Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
http-proxy vulnerabilities and exploits
(subscribe to this query)
9.1
CVSSv3
CVE-2024-1359
A command injection vulnerability was identified in GitHub Enterprise Server that allowed an attacker with an editor role in the Management Console to gain admin SSH access to the appliance when setting up an HTTP proxy. Exploitation of this vulnerability required access to the G...
Github Enterprise Server
NA
CVE-2024-27140
** UNSUPPORTED WHEN ASSIGNED ** Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Apache Archiva. This issue affects Apache Archiva: from 2.0.0. As this project is retired, we do not plan to release a version that fixe...
NA
CVE-2005-1121
Format string vulnerability in the my_xlog function in lib.c for Oops! Proxy Server 1.5.23 and previous versions, as called by the auth functions in the passwd_mysql and passwd_pgsql modules, may allow malicious users to execute arbitrary code via a URL.
Igor Khasilev Oops Proxy Server 1.4.22
Igor Khasilev Oops Proxy Server 1.5.19
Igor Khasilev Oops Proxy Server 1.5.53
Gentoo Linux
NA
CVE-2007-5273
Sun Java Runtime Environment (JRE) in JDK and JRE 6 Update 2 and previous versions, JDK and JRE 5.0 Update 12 and previous versions, SDK and JRE 1.4.2_15 and previous versions, and SDK and JRE 1.3.1_20 and previous versions, when an HTTP proxy server is used, allows remote malici...
Sun Jdk 1.5.0
Sun Jdk 1.6.0
Sun Jre 1.3.0
Sun Jre 1.3.1
Sun Jre 1.4
Sun Jre 1.4.2 1
Sun Jre 1.4.2 10
Sun Jre 1.4.2 9
Sun Jre 1.5.0
Sun Sdk 1.3.1 01a
Sun Sdk 1.3.1 16
Sun Sdk 1.4.2 10
Sun Sdk 1.4.2 11
Sun Jre 1.4.2 11
Sun Jre 1.4.2 12
Sun Jre 1.4.2 13
Sun Sdk 1.3.1 18
Sun Sdk 1.3.1 19
Sun Sdk 1.3.1 20
Sun Sdk 1.4.2 12
Sun Sdk 1.4.2 13
Sun Jre 1.4.2 14
5.3
CVSSv3
CVE-2022-24825
Smokescreen is a simple HTTP proxy that fogs over naughty URLs. The primary use case for Smokescreen is to prevent server-side request forgery (SSRF) attacks in which external attackers leverage the behavior of applications to connect to or scan internal infrastructure. Smokescre...
Stripe Smokescreen
9.1
CVSSv3
CVE-2021-32714
hyper is an HTTP library for Rust. In versions before 0.14.10, hyper's HTTP server and client code had a flaw that could trigger an integer overflow when decoding chunk sizes that are too big. This allows possible data loss, or if combined with an upstream HTTP proxy that al...
Hyper Hyper
NA
CVE-2012-3505
Tinyproxy 1.8.3 and previous versions allows remote malicious users to cause a denial of service (CPU and memory consumption) via (1) a large number of headers or (2) a large number of forged headers that trigger hash collisions predictably. bucket.
Banu Tinyproxy 1.7.1
Banu Tinyproxy 1.6.0
Banu Tinyproxy 1.5.0
Banu Tinyproxy 1.5.2
Banu Tinyproxy 1.6.5
Banu Tinyproxy
Banu Tinyproxy 1.5.1
Banu Tinyproxy 1.5.3
Banu Tinyproxy 1.6.1
Banu Tinyproxy 1.6.4
Banu Tinyproxy 1.8.2
Banu Tinyproxy 1.7.0
Banu Tinyproxy 1.8.0
Banu Tinyproxy 1.6.2
Banu Tinyproxy 1.6.3
Banu Tinyproxy 1.8.1
NA
CVE-2015-1031
Multiple use-after-free vulnerabilities in Privoxy prior to 3.0.22 allow remote malicious users to have unspecified impact via vectors related to (1) the unmap function in list.c or (2) "two additional unconfirmed use-after-free complaints made by Coverity scan." NOTE: ...
Privoxy Privoxy
5.3
CVSSv3
CVE-2021-32715
hyper is an HTTP library for rust. hyper's HTTP/1 server code had a flaw that incorrectly parses and accepts requests with a `Content-Length` header with a prefixed plus sign, when it should have been rejected as illegal. This combined with an upstream HTTP proxy that doesn&...
Hyper Hyper
NA
CVE-2005-1109
The filtering of URLs in JunkBuster prior to 2.0.2-r3 allows remote malicious users to cause a denial of service (application crash) and possibly execute arbitrary code via heap corruption.
Junkbuster Internet Junkbuster 2.0.2
Junkbuster Internet Junkbuster 2.0.2 R2
Junkbuster Internet Junkbuster 2.0.1
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
camera
bypass
CVE-2024-3592
CVE-2024-37383
CVE-2024-24919
CVE-2024-27822
CVE-2024-36788
CVE-2024-36789
man-in-the-middle
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
2
3
4
5
6
7
8
9
10
NEXT »