Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
By Recent Activity
apache http server 1.3.9 vulnerabilities and exploits
(subscribe to this query)
5
CVSSv2
CVE-2000-1204
Vulnerability in the mod_vhost_alias virtual hosting module for Apache 1.3.9, 1.3.11 and 1.3.12 allows remote attackers to obtain the source code for CGI programs if the cgi-bin directory is under the document root....
Apache Http Server 1.3.12
Apache Http Server 1.3.11
Apache Http Server 1.3.9
5
CVSSv2
CVE-2000-1206
Vulnerability in Apache httpd before 1.3.11, when configured for mass virtual hosting using mod_rewrite, or mod_vhost_alias in Apache 1.3.9, allows remote attackers to retrieve arbitrary files....
Apache Http Server 1.3.10
Apache Http Server 1.3.9
5
CVSSv2
CVE-2000-0505
The Apache 1.3.x HTTP server for Windows platforms allows remote attackers to list directory contents by requesting a URL containing a large number of / characters....
Apache Http Server 1.3.11
Apache Http Server 1.3.12
Ibm Http Server 1.3.3
Ibm Http Server 1.3.6.2
Apache Http Server 1.3.6
Apache Http Server 1.3.9
1 EDB exploit available
4.3
CVSSv2
CVE-2000-1205
Cross site scripting vulnerabilities in Apache 1.3.0 through 1.3.11 allow remote attackers to execute script as other web site visitors via (1) the printenv CGI (printenv.pl), which does not encode its output, (2) pages generated by the ap_send_error_response function such as a...
Apache Http Server 1.3.0
Apache Http Server 1.3.5
Apache Http Server 1.3.6
Apache Http Server 1.3.1
Apache Http Server 1.3.10
Apache Http Server 1.3.7
Apache Http Server 1.3.8
Apache Http Server 1.3.11
Apache Http Server 1.3.2
Apache Http Server 1.3.9
Apache Http Server 1.3.3
Apache Http Server 1.3.4
5
CVSSv2
CVE-2002-2103
Apache before 1.3.24, when writing to the log file, records a spoofed hostname from the reverse lookup of an IP address, even when a double-reverse lookup fails, which allows remote attackers to hide the original source of activities....
Apache Http Server 1.3.14
Apache Http Server 1.3.16
Apache Http Server 1.3.18
Apache Http Server 1.3.9
Apache Http Server 1.3.19
Apache Http Server 1.3.20
Apache Http Server 1.3.22
Apache Http Server 1.3.23
Apache Http Server 1.3.11
Apache Http Server 1.3.12
Apache Http Server 1.3.13
Apache Http Server 1.3.15
Apache Http Server 1.3.17
4.6
CVSSv2
CVE-2002-1658
Buffer overflow in htdigest in Apache 1.3.26 and 1.3.27 may allow attackers to execute arbitrary code via a long user argument. NOTE: since htdigest is normally only locally accessible and not setuid or setgid, there are few attack vectors which would lead to an escalation of...
Apache Http Server 1.3.17
Apache Http Server 1.3.18
Apache Http Server 1.3.26
Apache Http Server 1.3.27
Apache Http Server 1.3.1
Apache Http Server 1.3.11
Apache Http Server 1.3.22
Apache Http Server 1.3.23
Apache Http Server 1.3.6
Apache Http Server 1.3.9
Apache Http Server 1.3.12
Apache Http Server 1.3.14
Apache Http Server 1.3.24
Apache Http Server 1.3.25
Apache Http Server 1.3.19
Apache Http Server 1.3.20
Apache Http Server 1.3.3
Apache Http Server 1.3.4
7.5
CVSSv2
CVE-2003-0993
mod_access in Apache 1.3 before 1.3.30, when running big-endian 64-bit platforms, does not properly parse Allow/Deny rules using IP addresses without a netmask, which could allow remote attackers to bypass intended access restrictions....
