Apache Tomcat 11.0.0.M1 < 11.0.7

The version of Tomcat installed on the remote host is prior to 11.0.7. It is, therefore, affected by a vulnerability as referenced in the fixedinapachetomcat11.0.7security-11 advisory. - Improper Handling of Case Sensitivity vulnerability in Apache Tomcat's GCI servlet allows security constraint...

php: Configuring a proxy in a stream context might allow for CRLF injection in URIs

A flaw was found in PHP. In affected versions of PHP, when using streams with configured proxy and "requestfulluri" option, the URI is not properly sanitized, which can lead to HTTP request smuggling and allow the attacker to use the proxy to perform arbitrary HTTP requests originating from the...

CVE-2023-45539

HAProxy before 2.8.2 accepts as part of the URI component, which might allow remote attackers to obtain sensitive information or have unspecified other impact upon misinterpretation of a pathend rule, such as routing index.html.png to a static server...

Cross site request forgery (csrf)

C.P.Sub before 5.3 allows CSRF via a manage.php?p=articledel&id= URI...

PHP <5.2.6 cgi_main.c URI 安全模式绕过漏洞

No description provided by source...