Lucene search
K

13 matches found

EUVD
EUVD
added 2026/05/07 3:46 a.m.6 views

EUVD-2026-26712

Bandit is vulnerable to CL.CL request smuggling via unrejected duplicate Content-Length header...

6.3CVSS5.8AI score0.00518EPSS
Exploits0References5
SUSE CVE
SUSE CVE
added 2026/04/02 8:37 a.m.7 views

SUSE CVE-2026-34441

cpp-httplib is a C++11 single-file header-only cross platform HTTP/HTTPS library. Prior to version 0.40.0, cpp-httplib is vulnerable to HTTP Request Smuggling. The server's static file handler serves GET responses without consuming the request body. On HTTP/1.1 keep-alive connections, the unread...

4.8CVSS5.7AI score0.00196EPSS
Exploits1References3
UbuntuCve
UbuntuCve
added 2026/03/31 10:16 p.m.6 views

CVE-2026-34441

cpp-httplib is a C++11 single-file header-only cross platform HTTP/HTTPS library. Prior to version 0.40.0, cpp-httplib is vulnerable to HTTP Request Smuggling. The server's static file handler serves GET responses without consuming the request body. On HTTP/1.1 keep-alive connections, the unread...

6.5CVSS5.7AI score0.00196EPSS
Exploits1References3
Positive Technologies
Positive Technologies
added 2026/03/31 12:0 a.m.5 views

PT-2026-29373

Name of the Vulnerable Software and Affected Versions cpp-httplib versions prior to 0.40.0 Description cpp-httplib is vulnerable to HTTP Request Smuggling. The server's static file handler serves GET responses without consuming the request body. On HTTP/1.1 keep-alive connections, the unread body...

7.4CVSS5.9AI score0.00262EPSS
Exploits2References14
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2021-1158

Malware in sbrugna...

7.5CVSS6.1AI score0.01599EPSS
Exploits0References12
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2019-15312

Malware in sbrugna...

7.5CVSS7.6AI score0.0505EPSS
Exploits0References8
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2002-1921

Malware in sbrugna...

5CVSS6.4AI score0.01697EPSS
Exploits1References5
RedhatCVE
RedhatCVE
added 2025/05/21 8:27 p.m.7 views

CVE-2002-1942

Imatix Xitami 2.5 b5 does not properly terminate certain Keep-Alive connections that have been broken or closed early, which allows remote attackers to cause a denial of service crash via a large number of concurrent sessions...

5CVSS7.2AI score0.01697EPSS
Exploits1References1
SUSE CVE
SUSE CVE
added 2023/02/15 4:17 a.m.6 views

SUSE CVE-2019-5739

Keep-alive HTTP and HTTPS connections can remain open and inactive for up to 2 minutes in Node.js 6.16.0 and earlier. Node.js 8.0.0 introduced a dedicated server.keepAliveTimeout which defaults to 5 seconds. The behavior in Node.js 6.16.0 and earlier is a potential Denial of Service DoS attack...

5.3CVSS7.8AI score0.0505EPSS
Exploits0References7
Cvelist
Cvelist
added 2022/06/03 2:40 p.m.32 views

CVE-2022-31028 Possible DDOS by establishing keep-alive connections with anonymous HTTP clients in MinIO

MinIO is a multi-cloud object storage solution. Starting with version RELEASE.2019-09-25T18-25-51Z and ending with version RELEASE.2022-06-02T02-11-04Z, MinIO is vulnerable to an unending go-routine buildup while keeping connections established due to HTTP clients not closing the connections...

7.5CVSS7.7AI score0.02843EPSS
Exploits1References4
UbuntuCve
UbuntuCve
added 2021/05/11 5:15 p.m.40 views

CVE-2021-29509

Puma is a concurrent HTTP 1.1 server for Ruby/Rack applications. The fix for CVE-2019-16770 was incomplete. The original fix only protected existing connections that had already been accepted from having their requests starved by greedy persistent-connections saturating all threads in the same...

7.5CVSS6.5AI score0.01599EPSS
Exploits0References4
RubySec
RubySec
added 2021/05/11 12:0 a.m.59 views

Keepalive Connections Causing Denial Of Service in puma

Impact The fix for CVE-2019-16770 was incomplete. The original fix only protected existing connections that had already been accepted from having their requests starved by greedy persistent-connections saturating all threads in the same process. However, new connections may still be starved by...

7.5CVSS7.3AI score0.0196EPSS
Exploits0References1Affected Software1
Kitploit
Kitploit
added 2015/02/07 8:1 p.m.17 views

Dirs3arch v0.3.0 - HTTP(S) Directory/File Brute Forcer

dirs3arch is a simple command line tool designed to brute force hidden directories and files in websites. It's written in python3 3 and all thirdparty libraries are included. Operating Systems supported Windows XP/7/8 GNU/Linux MacOSX Features Multithreaded Keep alive connections Support for...

7.6AI score
Exploits0References1
Rows per page
Query Builder