Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
apache http server 1.2 vulnerabilities and exploits
(subscribe to this query)
5
CVSSv2
CVE-2004-0173
Directory traversal vulnerability in Apache 1.3.29 and previous versions, and Apache 2.0.48 and previous versions, when running on Cygwin, allows remote malicious users to read arbitrary files via a URL containing "..%5C" (dot dot encoded backslash) sequences.
Apache Http Server 0.8.11
Apache Http Server 0.8.14
Apache Http Server 1.0
Apache Http Server 1.0.2
Apache Http Server 1.0.3
Apache Http Server 1.0.5
Apache Http Server 1.1
Apache Http Server 1.1.1
Apache Http Server 1.2
Apache Http Server 1.2.5
Apache Http Server 1.3
1 EDB exploit
5
CVSSv2
CVE-1999-0107
Buffer overflow in Apache 1.2.5 and previous versions allows a remote malicious user to cause a denial of service with a large number of GET requests containing a large number of / characters.
Apache Http Server 0.8.11
Apache Http Server 0.8.14
Apache Http Server 1.0
Apache Http Server 1.0.2
Apache Http Server 1.0.3
Apache Http Server 1.0.5
Apache Http Server 1.1
Apache Http Server 1.1.1
Apache Http Server 1.2.5
1 EDB exploit
6.8
CVSSv2
CVE-2010-0010
Integer overflow in the ap_proxy_send_fb function in proxy/proxy_util.c in mod_proxy in the Apache HTTP Server prior to 1.3.42 on 64-bit platforms allows remote origin servers to cause a denial of service (daemon crash) or possibly execute arbitrary code via a large chunk size th...
Apache Http Server
Apache Http Server 0.8.11
Apache Http Server 0.8.14
Apache Http Server 1.0
Apache Http Server 1.0.3
Apache Http Server 1.0.5
Apache Http Server 1.1
Apache Http Server 1.2
Apache Http Server 1.2.4
Apache Http Server 1.2.5
Apache Http Server 1.2.6
Apache Http Server 1.3
5
CVSSv2
CVE-2004-0263
PHP 4.3.4 and previous versions in Apache 1.x and 2.x (mod_php) can leak global variables between virtual hosts that are handled by the same Apache child process but have different settings, which could allow remote malicious users to obtain sensitive information.
Apache Http Server 1.0
Apache Http Server 1.0.2
Apache Http Server 1.0.3
Apache Http Server 1.0.5
Apache Http Server 1.1
Apache Http Server 1.1.1
Apache Http Server 1.2
Apache Http Server 1.2.5
Apache Http Server 1.3
Apache Http Server 1.3.1
Apache Http Server 1.3.3
Apache Http Server 1.3.4
5
CVSSv2
CVE-2007-6750
The Apache HTTP Server 1.x and 2.x allows remote malicious users to cause a denial of service (daemon outage) via partial HTTP requests, as demonstrated by Slowloris, related to the lack of the mod_reqtimeout module in versions prior to 2.2.15.
Apache Http Server
Apache Http Server 1.0
Apache Http Server 1.0.2
Apache Http Server 1.0.3
Apache Http Server 1.0.5
Apache Http Server 1.1
Apache Http Server 1.1.1
Apache Http Server 1.2
Apache Http Server 1.2.4
Apache Http Server 1.2.5
Apache Http Server 1.2.6
Apache Http Server 1.2.9
1 Nmap script
12 Github repositories
5
CVSSv2
CVE-2007-1860
mod_jk in Apache Tomcat JK Web Server Connector 1.2.x prior to 1.2.23 decodes request URLs within the Apache HTTP Server before passing the URL to Tomcat, which allows remote malicious users to access protected pages via a crafted prefix JkMount, possibly involving double-encoded...
Apache Tomcat Jk Web Server Connector
3 Github repositories
7.5
CVSSv2
CVE-2014-0050
MultipartStream.java in Apache Commons FileUpload prior to 1.3.1, as used in Apache Tomcat, JBoss Web, and other products, allows remote malicious users to cause a denial of service (infinite loop and CPU consumption) via a crafted Content-Type header that bypasses a loop's ...
Oracle Retail Applications 12.0
Oracle Retail Applications 12.0in
Oracle Retail Applications 13.0
Oracle Retail Applications 13.1
Oracle Retail Applications 13.2
Oracle Retail Applications 13.3
Oracle Retail Applications 13.4
Oracle Retail Applications 14.0
Apache Commons Fileupload
Apache Commons Fileupload 1.0
Apache Commons Fileupload 1.1
Apache Commons Fileupload 1.1.1
1 EDB exploit
2 Github repositories
7.5
CVSSv2
CVE-2007-1720
Directory traversal vulnerability in addressbook.php in the Addressbook 1.2 module for PHP-Nuke allows remote malicious users to include and execute arbitrary local files via a .. (dot dot) in the module_name parameter, as demonstrated by injecting PHP sequences into an Apache HT...
Sb-websoft Addressbook 1.2
1 EDB exploit
7.5
CVSSv3
CVE-2018-1308
This vulnerability in Apache Solr 1.2 to 6.6.2 and 7.0.0 to 7.2.1 relates to an XML external entity expansion (XXE) in the `&dataConfig=<inlinexml>` parameter of Solr's DataImportHandler. It can be used as XXE using file/ftp/http protocols in order to read arbitrar...
Apache Solr
Debian Debian Linux 7.0
Debian Debian Linux 8.0
Debian Debian Linux 9.0
7.5
CVSSv2
CVE-2007-5156
Incomplete blacklist vulnerability in editor/filemanager/upload/php/upload.php in FCKeditor, as used in SiteX CMS 0.7.3.beta, La-Nai CMS, Syntax CMS, Cardinal Cms, and probably other products, allows remote malicious users to upload and execute arbitrary PHP code via a file whose...
Cardinal Cms Project Cardinal Cms 1.2
Redlinesoft Lanai Cms
Sitex Cms Project Sitex Cms 0.7.3
Syntax Cms Project Syntax Cms
2 EDB exploits
Preferred Score:
CVSSv3
CVSSv2
CVSSv3
CVSSv4
EPSS
VMScore
Recommendations:
CVE-2024-6437
CVE-2024-47517
CVE-2024-9131
CVE-2025-0283
insecure direct object reference
CVE-2024-49113
reflected XSS
firmware
CVE-2024-54847
Home
/
Search Results
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
NEXT »