Lucene search
K

4 matches found

CNNVD
CNNVD
added 2026/02/03 12:0 a.m.8 views

pearweb SQL注入漏洞

PearWeb is a PHP extension and application repository developed by PEAR. Versions of PearWeb prior to 1.33.0 contained a SQL injection vulnerability. This vulnerability stemmed from unsafe literal substitutions in cause-and-effect queries involving IN lists, posing a risk of SQL injection...

9.8CVSS5.9AI score0.00266EPSS
Exploits0References2
Ubuntu
Ubuntu
added 2025/08/13 2:57 p.m.6 views

USN-6885-6: Apache HTTP Server regression

USN-6885-1 fixed vulnerabilities in Apache. The patch for CVE-2024-38474 was incomplete and caused a regression. This update provides the fix for this issue. Original advisory details: Orange Tsai discovered that the Apache HTTP Server modrewrite module incorrectly handled certain substitutions. ...

7.7AI score
Exploits0References1
Amazon
Amazon
added 2024/07/22 12:0 a.m.80 views

Important: httpd

Issue Overview: Encoding problem in modproxy in Apache HTTP Server 2.4.59 and earlier allows request URLs with incorrect encoding to be sent to backend services, potentially bypassing authentication via crafted requests. Users are recommended to upgrade to version 2.4.60, which fixes this issue...

9.8CVSS7.4AI score0.99957EPSS
Exploits2
OSV
OSV
added 2024/07/12 11:8 a.m.7 views

OESA-2024-1830 httpd security update

Apache HTTP Server is a powerful and flexible HTTP/1.1 compliant web server. Security Fixes: Improper escaping of output in modrewrite in Apache HTTP Server 2.4.59 and earlier allows an attacker to map URLs to filesystem locations that are permitted to be served by the server but are not...

9.1CVSS7.5AI score0.99957EPSS
Exploits1References3
Rows per page
Query Builder