CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

8 matches found

Tenable Nessus•added 2026/01/28 12:0 a.m.•16 views

NewStart CGSL MAIN 6.06 : httpd Multiple Vulnerabilities (NS-SA-2025-0240)

The remote NewStart CGSL host, running version MAIN 6.06, has httpd packages installed that are affected by multiple vulnerabilities: - Out-of-bounds Write vulnerability in modsed of Apache HTTP Server allows an attacker to overwrite heap memory with possibly attacker provided data. This issue...

9.8CVSS6AI score0.9384EPSS

Exploits15References25

Tenable Nessus•added 2026/01/13 12:0 a.m.•5 views

MiracleLinux 7 : httpd-2.4.6-99.1.0.9.el7.AXS7 (AXSA:2025-10586:06)

The remote MiracleLinux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2025-10586:06 advisory. CVE-2014-8109: modlua: fix LuaAuthzProvider argument handling issue CVE-2019-10092: modproxy: fix limited cross-site scripting in modproxy error pa...

6.1CVSS6.8AI score0.82379EPSS

Exploits4References3

EUVD•added 2025/10/03 8:7 p.m.•3 views

EUVD-2014-7956

Malicious code in bioql PyPI...

4.3CVSS6.8AI score0.11719EPSS

Exploits0References29

OSV•added 2025/07/10 5:48 a.m.•3 views

CLSA-2025-1752126532 httpd: Fix of 2 CVEs

CVE-2014-8109: modlua: fix LuaAuthzProvider argument handling issue - CVE-2019-10092: modproxy: fix limited cross-site scripting in modproxy error page...

6.1CVSS6.6AI score0.82379EPSS

Exploits4References1

Tenable Nessus•added 2015/02/13 12:0 a.m.•52 views

Amazon Linux AMI : httpd24 (ALAS-2015-483)

modlua.c in the modlua module in the Apache HTTP Server 2.3.x and 2.4.x through 2.4.10 does not support an httpd configuration in which the same Lua authorization provider is used with different arguments within different contexts, which allows remote attackers to bypass intended access...

5CVSS6.2AI score0.65044EPSS

Exploits2References5

OSV•added 2014/12/29 11:59 p.m.•5 views

CVE-2014-8109

6.4AI score

Exploits0References33