Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
acme vulnerabilities and exploits
(subscribe to this query)
6.5
CVSSv3
CVE-2018-18778
ACME mini_httpd prior to 1.30 lets remote users read arbitrary files.
Acme Mini-httpd
3 Github repositories
NA
CVE-2009-4491
thttpd 2.25b0 writes data to a log file without sanitizing non-printable characters, which might allow remote malicious users to modify a window's title, or possibly execute arbitrary commands or overwrite files, via an HTTP request containing an escape sequence for a termin...
Acme Thttpd 2.25
1 EDB exploit
NA
CVE-2002-1562
Directory traversal vulnerability in thttpd, when using virtual hosting, allows remote malicious users to read arbitrary files via .. (dot dot) sequences in the Host: header.
Acme Labs Thttpd
NA
CVE-2001-0893
Acme mini_httpd prior to 1.16 allows remote malicious users to view sensitive files under the document root (such as .htpasswd) via a GET request with a trailing /.
Acme Mini Httpd
NA
CVE-2015-1548
mini_httpd 1.21 and previous versions allows remote malicious users to obtain sensitive information from process memory via an HTTP request with a long protocol string, which triggers an incorrect response size calculation and an out-of-bounds read.
Acme Mini Httpd
NA
CVE-2007-0664
thttpd prior to 2.25b-r6 in Gentoo Linux is started from the system root directory (/) by the Gentoo baselayout 1.12.6 package, which allows remote malicious users to read arbitrary files.
Acme Labs Thttpd
9.8
CVSSv3
CVE-2007-0158
thttpd 2007 has buffer underflow.
Acme Thttpd 2007
NA
CVE-2002-0733
Cross-site scripting vulnerability in thttpd 2.20 and previous versions allows remote malicious users to execute arbitrary script via a URL to a nonexistent page, which causes thttpd to insert the script into a 404 error message.
Acme Labs Thttpd 2.20b
1 EDB exploit
NA
CVE-2006-4248
thttpd on Debian GNU/Linux, and possibly other distributions, allows local users to create or touch arbitrary files via a symlink attack on the start_thttpd temporary file.
Acme Labs Thttpd 2.25b
NA
CVE-2009-4490
mini_httpd 1.19 writes data to a log file without sanitizing non-printable characters, which might allow remote malicious users to modify a window's title, or possibly execute arbitrary commands or overwrite files, via an HTTP request containing an escape sequence for a term...
Acme Mini Httpd 1.19
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
inject
CVE-2024-34001
CVE-2024-37018
LFI
CVE-2024-1275
CVE-2024-1086
CSRF
CVE-2024-31030
CVE-2024-24919
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
NEXT »