5 matches found
Design/Logic Flaw
VeryNginx 0.3.3 allows remote attackers to bypass the Web Application Firewall feature because there is no error handler for geturiargs or getpostargs to block the API misuse described in CVE-2018-9230...
CVE-2018-19991
VeryNginx 0.3.3 allows remote attackers to bypass the Web Application Firewall feature because there is no error handler for geturiargs or getpostargs to block the API misuse described in CVE-2018-9230...
CVE-2018-19991
VeryNginx 0.3.3 allows remote attackers to bypass the Web Application Firewall feature because there is no error handler for geturiargs or getpostargs to block the API misuse described in CVE-2018-9230...
CVE-2018-19991
CVE-2018-19991 / CVE-2018-9230 involve OpenResty and VeryNginx. VeryNginx 0.3.3 is described as allowing a remote attacker to bypass the Web Application Firewall due to no error handler for get_uri_args or get_post_args, enabling API misuse described in CVE-2018-9230. The connected records provid...
CVE-2018-19991
VeryNginx 0.3.3 allows remote attackers to bypass the Web Application Firewall feature because there is no error handler for geturiargs or getpostargs to block the API misuse described in CVE-2018-9230...