CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

292 matches found

curl security advisories•added 2003/08/03 8:0 a.m.•4 views

Proxy Authentication Header Information Leakage

When curl connected to a site via an HTTP proxy with the CONNECT request, the user and password used for the proxy connection was also sent off to the remote server...

7.5CVSS7.2AI score0.01915EPSS

Exploits0Affected Software2

OSV•added 2003/08/03 8:0 a.m.•7 views

CURL-CVE-2003-1605 Proxy Authentication Header Information Leakage

When curl connected to a site via an HTTP proxy with the CONNECT request, the user and password used for the proxy connection was also sent off to the remote server...

7.5CVSS7.6AI score0.01915EPSS

Exploits0

OSV•added 2002/07/26 4:0 a.m.•9 views

CVE-2002-0715

Vulnerability in Squid before 2.4.STABLE6 related to proxy authentication credentials may allow remote web sites to obtain the user's proxy login and password...

7AI score

Exploits0References11

NVD•added 2002/07/26 4:0 a.m.•14 views

CVE-2002-0715

Vulnerability in Squid before 2.4.STABLE6 related to proxy authentication credentials may allow remote web sites to obtain the user's proxy login and password...

5CVSS6.7AI score0.02303EPSS

Exploits0References9

Cvelist•added 2002/07/23 4:0 a.m.•17 views

CVE-2002-0715

Vulnerability in Squid before 2.4.STABLE6 related to proxy authentication credentials may allow remote web sites to obtain the user's proxy login and password...

6.7AI score0.02303EPSS

Exploits0References9

CVE•added 2002/07/23 4:0 a.m.•51 views

CVE-2002-0715

Affected software: Squid before 2.4.STABLE6. Vulnerability: handling of proxy authentication credentials may allow remote web sites to obtain the user's proxy login and password. Public advisories note fixes in newer Squid releases (e.g., Mandrake MDKSA-2002:044 cites squid-2.4.STABLE7; Red Hat R...

5CVSS6.7AI score0.02303EPSS

Exploits0References9Affected Software1

Debian CVE•added 2002/07/23 4:0 a.m.•23 views

CVE-2002-0715

Vulnerability in Squid before 2.4.STABLE6 related to proxy authentication credentials may allow remote web sites to obtain the user's proxy login and password...

5CVSS3.7AI score0.02303EPSS

Exploits0

securityvulns•added 2002/07/04 12:0 a.m.•35 views

Squid Security Update Advisory 2002:3

Squid Proxy Cache Security Update Advisory SQUID-2002:3 Advisory ID: SQUID-2002:3 Date: July 3, 2002 Summary: Squid-2.4.STABLE7 released to address a number of security related issues. Affected versions: Squid-2.x up to and including 2.4.STABLE6 http://www.squid-cache.org/Advisories/SQUID-20023.t...

7.7AI score

Exploits0

Cvelist•added 2001/09/12 4:0 a.m.•15 views

CVE-1999-1277

BackWeb client stores the username and password in cleartext for proxy authentication in the Communication registry key, which could allow other local users to gain privileges by reading the password...

7AI score0.00315EPSS

Exploits0References2

CVE•added 2001/09/12 4:0 a.m.•40 views

CVE-1999-1277

The CVE-1999-1277 issue affects the BackWeb client, where the proxy authentication username and password are stored in cleartext in the Communication registry key. This exposes credentials to other local users, enabling potential privilege escalation through password reading. Root cause: credenti...

4.6CVSS7.8AI score0.00315EPSS

Exploits0References2Affected Software1