Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
http file server vulnerabilities and exploits
(subscribe to this query)
4.6
CVSSv3
CVE-2023-46918
Phlox com.phlox.simpleserver.plus (aka Simple HTTP Server PLUS) 1.8.1-plus has an Android manifest file that contains an entry with the android:allowBackup attribute set to true. This could be leveraged by an attacker with physical access to the device.
Fedirtsapana Simple Http Server Plus 1.8.1-plus
NA
CVE-2009-3720
The updatePosition function in lib/xmltok_impl.c in libexpat in Expat 2.0.1, as used in Python, PyXML, w3c-libwww, and other software, allows context-dependent malicious users to cause a denial of service (application crash) via an XML document with crafted UTF-8 sequences that t...
Libexpat Project Libexpat 2.0.1
Apache Http Server
NA
CVE-2009-3560
The big2_toUtf8 function in lib/xmltok.c in libexpat in Expat 2.0.1, as used in the XML-Twig module for Perl, allows context-dependent malicious users to cause a denial of service (application crash) via an XML document with malformed UTF-8 sequences that trigger a buffer over-re...
Libexpat Project Libexpat 2.0.1
Apache Http Server
7.5
CVSSv3
CVE-2021-4181
Crash in the Sysdig Event dissector in Wireshark 3.6.0 and 3.4.0 to 3.4.10 allows denial of service via packet injection or crafted capture file
Wireshark Wireshark 3.6.0
Wireshark Wireshark
Fedoraproject Fedora 34
Fedoraproject Fedora 35
Debian Debian Linux 9.0
Oracle Http Server 12.2.1.3.0
Oracle Http Server 12.2.1.4.0
Oracle Zfs Storage Appliance Kit 8.8
7.5
CVSSv3
CVE-2021-4184
Infinite loop in the BitTorrent DHT dissector in Wireshark 3.6.0 and 3.4.0 to 3.4.10 allows denial of service via packet injection or crafted capture file
Wireshark Wireshark 3.6.0
Wireshark Wireshark
Fedoraproject Fedora 34
Fedoraproject Fedora 35
Debian Debian Linux 9.0
Oracle Http Server 12.2.1.3.0
Oracle Http Server 12.2.1.4.0
Oracle Zfs Storage Appliance Kit 8.8
7.5
CVSSv3
CVE-2021-4185
Infinite loop in the RTMPT dissector in Wireshark 3.6.0 and 3.4.0 to 3.4.10 allows denial of service via packet injection or crafted capture file
Wireshark Wireshark 3.6.0
Wireshark Wireshark
Fedoraproject Fedora 34
Fedoraproject Fedora 35
Debian Debian Linux 9.0
Oracle Http Server 12.2.1.3.0
Oracle Http Server 12.2.1.4.0
Oracle Zfs Storage Appliance Kit 8.8
9.8
CVSSv3
CVE-2022-25236
xmlparse.c in Expat (aka libexpat) prior to 2.4.5 allows malicious users to insert namespace-separator characters into namespace URIs.
Libexpat Project Libexpat
Debian Debian Linux 10.0
Debian Debian Linux 11.0
Oracle Http Server 12.2.1.3.0
Oracle Http Server 12.2.1.4.0
Oracle Zfs Storage Appliance Kit 8.8
Siemens Sinema Remote Connect Server
4.9
CVSSv3
CVE-2018-0196
A vulnerability in the web-based user interface (web UI) of Cisco IOS XE Software could allow an authenticated, remote malicious user to write arbitrary files to the operating system of an affected device. The vulnerability is due to insufficient input validation of HTTP requests...
Cisco Ios Xe 16.1.2
Cisco Ios Xe 16.2.0
Cisco Ios Xe 16.3(1)
NA
CVE-1999-0067
phf CGI program allows remote command execution through shell metacharacters.
Apache Http Server 1.0.3
Ncsa Ncsa Httpd 1.5a
2 Github repositories
NA
CVE-2013-4407
HTTP::Body::Multipart in the HTTP-Body module for Perl (1.07 up to and including 1.22, prior to 1.23) uses the part of the uploaded file's name after the first "." character as the suffix of a temporary file, which makes it easier for remote malicious users to cond...
Http-body Project Http-body 1.05
Http-body Project Http-body 1.01
Http-body Project Http-body 0.2
Http-body Project Http-body 0.9
Http-body Project Http-body
Http-body Project Http-body 0.8
Http-body Project Http-body 0.5
Http-body Project Http-body 1.12
Http-body Project Http-body 1.04
Http-body Project Http-body 1.10
Http-body Project Http-body 1.02
Http-body Project Http-body 0.4
Http-body Project Http-body 1.08
Http-body Project Http-body 0.6
Http-body Project Http-body 0.03
Http-body Project Http-body 1.14
Http-body Project Http-body 1.07
Http-body Project Http-body 1.15
Http-body Project Http-body 1.00
Http-body Project Http-body 0.7
Http-body Project Http-body 1.09
Http-body Project Http-body 1.11
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-37316
firmware
CVE-2024-30078
CVE-2024-5995
remote code execution
logic flaw
CVE-2024-20693
CVE-2024-37315
CVE-2024-5464
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
2
3
4
5
6
7
8
9
10
NEXT »