security flaw

Unspecified vulnerability in PHP before 5.2.1 allows attackers to "clobber" certain super-global variables via unspecified vectors...

DEBIAN-CVE-2007-0106

Cross-site scripting XSS vulnerability in the CSRF protection scheme in WordPress before 2.0.6 allows remote attackers to inject arbitrary web script or HTML via a CSRF attack with an invalid token and quote characters or HTML tags in URL variable names, which are not properly handled when...

VulnCheck KEV: CVE-2004-1464

Cisco IOS contains an unspecified vulnerability that may block further telnet, reverse telnet, Remote Shell RSH, Secure Shell SSH, and in some cases, Hypertext Transport Protocol HTTP access to the Cisco device...

security flaw

HTTP response smuggling vulnerability in Mozilla Firefox and Thunderbird before 1.5.0.4, when used with certain proxy servers, allows remote attackers to cause Firefox to interpret certain responses as if they were responses from two different sites via 1 invalid HTTP response headers with spaces...

DEBIAN-CVE-2006-1989

Buffer overflow in the getdatabase function in the HTTP client in Freshclam in ClamAV 0.80 to 0.88.1 might allow remote web servers to execute arbitrary code via long HTTP headers...

Ruby http/xmlrpc server DoS

The HTTP/XMLRPC server in Ruby before 1.8.2 uses blocking sockets, which allows attackers to cause a denial of service blocked connections via a large amount of data...

Secure HyperText Transfer Protocol (S-HTTP) Detection

Detection of services supporting the Secure HyperText Transfer Protocol S-HTTP. SPDX-FileCopyrightText: 2005 Michel Arboi Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only nb: Vulnerabili...

[SECURITY] [DSA 770-1] New gopher packages fix insecure temporary file creation

-------------------------------------------------------------------------- Debian Security Advisory DSA 770-1 [email protected] http://www.debian.org/security/ Martin Schulze July 29th, 2005 http://www.debian.org/security/faq -...

[SECURITY] [DSA 770-1] New gopher packages fix insecure temporary file creation

-------------------------------------------------------------------------- Debian Security Advisory DSA 770-1 [email protected] http://www.debian.org/security/ Martin Schulze July 29th, 2005 http://www.debian.org/security/faq -...

security flaw

Squid 2.5.STABLE9 and earlier does not trigger a fatal error when it identifies missing or invalid ACLs in the httpaccess configuration, which could lead to less restrictive ACLs than intended by the administrator...

security flaw

Buffer overflow in the exifreaddata function in PHP before 4.3.10 and PHP 5.x up to 5.0.2 allows remote attackers to execute arbitrary code via a long section name in an image file...

security flaw

The HTTP dissector in Ethereal 0.10.1 through 0.10.7 allows remote attackers to cause a denial of service application crash via a certain packet that causes the dissector to access previously-freed memory...

PT-1999-1782 · Lynx · Lynx

Name of the Vulnerable Software and Affected Versions: Lynx versions 2.x Description: The issue arises from Lynx not properly distinguishing between internal and external HTML. This may allow a local attacker to read a "secure" hidden form value from a temporary file and craft a LYNXOPTIONS: URL...

ROS-2-2149

2.2149 Vulnerability in Mozilla Thunderbird email client CVE-2021-29970, CVE-2021-30547, CVE-2021-29976, CVE-2021-29969. 1. Vulnerability Description: CVE-2021-29970 Vulnerability in Mozilla Thunderbird email client, related to HTML content processing error. Exploitation of the vulnerability coul...

PT-2009-6678 · Qt +3 · Libqt4-Opengl-Dev +35

Name of the Vulnerable Software and Affected Versions: Apple Safari versions prior to 4.0 iPhone OS versions 1.0 through 2.2.1 iPhone OS for iPod touch versions 1.1 through 2.2.1 kdelibs-3.1.3 libqt4-sql-sqlite2 affected versions not specified libqt4-script affected versions not specified...