Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
an-http vulnerabilities and exploits
(subscribe to this query)
5
CVSSv2
CVE-1999-1178
Sambar Server 4.1 beta allows remote malicious users to obtain sensitive information about the server via an HTTP request for the dumpenv.pl script.
Sambar Sambar Server 4.1
5
CVSSv2
CVE-2011-4712
Directory traversal vulnerability in Oxide WebServer allows remote malicious users to read arbitrary files via a ..\ (dot dot backslash) in an HTTP request.
Monoxide0184 Oxide Webserver
1 EDB exploit
5
CVSSv2
CVE-2004-1743
Easy File Sharing (EFS) Webserver 1.25 allows remote malicious users to view arbitrary files via an HTTP request for the disk_c virtual folder.
Efs Software Efs Web Server 1.25
Efs Software Efs Web Server 1.2
7.1
CVSSv2
CVE-2020-8492
Python 2.7 up to and including 2.7.17, 3.5 up to and including 3.5.9, 3.6 up to and including 3.6.10, 3.7 up to and including 3.7.6, and 3.8 up to and including 3.8.1 allows an HTTP server to conduct Regular Expression Denial of Service (ReDoS) attacks against a client because of...
Python Python
Opensuse Leap 15.1
Canonical Ubuntu Linux 18.04
Canonical Ubuntu Linux 14.04
Canonical Ubuntu Linux 19.10
Canonical Ubuntu Linux 20.04
Canonical Ubuntu Linux 16.04
Canonical Ubuntu Linux 12.04
Fedoraproject Fedora 31
Fedoraproject Fedora 32
Debian Debian Linux 9.0
7.5
CVSSv2
CVE-2020-8427
In Unitrends Backup prior to 10.4.1, an HTTP request parameter was not properly sanitized, allowing for SQL injection that resulted in an authentication bypass.
Unitrends Backup
5
CVSSv2
CVE-2002-1021
BadBlue server allows remote malicious users to read restricted files, such as EXT.INI, via an HTTP request that contains a hex-encoded null byte.
Working Resources Inc. Badblue 1.7.3 Personal
Working Resources Inc. Badblue 1.7.3 Enterprise
1 EDB exploit
5
CVSSv2
CVE-2004-1887
Ada Image Server (ImgSvr) 0.4 allows remote malicious users to view directories or download files via an HTTP request with a trailing %00 (null).
Ada Imgsvr 0.4
2 EDB exploits
7.5
CVSSv2
CVE-2001-1048
AWOL PHP script allows remote malicious users to include arbitrary files from remote web sites via an HTTP request that sets the includedir variable.
Topher1kenobe Awol 2.1
Topher1kenobe Awol 1.0
Topher1kenobe Awol 1.2.1
Topher1kenobe Awol 2.01
Topher1kenobe Awol 2.0
Topher1kenobe Awol 1.2
Topher1kenobe Awol 1.0.1
7.5
CVSSv2
CVE-2001-1052
Empris PHP script allows remote malicious users to include arbitrary files from remote web sites via an HTTP request that sets the includedir variable.
Emergenices Personnel Information System Empris 2001-08-10
Emergenices Personnel Information System Empris 2001-09-08
Emergenices Personnel Information System Empris 0.4
7.5
CVSSv2
CVE-2001-1054
PHPAdsNew PHP script allows remote malicious users to include arbitrary files from remote web sites via an HTTP request that sets the includedir variable.
Phpadsnew Phpadsnew 2.0 Beta5
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-5841
file upload
man-in-the-middle
arbitrary
CVE-2024-27801
CVE-2024-28020
CVE-2024-30080
CVE-2024-30069
CVE-2024-5843
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
3
4
5
6
7
8
9
10
NEXT »