Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
privoxy privoxy vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv3
CVE-2021-44540
A vulnerability was found in Privoxy which was fixed in get_url_spec_param() by freeing memory of compiled pattern spec before bailing.
Privoxy Privoxy
7.5
CVSSv3
CVE-2021-44541
A vulnerability was found in Privoxy which was fixed in process_encrypted_request_headers() by freeing header memory when failing to get the request destination.
Privoxy Privoxy
6.1
CVSSv3
CVE-2021-44543
An XSS vulnerability was found in Privoxy which was fixed in cgi_error_no_template() by encode the template name when Privoxy is configured to servce the user-manual itself.
Privoxy Privoxy
7.5
CVSSv3
CVE-2021-44542
A memory leak vulnerability was found in Privoxy when handling errors.
Privoxy Privoxy
7.5
CVSSv3
CVE-2021-20209
A memory leak vulnerability was found in Privoxy prior to 3.0.29 in the show-status CGI handler when no action files are configured.
Privoxy Privoxy
7.5
CVSSv3
CVE-2016-1982
The remove_chunked_transfer_coding function in filters.c in Privoxy prior to 3.0.24 allows remote malicious users to cause a denial of service (invalid read and crash) via crafted chunk-encoded content.
Privoxy Privoxy
7.5
CVSSv3
CVE-2016-1983
The client_host function in parsers.c in Privoxy prior to 3.0.24 allows remote malicious users to cause a denial of service (invalid read and crash) via an empty HTTP Host header.
Privoxy Privoxy
NA
CVE-2015-1201
Privoxy prior to 3.0.22 allows remote malicious users to cause a denial of service (file descriptor consumption) via unspecified vectors. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
Privoxy Privoxy
NA
CVE-2015-1031
Multiple use-after-free vulnerabilities in Privoxy prior to 3.0.22 allow remote malicious users to have unspecified impact via vectors related to (1) the unmap function in list.c or (2) "two additional unconfirmed use-after-free complaints made by Coverity scan." NOTE: ...
Privoxy Privoxy
7.5
CVSSv3
CVE-2021-20213
A flaw was found in Privoxy in versions prior to 3.0.29. Dereference of a NULL-pointer that could result in a crash if accept-intercepted-requests was enabled, Privoxy failed to get the request destination from the Host header and a memory allocation failed.
Privoxy Privoxy
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
inject
CVE-2024-34001
CVE-2024-37018
LFI
CVE-2024-1275
CVE-2024-1086
CSRF
CVE-2024-31030
CVE-2024-24919
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
NEXT »