Lucene search
+L

28 matches found

NVD
NVD
added 2010/12/06 8:12 p.m.27 views

CVE-2010-2761

The multipartinit function in 1 CGI.pm before 3.50 and 2 Simple.pm in CGI::Simple 1.112 and earlier uses a hardcoded value of the MIME boundary string in multipart/x-mixed-replace content, which allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks v...

4.3CVSS9.1AI score0.02713EPSS
Exploits0References35
Prion
Prion
added 2010/11/05 5:0 p.m.15 views

Crlf injection

CRLF injection vulnerability in TransWARE Active! mail 6 build 6.40.010047750 and earlier allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via unspecified vectors...

4.3CVSS7.4AI score0.01104EPSS
Exploits0References5Affected Software1
OpenVAS
OpenVAS
added 2010/10/19 12:0 a.m.43 views

RedHat Update for java-1.6.0-openjdk RHSA-2010:0768-01

Check for the Version of java-1.6.0-openjdk OpenVAS Vulnerability Test RedHat Update for java-1.6.0-openjdk RHSA-2010:0768-01 Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or...

10CVSS6.9AI score0.87264EPSS
Exploits15References2
CVE
CVE
added 2009/11/10 7:0 p.m.99 views

CVE-2009-2820

CVE-2009-2820 affects CUPS (web interface) prior to 1.4.2 on macOS X

4.3CVSS6.8AI score0.0578EPSS
Exploits5References15Affected Software1
Tenable Nessus
Tenable Nessus
added 2007/10/30 12:0 a.m.46 views

Debian DSA-1396-1 : iceweasel - several vulnerabilities

Several remote vulnerabilities have been discovered in the Iceweasel web browser, an unbranded version of the Firefox browser. The Common Vulnerabilities and Exposures project identifies the following problems : - CVE-2007-1095 Michal Zalewski discovered that the unload event handler had access t...

9.3CVSS8.5AI score0.12736EPSS
Exploits4References18
Tenable Nessus
Tenable Nessus
added 2007/10/25 12:0 a.m.34 views

FreeBSD : drupal --- multiple vulnerabilities (9c00d446-8208-11dc-9283-0016179b2dd5)

The Drupal Project reports : In some circumstances Drupal allows user-supplied data to become part of response headers. As this user-supplied data is not always properly escaped, this can be exploited by malicious users to execute HTTP response splitting attacks which may lead to a variety of...

6.8CVSS5.9AI score0.03771EPSS
Exploits0References11
Tenable Nessus
Tenable Nessus
added 2007/08/03 12:0 a.m.35 views

FreeBSD : joomla -- multiple vulnerabilities (4872d9a7-4128-11dc-bdb0-0016179b2dd5)

A Secunia Advisory reports : joomla can be exploited to conduct session fixation attacks, cross-site scripting attacks or HTTP response splitting attacks. Certain unspecified input passed in comsearch, comcontent and modlogin is not properly sanitised before being returned to a user. This can be...

9.3CVSS6AI score0.03758EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2006/05/13 12:0 a.m.14 views

FreeBSD : drupal -- multiple vulnerabilities (faca0843-6281-11da-8630-00123ffe8333)

Secunia reports : Some vulnerabilities have been reported in Drupal, which can be exploited by malicious people to bypass certain security restrictions, and conduct script insertion and HTTP response splitting attacks. 1 An input validation error in the filtering of HTML code can be exploited to...

6AI score
Exploits0References4
Rows per page
Query Builder