Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
web server vulnerabilities and exploits
(subscribe to this query)
5
CVSSv2
CVE-2001-0557
T. Hauck Jana Webserver 1.46 and previous versions allows a remote malicious user to view arbitrary files via a '..' (dot dot) attack which is URL encoded (%2e%2e).
T. Hauck Jana Web Server 1.0j
T. Hauck Jana Web Server 1.45
T. Hauck Jana Web Server 2.0 Beta 1
T. Hauck Jana Web Server
1 EDB exploit
10
CVSSv2
CVE-2008-4541
Heap-based buffer overflow in the FTP subsystem in Sun Java System Web Proxy Server 4.0 up to and including 4.0.7 allows remote malicious users to execute arbitrary code via a crafted HTTP GET request.
Sun Java System Web Proxy Server 4.0
Sun Java System Web Proxy Server 4.0.1
Sun Java System Web Proxy Server 4.0.3
Sun Java System Web Proxy Server 4.0.4
Sun Java System Web Proxy Server 4.0.6
Sun Java System Web Proxy Server 4.0.5
Sun Java System Web Proxy Server 4.0.7
Sun Java System Web Proxy Server 4.0.2
5
CVSSv2
CVE-2004-1801
Directory traversal vulnerability in PWebServer 0.3.3 allows remote malicious users to read arbitrary files via a .. (dot dot) in the URL.
Pwebserver Pwebserver Web Server 0.3.3
Pwebserver Pwebserver Web Server 0.3.0
Pwebserver Pwebserver Web Server 0.3.2
1 EDB exploit
10
CVSSv2
CVE-1999-0235
Buffer overflow in NCSA WebServer (1.4.1 and below) gives remote access.
Ncsa Ncsa Web Server 1.4.1
Ncsa Ncsa Web Server 1.4
Ncsa Ncsa Web Server 1.3
2 EDB exploits
4.3
CVSSv2
CVE-2007-5809
Cross-site scripting (XSS) vulnerability in Hitachi Web Server 01-00 through 03-10, as used by certain Cosminexus products, allows remote malicious users to inject arbitrary web script or HTML via unspecified HTTP requests that trigger creation of a server-status page.
Hitachi Web Server 01 01
Hitachi Web Server 02 00
Hitachi Web Server 02 02
Hitachi Web Server 02 04 B
Hitachi Web Server 03 00
Hitachi Cosminexus Developer Standard Version 6
Hitachi Cosminexus Server
Hitachi Ucosminexus Service Platform
Hitachi Web Server 01 02 D
Hitachi Web Server 02 00 A
Hitachi Web Server 02 06 A
Hitachi Cosminexus Application Server Enterprise
Hitachi Cosminexus Application Server Standard
Hitachi Ucosminexus Developer Light
Hitachi Ucosminexus Developer Professional
Hitachi Web Server 01 01 D
Hitachi Web Server 03 00 01
Hitachi Ucosminexus Application Server Enterprise
Hitachi Ucosminexus Application Server Standard
Hitachi Web Server 01 00
Hitachi Web Server 01 02 E
Hitachi Cosminexus Developer Light Version 6
5
CVSSv2
CVE-2007-5810
Hitachi Web Server 01-00 through 03-00-01, as used by certain Cosminexus products, does not properly validate SSL client certificates, which might allow remote malicious users to spoof authentication via a client certificate with a forged signature.
Hitachi Web Server 01 00
Hitachi Web Server 01 02 D
Hitachi Web Server 01 02 E
Hitachi Web Server 02 00 A
Hitachi Web Server 02 02
Hitachi Web Server 02 06 A
Hitachi Web Server 03 00
Hitachi Web Server 01 01
Hitachi Web Server 02 00
Hitachi Web Server 02 04 B
Hitachi Web Server 03 00 01
Hitachi Cosminexus Server
Hitachi Ucosminexus Application Server Enterprise
Hitachi Cosminexus Application Server Standard
Hitachi Cosminexus Developer Light Version 6
Hitachi Ucosminexus Developer Professional
Hitachi Ucosminexus Developer Standard
Hitachi Cosminexus Developer Professional Version 6
Hitachi Cosminexus Developer Standard Version 6
Hitachi Ucosminexus Service Architect
Hitachi Ucosminexus Service Platform
Hitachi Web Server 01 01 D
NA
CVE-2023-26104
All versions of the package lite-web-server are vulnerable to Denial of Service (DoS) when an attacker sends an HTTP request and includes control characters that the decodeURI() function is unable to parse.
Lite-web-server Project Lite-web-server -
4.3
CVSSv2
CVE-2014-3148
Cross-site scripting (XSS) vulnerability in libahttp/err.c in OkCupid OKWS (OK Web Server) allows remote malicious users to inject arbitrary web script or HTML via the PATH_INFO to a non-existent page, which is not properly handled in a 404 error page.
Ok Web Server Project Ok Web Server -
5
CVSSv2
CVE-2005-3475
Hasbani Web Server (WindWeb) 2.0 allows remote malicious users to cause a denial of service (infinite loop) via HTTP crafted GET requests.
Hasbani Web Server Hasbani Web Server 2.0
1 EDB exploit
5
CVSSv2
CVE-2004-2327
Vizer Web Server 1.9.1 allows remote malicious users to cause a denial of service (crash) via multiple malformed requests including (1) requests without GET, (2) GET requests without HTTP, (3) or long GET requests.
Vizer Web Server Vizer Web Server 1.9.1
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-23316
SQL injection
type confusion
CVE-2024-20697
CVE-2024-4344
local
CVE-2024-30043
CVE-2024-3821
CVE-2024-5041
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »