Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
site server vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2014-3148
Cross-site scripting (XSS) vulnerability in libahttp/err.c in OkCupid OKWS (OK Web Server) allows remote malicious users to inject arbitrary web script or HTML via the PATH_INFO to a non-existent page, which is not properly handled in a 404 error page.
Ok Web Server Project Ok Web Server -
4.3
CVSSv2
CVE-2007-6203
Apache HTTP Server 2.0.x and 2.2.x does not sanitize the HTTP Method specifier header from an HTTP request when it is reflected back in a "413 Request Entity Too Large" error message, which might allow cross-site scripting (XSS) style attacks using web client components...
Apache Http Server 2.0.51
Apache Http Server 2.0.52
Apache Http Server 2.1.2
Apache Http Server 2.1.3
Apache Http Server 2.2.2
Apache Http Server 2.2.3
Apache Http Server 2.0.46
Apache Http Server 2.0.53
Apache Http Server 2.0.54
Apache Http Server 2.0.55
Apache Http Server 2.1.4
Apache Http Server 2.1.5
Apache Http Server 2.2.4
Apache Http Server 2.0.47
Apache Http Server 2.0.48
Apache Http Server 2.0.57
Apache Http Server 2.0.58
Apache Http Server 2.1.6
Apache Http Server 2.1.7
Apache Http Server 2.0.49
Apache Http Server 2.0.50
Apache Http Server 2.0.59
1 EDB exploit
3.5
CVSSv2
CVE-2007-0275
Cross-site scripting (XSS) vulnerability in Oracle Reports Web Cartridge (RWCGI60) in the Workflow Cartridge component, as used in Oracle Database 9.2.0.8, 10.1.0.5, and 10.2.0.3; Application Server 9.0.4.3, 10.1.2.0.2, and 10.1.2.2; Collaboration Suite 10.1.2; and Oracle E-Busin...
Oracle Database Server 10.1.0.5
Oracle Database Server 10.2.0.3
Oracle Application Server 10.1.2.0.2
Oracle Application Server 10.1.2.2
Oracle Database Server 9.2.0.8
Oracle E-business Suite 11.5.10.2
Oracle Application Server 9.0.4.3
Oracle Collaboration Suite 10.1.2
4.3
CVSSv2
CVE-2007-3613
Cross-site scripting (XSS) vulnerability in ADM:GETLOGFILE in SAP Internet Graphics Service (IGS) allows remote malicious users to inject arbitrary web script or HTML via the PARAMS parameter.
Sap Internet Graphics Server 7.00 Patch 1
Sap Internet Graphics Server 7.00 Patch 2
Sap Internet Graphics Server 6.40 Patch 13
Sap Internet Graphics Server 6.40 Patch 14
Sap Internet Graphics Server 6.40 Patch 15
Sap Internet Graphics Server 6.40
Sap Internet Graphics Server 7.00 Patch 3
Sap Internet Graphics Server 6.40 Patch 11
Sap Internet Graphics Server 6.40 Patch 12
1 EDB exploit
4.3
CVSSv2
CVE-2009-0307
Cross-site scripting (XSS) vulnerability in the "Customize Statistics Page" (admin/statistics/ConfigureStatistics) in the MDS Connection Service in Research in Motion (RIM) BlackBerry Enterprise Server (BES) prior to 4.1.6 MR5 allows remote malicious users to inject arb...
Rim Blackberry Enterprise Server 4.0
Rim Blackberry Enterprise Server 4.1.4
Rim Blackberry Enterprise Server 4.1.5
Rim Blackberry Enterprise Server 4.1
Rim Blackberry Enterprise Server 4.1.6
Rim Blackberry Enterprise Server 4.1.3
Rim Blackberry Enterprise Server
Rim Blackberry Enterprise Server 4.0.3
1 EDB exploit
6.8
CVSSv2
CVE-2002-0840
Cross-site scripting (XSS) vulnerability in the default error page of Apache 2.0 prior to 2.0.43, and 1.3.x up to 1.3.26, when UseCanonicalName is "Off" and support for wildcard DNS is present, allows remote malicious users to execute script as other web page visitors v...
Apache Http Server 2.0.42
Oracle Application Server 9.0.2.1
Apache Http Server 1.3.23
Oracle Oracle9i 9.0.1
Oracle Oracle9i 9.0.2
Oracle Oracle8i 8.1.7 .0.0 Enterprise
Oracle Database Server 8.1.7
Apache Http Server 2.0.35
Apache Http Server 2.0.37
Apache Http Server 1.3.1
Apache Http Server 1.3.25
Oracle Oracle9i 9.0
Apache Http Server 1.3.19
Oracle Database Server 9.2.1
Apache Http Server 2.0.39
Apache Http Server 1.3.24
Oracle Application Server 9.0.2
Apache Http Server 1.3.20
Apache Http Server 1.3.6
Apache Http Server 2.0.41
Oracle Oracle8i 8.1.7.1
Oracle Oracle8i 8.1.7
1 EDB exploit
6.8
CVSSv2
CVE-2004-2115
Multiple cross-site scripting (XSS) vulnerabilities in Oracle HTTP Server 1.3.22, based on Apache, allow remote malicious users to execute arbitrary script as other users via the (1) action, (2) username, or (3) password parameters in an isqlplus request.
Oracle Http Server 8.1.7
Oracle Http Server 9.0.1
Oracle Http Server 9.2.0
1 EDB exploit
5.4
CVSSv2
CVE-2005-3357
mod_ssl in Apache 2.0 up to 2.0.55, when configured with an SSL vhost with access control and a custom error 400 error page, allows remote malicious users to cause a denial of service (application crash) via a non-SSL request to an SSL port, which triggers a NULL pointer derefere...
Apache Http Server 2.0.42
Apache Http Server 2.0.47
Apache Http Server 2.0.50
Apache Http Server 2.0.35
Apache Http Server 2.0.37
Apache Http Server 2.0.55
Apache Http Server 2.0.44
Apache Http Server 2.0.39
Apache Http Server 2.0.52
Apache Http Server 2.0.53
Apache Http Server 2.0.51
Apache Http Server 2.0.28
Apache Http Server 2.0.41
Apache Http Server 2.0.49
Apache Http Server 2.0.9
Apache Http Server 2.0.32
Apache Http Server 2.0.38
Apache Http Server 2.0.48
Apache Http Server 2.0.45
Apache Http Server 2.0.40
Apache Http Server 2.0.36
Apache Http Server 2.0.46
4.3
CVSSv2
CVE-2005-2453
Cross-site scripting (XSS) vulnerability in NetworkActiv Web Server 1.0, 2.0.0.6, 3.0.1.1, and 3.5.13, and possibly other versions, allows remote malicious users to inject arbitrary web script or HTML via the query string.
Networkactiv Networkactiv Web Server 3.0.1.1
Networkactiv Networkactiv Web Server 3.5.13
Networkactiv Networkactiv Web Server 1.0
Networkactiv Networkactiv Web Server 2.0.0.6
1 EDB exploit
4.3
CVSSv2
CVE-2002-2318
Cross-site scripting (XSS) vulnerability in Falcon web server 2.0.0.1009 up to and including 2.0.0.1021 allows remote malicious users to inject arbitrary web script or HTML via the URI, which is inserted into 301 error messages and executed by 404 error messages.
Blueface Falcon Web Server 2.0.0.1009
Blueface Falcon Web Server 2.0.0.1021
Blueface Falcon Web Server 2.0.0.1021 Ssl
Blueface Falcon Web Server 2.0.0.1020
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-7028
memory leak
log injection
CVE-2024-3400
CVE-2022-48695
CVE-2022-48675
CVE-2024-34487
CVE-2024-33792
spoof
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »