Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

54 matches found

OSV
OSVadded 2018/01/03 2:22 p.m.6 views

MGASA-2018-0036 Updated connman packages fix security vulnerability

Security consultants in NRI Secure Technologies discovered a stack overflow vulnerability in ConnMan. An attacker with control of the DNS responses to the DNS proxy in ConnMan might crash the service and, in same cases, remotely execute arbitrary commands in the host running the service...

9.8CVSS9.7AI score0.05519EPSS
Exploits0References3
OSV
OSVadded 2015/09/08 5:55 p.m.9 views

MGASA-2015-0347 Updated squid packages fix CVE-2015-5400

Updated squid packages fix security vulnerability: Alex Rousskov discovered that Squid configured with cachepeer and operating on explicit proxy traffic does not correctly handle CONNECT method peer responses. In some configurations, it allows remote clients to bypass security in an explicit...

6.8CVSS8.7AI score0.16525EPSS
Exploits1References4
ATTACKERKB
ATTACKERKBadded 2012/03/30 10:55 p.m.3 views

CVE-2011-3061

Google Chrome before 18.0.1025.142 does not properly check X.509 certificates before use of a SPDY proxy, which might allow man-in-the-middle attackers to spoof servers or obtain sensitive information via a crafted certificate...

5.8CVSS8.3AI score0.00963EPSS
Exploits2References11
securityvulns
securityvulnsadded 2010/09/12 12:0 a.m.45 views

Open Classifieds version 1.7.0.2 XSS Vuln.

Vuln. discovered by : r0t Date: 12 September 2010 vendor:http://open-classifieds.com/ orginal advisory:http://pridels-team.blogspot.com/2010/09/open-classifieds-version-1702-xss-vuln.html affected versions:Open Classifieds version 1.7.0.2 Open Classifieds version 1.7.0 and other prior versions al...

1.7AI score
Exploits0
RedHat Linux
RedHat Linuxadded 2008/03/11 2:9 p.m.56 views

Moderate: Red Hat Security Advisory: java-1.4.2-bea security update

Updated java-1.4.2-bea packages that correct several security issues and add enhancements are now available for Red Hat Enterprise Linux 3 Extras, Red Hat Enterprise Linux 4 Extras, and Red Hat Enterprise Linux 5 Supplementary. This update has been rated as having moderate security impact by the...

9.3CVSS6.3AI score0.18185EPSS
Exploits0References11
Prion
Prionadded 2006/02/08 1:2 a.m.13 views

Authentication flaw

Blue Coat Proxy Security Gateway OS SGOS 4.1.2.1 does not enforce CONNECT rules when using Deep Content Inspection, which allows remote attackers to bypass connection filters...

7.5CVSS7.3AI score0.0176EPSS
Exploits0References7Affected Software1
securityvulns
securityvulnsadded 2003/03/26 12:0 a.m.39 views

Corsaire Security Advisory - Symantec Enterprise Firewall (SEF) H TTP URL pattern evasion issue

-- Corsaire Security Advisory -- Title: Symantec Enterprise Firewall SEF HTTP URL pattern evasion issue Date: 24.02.03 Application: Symantec Enterprise Firewall SEF 7.0 Environment: Windows NT 4.0, Windows 2000, Author: Martin O'Neal [email protected] Audience: General Distribution -- Sco...

7.5CVSS5.9AI score0.01392EPSS
Exploits0
CERT
CERTadded 2002/05/17 12:0 a.m.56 views

HTTP proxy default configurations allow arbitrary TCP connections

Overview Multiple vendors' HTTP proxy services use insecure default configurations that could allow an attacker to make arbitrary TCP connections to internal hosts or to external third-party hosts. Description HTTP proxy services commonly support the HTTP CONNECT method, which is designed to crea...

7.6AI score
Exploits0References13
Exploit DB
Exploit DBadded 2001/07/18 12:0 a.m.25 views

Squid Web Proxy 2.3 - Reverse Proxy

source: https://www.securityfocus.com/bid/3062/info Squid is a free client-side web proxy that retrieves cached web pages for quick browsers and a reduction in bandwidth consumption. Squid servers, when configured as an "HTTP accelerator only", may allow remote attackers to use them as port...

7.4AI score
Exploits0
Cvelist
Cvelistadded 2000/02/04 5:0 a.m.17 views

CVE-1999-0910

Microsoft Site Server and Commercial Internet System MCIS do not set an expiration for a cookie, which could then be cached by a proxy and inadvertently used by a different user...

6.5AI score0.05777EPSS
Exploits0References2
Packet Storm
Packet Stormadded 1999/08/17 12:0 a.m.39 views

wingate-killer.pl

Date: Sat, 14 Nov 1998 13:51:30 -0500 From: G23 To: [email protected] Subject: crashing wingates Hello, The following one-liner will crash an open Wingate. perl -MIO::Socket -e \ 'IO::Socket::INET-newPeerAddr="wingate.to.hoze:23"\ -send"X" x 4400 . "\n",0' Unfortunately I don't have access to...

7.4AI score
Exploits0
Packet Storm
Packet Stormadded 1999/08/17 12:0 a.m.40 views

pop2d.imap.txt

Date: Wed, 26 May 1999 20:37:13 +0100 From: Chris Evans To: [email protected] Subject: Remote vulnerability in pop2d Hi Firstly, sorry if any details are hazy - this is from memory it's two months since I last looked at this. This bug concerns the pop-2 daemon, which is a part of the Washingto...

Exploits0
Tenable Nessus
Tenable Nessusadded 1999/06/22 12:0 a.m.83 views

HTTP Proxy CONNECT Request Relaying

The proxy allows users to perform CONNECT requests such as : CONNECT http://cvs.example.org:23 This request gives the person who made it the ability to have an interactive session with a third-party site. This issue may allow attackers to bypass your firewall by connecting to sensitive ports such...

5.5AI score
Exploits0
NVD
NVDadded 1999/02/01 5:0 a.m.29 views

CVE-1999-0291

The WinGate proxy is installed without a password, which allows remote attackers to redirect connections without authentication...

7.5CVSS6.7AI score0.02134EPSS
Exploits0References1
Rows per page
Query Builder