Apache Http Server 1.3
Apache Http Server 1.3.1
Apache Http Server 1.3.22
Apache Http Server 1.3.23
Apache Http Server 1.3.3
Apache Http Server 1.3.4
Apache Http Server 1.3.18
Apache Http Server 1.3.19
Apache Http Server 1.3.20
Apache Http Server 1.3.11
Apache Http Server 1.3.12
Apache Http Server 1.3.24
Apache Http Server 1.3.25
Apache Http Server 1.3.6
Apache Http Server 1.3.7
Apache Http Server 1.3.28
Apache Http Server 1.3.29
Apache Http Server 1.3.14
Apache Http Server 1.3.17
Apache Http Server 1.3.26
Apache Http Server 1.3.27
Apache Http Server 1.3.9
7.5
CVSSv2
CVE-1999-1053
guestbook.pl cleanses user-inserted SSI commands by removing text between "<!--" and "-->" separators, which allows remote attackers to execute arbitrary commands when guestbook.pl is run on Apache 1.3.9 and possibly other versions, since Apache allows...
Apache Http Server 1.3.9
Matt Wright Matt Wright Guestbook 2.3
2 EDB exploits available
1 Metasploit module available
3 Github repositories available
5
CVSSv2
CVE-2004-0263
PHP 4.3.4 and earlier in Apache 1.x and 2.x (mod_php) can leak global variables between virtual hosts that are handled by the same Apache child process but have different settings, which could allow remote attackers to obtain sensitive information....
Apache Http Server 1.0.3
Apache Http Server 1.0.5
Apache Http Server 1.3.11
Apache Http Server 1.3.12
Apache Http Server 1.2
Apache Http Server 1.2.5
Apache Http Server 1.3.18
Apache Http Server 1.3.19
Apache Http Server 1.3.20
Apache Http Server 1.3.28
Apache Http Server 1.3.29
Apache Http Server 2.0.28
Apache Http Server 2.0.41
Apache Http Server 2.0.42
Apache Http Server 2.0.9
Ibm Http Server 1.3.19
Apache Http Server 1.3.24
Apache Http Server 1.3.25
Apache Http Server 1.3.6
Apache Http Server 1.3.7
Apache Http Server 2.0.36
Apache Http Server 2.0.37
Apache Http Server 2.0.45
Apache Http Server 2.0.46
Apache Http Server 1.1
Apache Http Server 1.1.1
Apache Http Server 1.3.14
Apache Http Server 1.3.17
Apache Http Server 1.3.26
Apache Http Server 1.3.27
Apache Http Server 1.3.9
Apache Http Server 2.0
Apache Http Server 2.0.38
Apache Http Server 2.0.39
Apache Http Server 2.0.40
Apache Http Server 2.0.47
Apache Http Server 2.0.48
Apache Http Server 1.0
Apache Http Server 1.0.2
Apache Http Server 1.3
Apache Http Server 1.3.1
Apache Http Server 1.3.22
Apache Http Server 1.3.23
Apache Http Server 1.3.3
Apache Http Server 1.3.4
Apache Http Server 2.0.32
Apache Http Server 2.0.35
Apache Http Server 2.0.43
Apache Http Server 2.0.44
7.5
CVSSv2
CVE-2001-1449
The default installation of Apache before 1.3.19 on Mandrake Linux 7.1 through 8.0 and Linux Corporate Server 1.0.1 allows remote attackers to list the directory index of arbitrary web directories....
Apache Http Server 1.3.1
Apache Http Server 1.3.11
Apache Http Server 1.3.6
Apache Http Server 1.3.9
Apache Http Server 1.3.12
Apache Http Server 1.3.14
Mandrakesoft Mandrake Single Network Firewall 7.2
Apache Http Server 1.3.17
Apache Http Server 1.3.18
Apache Http Server 1.3
Apache Http Server 1.3.3
Apache Http Server 1.3.4
Mandrakesoft Mandrake Linux 7.1
Mandrakesoft Mandrake Linux 7.3
Mandrakesoft Mandrake Linux 8.0
Mandrakesoft Mandrake Linux Corporate Server 1.0.1
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-30758
CSRF
CVE-2021-44228
CVE-2023-33633
XPath injection
CVE-2023-33735
CVE-2023-29336
CVE-2023-34312
cache poisoning
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
NEXT »
Vulmon