Nginx@0.7.61 Security Vulnerabilities and Issues — Nginx@0.7.61 CVE List

Lucene search

F5Nginx0.7.61

3 matches found

CVE•added 2009/11/24 5:30 p.m.•173 views

CVE-2009-3898

Directory traversal vulnerability in src/http/modules/ngx_http_dav_module.c in nginx (aka Engine X) before 0.7.63, and 0.8.x before 0.8.17, allows remote authenticated users to create or overwrite arbitrary files via a .. (dot dot) in the Destination HTTP header for the WebDAV (1) COPY or (2) MOVE ...

4.9CVSS6.1AI score0.01078EPSS

CVE•added 2009/11/24 5:30 p.m.•151 views

CVE-2009-3896

src/http/ngx_http_parse.c in nginx (aka Engine X) 0.1.0 through 0.4.14, 0.5.x before 0.5.38, 0.6.x before 0.6.39, 0.7.x before 0.7.62, and 0.8.x before 0.8.14 allows remote attackers to cause a denial of service (NULL pointer dereference and worker process crash) via a long URI.

5CVSS6.1AI score0.02427EPSS

CVE•added 2019/11/19 4:15 p.m.•116 views

CVE-2011-4968

nginx http proxy module does not verify peer identity of https origin server which could facilitate man-in-the-middle attack (MITM)

5.8CVSS5AI score0.00265EPSS