5AI score
Exploits0References1
Mageia
Mageia
added 2020/03/10 7:4 p.m.265 views

Updated tomcat packages fix security vulnerabilities

The updated packages fix security vulnerabilities: The refactoring present in Apache Tomcat 9.0.28 to 9.0.30, 8.5.48 to 8.5.50 and 7.0.98 to 7.0.99 introduced a regression. The result of the regression was that invalid Transfer-Encoding headers were incorrectly processed leading to a possibility ...

9.8CVSS8.9AI score0.9927EPSS
Exploits45References3
Prion
Prion
added 2020/02/24 10:15 p.m.92 views

Default configuration

When using the Apache JServ Protocol AJP, care must be taken when trusting incoming connections to Apache Tomcat. Tomcat treats AJP connections as having higher trust than, for example, a similar HTTP connection. If such connections are available to an attacker, they can be exploited in ways that...

7.5CVSS9.7AI score0.9927EPSS
Exploits45References51Affected Software19
securityvulns
securityvulns
added 2013/09/09 12:0 a.m.74 views

ReviewBoard Vulnerabilities

ReviewBoard www.reviewboard.org aims to 'take the pain out of code review'. Integration with source control makes it imperative to maintain proper protections on this server. I have worked with the developers to resolve multiple XSS conditions and harden web server configurations. The XSS...

0.6AI score
Exploits0
Rows per page
Query Builder