6441 matches found
Debian dla-4660 : libnginx-mod-http-auth-pam - security update
The remote Debian 11 host has packages installed that are affected by multiple vulnerabilities as referenced in the dla-4660 advisory. ------------------------------------------------------------------------- Debian LTS Advisory DLA-4660-1 [email protected]...
CVE-2026-58446
Presenton before 0.8.8-beta bundles an MCP server that, on server/Docker deployments configured with session authentication AUTHUSERNAME/AUTHPASSWORD, is reachable unauthenticated at /mcp because the nginx front-end does not apply the authrequest gate to that path and the MCP server auto-mints a...
[SECURITY] [DSA 6374-1] nginx security update
------------------------------------------------------------------------- Debian Security Advisory DSA-6374-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso June 30, 2026 https://www.debian.org/security/faq -...
CVE-2026-58446
CVE-2026-58446 affects Presenton before 0.8.8-beta. The MCP server deployed with session authentication in server/Docker setups is reachable unauthenticated at /mcp because the nginx front-end does not apply the auth gate to that path, and the MCP server auto-mints a valid internal session token ...
The vulnerability of the ngx_http_charset_module module in NGINX Plus and NGINX Open Source web servers allows a perpetrator to gain unauthorized access to protected information or cause service failures.
The vulnerability of the ngxhttpcharsetmodule module in NGINX Plus and NGINX Open Source web servers is related to the execution of operations outside of the buffer in memory. Exploiting this vulnerability can allow a malicious actor to gain unauthorized access to protected information or cause...
Debian dsa-6374 : libnginx-mod-http-geoip - security update
The remote Debian 13 host has packages installed that are affected by multiple vulnerabilities as referenced in the dsa-6374 advisory. - ------------------------------------------------------------------------- Debian Security Advisory DSA-6374-1 [email protected] https://www.debian.org/securit...
The vulnerabilities of the ngx_http_proxy_v2_module and ngx_http_grpc_module modules in NGINX Plus and NGINX Open Source web servers allow attackers to execute arbitrary code or cause service interruptions.
The vulnerability of the ngxhttpproxyv2module and ngxhttpgrpcmodule modules in NGINX Plus and NGINX Open Source web servers stems from the execution of operations outside of the buffer in memory. Exploiting this vulnerability allows a remote attacker to execute arbitrary code or cause service...
[SECURITY] Fedora 44 Update: nginx-mod-js-challenge-0^20230517.gitda6852d-9.fc44
Simple JavaScript proof-of-work based access for Nginx with virtually no over head...
[SECURITY] Fedora 44 Update: nginx-mod-naxsi-1.6-19.fc44
naxsi is an nginx module that provides score based Web Application Firewall WAF abilities in a highly granular fashion...
[SECURITY] Fedora 44 Update: nginx-mod-modsecurity-1.0.4-12.fc44
The ModSecurity-nginx connector is the connection point between nginx and libmodsecurity ModSecurity v3. Said another way, this project provides a communication channel between nginx and libmodsecurity. This connector is required to use LibModSecurity with nginx. The ModSecurity-nginx connector...
[SECURITY] Fedora 44 Update: nginx-mod-brotli-1.0.0~rc-11.fc44
NGINX module for Brotli compression...
[SECURITY] Fedora 44 Update: nginx-mod-fancyindex-0.6.0-6.fc44
The Fancy Index module makes possible the generation of file listings, like the built-in autoindex module does, but adding a touch of style. This is possible because the module allows a certain degree of customization of the generated content: Custom headers. Either local or stored remotely. Cust...
[SECURITY] Fedora 44 Update: nginx-mod-headers-more-0.39-11.fc44
This module allows adding, setting, or clearing specified input/output header s. This is an enhanced version of the standard headers module because it provides more utilities like resetting or clearing "builtin headers" like Content-Type, Content-Length, and Server...
[SECURITY] Fedora 44 Update: nginx-mod-vts-0.2.4-11.fc44
Nginx virtual host traffic status module...
[SECURITY] Fedora 44 Update: nginx-1.30.3-1.fc44
Nginx is a web server and a reverse proxy server for HTTP, SMTP, POP3 and IMAP protocols, with a strong focus on high concurrency, performance and low memory usage...
[SECURITY] Fedora 43 Update: nginx-mod-naxsi-1.6-19.fc43
naxsi is an nginx module that provides score based Web Application Firewall WAF abilities in a highly granular fashion...
[SECURITY] Fedora 43 Update: nginx-mod-vts-0.2.4-11.fc43
Nginx virtual host traffic status module...
[SECURITY] Fedora 43 Update: nginx-1.30.3-1.fc43
Nginx is a web server and a reverse proxy server for HTTP, SMTP, POP3 and IMAP protocols, with a strong focus on high concurrency, performance and low memory usage...
[SECURITY] Fedora 43 Update: nginx-mod-brotli-1.0.0~rc-11.fc43
NGINX module for Brotli compression...
[SECURITY] Fedora 43 Update: nginx-mod-modsecurity-1.0.4-12.fc43
The ModSecurity-nginx connector is the connection point between nginx and libmodsecurity ModSecurity v3. Said another way, this project provides a communication channel between nginx and libmodsecurity. This connector is required to use LibModSecurity with nginx. The ModSecurity-nginx connector...