Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
index server vulnerabilities and exploits
(subscribe to this query)
5
CVSSv2
CVE-2001-0731
Apache 1.3.20 with Multiviews enabled allows remote malicious users to view directory contents and bypass the index page via a URL containing the "M=D" query string.
Apache Http Server 1.3.20
1 EDB exploit
5
CVSSv2
CVE-2000-0126
Sample Internet Data Query (IDQ) scripts in IIS 3 and 4 allow remote malicious users to read files via a .. (dot dot) attack.
Microsoft Internet Information Server 3.0
Microsoft Internet Information Server 4.0
1 EDB exploit
5
CVSSv2
CVE-2009-4051
Home FTP Server 1.10.1.139 allows remote malicious users to cause a denial of service (daemon outage) via multiple invalid SITE INDEX commands.
Downstairs.dnsalias Home Ftp Server 1.10.1.139
1 EDB exploit
1.9
CVSSv2
CVE-2017-8483
The kernel in Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, 1607, 1703, and Windows Server 2016 allows an authenticated malicious user to obtain information via a specially crafted...
Microsoft Windows Rt 8.1 -
Microsoft Windows Server 2008 R2
Microsoft Windows Server 2012 -
Microsoft Windows Server 2012 R2
Microsoft Windows Server 2016 -
Microsoft Windows 10 -
Microsoft Windows 10 1511
Microsoft Windows 10 1607
Microsoft Windows 10 1703
Microsoft Windows 7 -
Microsoft Windows 8.1 -
Microsoft Windows Server 2008 -
1 EDB exploit
9.3
CVSSv2
CVE-2015-2461
ATMFD.DLL in the Windows Adobe Type Manager Library in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT Gold and 8.1, and Windows 10 allows remote malicious users to execute arbitra...
Microsoft Windows Server 2008 R2
Microsoft Windows 7 -
Microsoft Windows Server 2008 -
Microsoft Windows Rt 8.1 -
Microsoft Windows Server 2012 R2
Microsoft Windows 8 -
Microsoft Windows Vista -
Microsoft Windows 10 -
Microsoft Windows Rt -
Microsoft Windows Server 2012 -
Microsoft Windows 8.1 -
1 EDB exploit
4
CVSSv2
CVE-2022-21380
Vulnerability in the MySQL Cluster product of Oracle MySQL (component: Cluster: General). Supported versions that are affected are 7.4.34 and prior, 7.5.24 and prior, 7.6.20 and prior and 8.0.27 and prior. Difficult to exploit vulnerability allows high privileged attacker with ac...
Oracle Mysql Server
Netapp Oncommand Insight -
Netapp Oncommand Workflow Automation -
10
CVSSv2
CVE-2012-4704
Array index error in 3S CODESYS Gateway-Server prior to 2.3.9.27 allows remote malicious users to execute arbitrary code via a crafted packet.
3s-software Codesys Gateway-server 2.3.9.18
3s-software Codesys Gateway-server 2.3.8.1
3s-software Codesys Gateway-server 2.3.8.0
3s-software Codesys Gateway-server
3s-software Codesys Gateway-server 2.3.9.1
3s-software Codesys Gateway-server 2.3.8.2
3s-software Codesys Gateway-server 2.3.5.1
3s-software Codesys Gateway-server 2.3.9
3s-software Codesys Gateway-server 2.3.9.19
3s-software Codesys Gateway-server 2.3.9.5
3s-software Codesys Gateway-server 2.3.9.4
3s-software Codesys Gateway-server 2.3.7.0
3s-software Codesys Gateway-server 2.3.6.0
3s-software Codesys Gateway-server 2.3.9.3
3s-software Codesys Gateway-server 2.3.9.2
3s-software Codesys Gateway-server 2.3.5.3
3s-software Codesys Gateway-server 2.3.5.2
6.5
CVSSv2
CVE-2012-3132
SQL injection vulnerability in Oracle Database Server 10.2.0.3, 10.2.0.4, 10.2.0.5, 11.1.0.7, 11.2.0.2, and 11.2.0.3 allows remote authenticated users to execute arbitrary SQL commands via vectors involving CREATE INDEX with a CTXSYS.CONTEXT INDEXTYPE and DBMS_STATS.GATHER_TABLE_...
Oracle Database Server 11.2.0.2
Oracle Database Server 11.2.0.3
Oracle Database Server 10.2.0.4
Oracle Database Server 10.2.0.5
Oracle Database Server 11.1.0.7
Oracle Database Server 10.2.0.3
4.3
CVSSv2
CVE-2022-29589
Crypt Server prior to 3.3.0 allows XSS in the index view. This is related to serial, computername, and username.
Crypt-server Project Crypt-server
7.5
CVSSv2
CVE-2001-1449
The default installation of Apache prior to 1.3.19 on Mandrake Linux 7.1 up to and including 8.0 and Linux Corporate Server 1.0.1 allows remote malicious users to list the directory index of arbitrary web directories.
Apache Http Server 1.3.1
Apache Http Server 1.3.11
Apache Http Server 1.3.6
Apache Http Server 1.3.9
Apache Http Server 1.3.12
Apache Http Server 1.3.14
Mandrakesoft Mandrake Single Network Firewall 7.2
Apache Http Server 1.3.17
Apache Http Server 1.3.18
Apache Http Server 1.3
Apache Http Server 1.3.3
Apache Http Server 1.3.4
Mandrakesoft Mandrake Linux 7.1
Mandrakesoft Mandrake Linux 7.3
Mandrakesoft Mandrake Linux 8.0
Mandrakesoft Mandrake Linux Corporate Server 1.0.1
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
firmware
CVE-2023-52866
CVE-2024-4367
CVE-2024-1721
CVE-2023-34992
XML injection
CVE-2023-52817
SQL
CVE-2023-52855
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »