Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
apache http server - vulnerabilities and exploits
(subscribe to this query)
755
VMScore
CVE-2007-0637
Directory traversal vulnerability in zd_numer.php in Galeria Zdjec 3.0 and previous versions allows remote malicious users to include and execute arbitrary local files via a .. (dot dot) in the galeria parameter, as demonstrated by injecting PHP sequences into an Apache HTTP Serv...
Galeria Zdjec Galeria Zdjec
1 EDB exploit
755
VMScore
CVE-2006-6445
Directory traversal vulnerability in error.php in Envolution 1.1.0 and previous versions allows remote malicious users to include and execute arbitrary local files via a .. (dot dot) in the PNSVlang (PNSV lang) parameter, as demonstrated by injecting PHP sequences into an Apache ...
Envolution Envolution 1.1.0
1 EDB exploit
755
VMScore
CVE-2006-5733
Directory traversal vulnerability in error.php in PostNuke 0.763 and previous versions allows remote malicious users to include and execute arbitrary local files via a .. (dot dot) in the PNSVlang (PNSV lang) cookie, as demonstrated by injecting PHP sequences into an Apache HTTP ...
Postnuke Software Foundation Postnuke 0.762
Postnuke Software Foundation Postnuke
1 EDB exploit
755
VMScore
CVE-2006-5263
Directory traversal vulnerability in templates/header.php3 in phpMyAgenda 3.1 and previous versions allows remote malicious users to include and execute arbitrary local files via a .. (dot dot) in the language parameter, as demonstrated by a parameter value naming an Apache HTTP ...
Phpmyagenda Phpmyagenda
1 EDB exploit
755
VMScore
CVE-2006-4636
Directory traversal vulnerability in SZEWO PhpCommander 3.0 and previous versions allows remote malicious users to include and execute arbitrary local files via directory traversal sequences in the Directory parameter, as demonstrated by parameter values naming Apache HTTP Server...
Szewo Phpcommander
1 EDB exploit
755
VMScore
CVE-2006-4558
DeluxeBB 1.06 and previous versions, when run on the Apache HTTP Server with the mod_mime module, allows remote malicious users to execute arbitrary PHP code by uploading files with double extensions via the fileupload parameter in a newthread action in newpost.php.
Deluxebb Deluxebb
1 EDB exploit
755
VMScore
CVE-2002-2029
PHP, when installed on Windows with Apache and ScriptAlias for /php/ set to c:/php/, allows remote malicious users to read arbitrary files and possibly execute arbitrary programs via an HTTP request for php.exe with a filename in the query string.
Apache Http Server 1.3.16
Apache Http Server 1.3.17
Apache Http Server 1.3.18
Apache Http Server 1.3.19
Apache Http Server 1.3.11
Apache Http Server 1.3.13
Apache Http Server 1.3.15
Apache Http Server 1.3.20
Apache Http Server 1.3.12
Apache Http Server 1.3.14
1 EDB exploit
755
VMScore
CVE-2002-0661
Directory traversal vulnerability in Apache 2.0 up to and including 2.0.39 on Windows, OS2, and Netware allows remote malicious users to read arbitrary files and execute commands via .. (dot dot) sequences containing \ (backslash) characters.
Apache Http Server 2.0.28
Apache Http Server 2.0.35
Apache Http Server 2.0.37
Apache Http Server 2.0.32
Apache Http Server 2.0.34
Apache Http Server 2.0.39
Apache Http Server 2.0.38
Apache Http Server 2.0.36
Apache Http Server 2.0
1 EDB exploit
755
VMScore
CVE-2002-0656
Buffer overflows in OpenSSL 0.9.6d and previous versions, and 0.9.7-beta2 and previous versions, allow remote malicious users to execute arbitrary code via (1) a large client master key in SSL2 or (2) a large session ID in SSL3.
Openssl Openssl 0.9.6a
Openssl Openssl 0.9.6b
Openssl Openssl 0.9.6c
Openssl Openssl 0.9.6d
Openssl Openssl 0.9.1c
Openssl Openssl 0.9.2b
Openssl Openssl 0.9.3
Oracle Application Server 1.0.2.1s
Oracle Application Server 1.0.2.2
Oracle Corporate Time Outlook Connector 3.1
Oracle Corporate Time Outlook Connector 3.1.1
Openssl Openssl 0.9.4
Openssl Openssl 0.9.5a
Openssl Openssl 0.9.7
Oracle Application Server 1.0.2
Oracle Corporate Time Outlook Connector 3.1.2
Oracle Http Server 9.0.1
Openssl Openssl 0.9.5
Openssl Openssl 0.9.6
Oracle Application Server
Oracle Corporate Time Outlook Connector 3.3
Oracle Http Server 9.2.0
1 EDB exploit
755
VMScore
CVE-2002-0061
Apache for Win32 prior to 1.3.24, and 2.0.x prior to 2.0.34-beta, allows remote malicious users to execute arbitrary commands via shell metacharacters (a | pipe character) provided as arguments to batch (.bat) or .cmd scripts, which are sent unfiltered to the shell interpreter, t...
Apache Http Server
1 EDB exploit
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-5324
path traversal
CVE-2024-4743
CVE-2024-5184
TCP
CVE-2024-27822
code injection
CVE-2024-28995
CVE-2023-20938
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
2
3
4
5
6
7
8
9
10
NEXT »