Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
http server vulnerabilities and exploits
(subscribe to this query)
10
CVSSv2
CVE-2018-0101
A vulnerability in the Secure Sockets Layer (SSL) VPN functionality of the Cisco Adaptive Security Appliance (ASA) Software could allow an unauthenticated, remote malicious user to cause a reload of the affected system or to remotely execute code. The vulnerability is due to an a...
Cisco Adaptive Security Appliance Software
Cisco Firepower Threat Defense 6.0.0
Cisco Firepower Threat Defense 6.0.1
Cisco Firepower Threat Defense 6.2.0
Cisco Firepower Threat Defense 6.1.0
Cisco Firepower Threat Defense 6.2.2
Cisco Firepower Threat Defense 6.2.1
1 EDB exploit
6 Github repositories
10
CVSSv2
CVE-2018-5997
An issue exists in the HTTP Server in RAVPower Filehub 2.000.056. Due to an unrestricted upload feature and a path traversal vulnerability, it is possible to upload a file on a filesystem with root privileges: this will lead to remote code execution as root.
Ravpower Filehub Firmware 2.000.056
1 EDB exploit
10
CVSSv2
CVE-2014-8389
cgi-bin/mft/wireless_mft.cgi in AirLive BU-2015 with firmware 1.03.18 16.06.2014, AirLive BU-3026 with firmware 1.43 21.08.2014, AirLive MD-3025 with firmware 1.81 21.08.2014, AirLive WL-2000CAM with firmware LM.1.6.18 14.10.2011, and AirLive POE-200CAM v2 with firmware LM.1.6.17...
Airlive Bu-3026 Firmware 1.43 21.08.2014
Airlive Md-3025 Firmware 1.81 21.08.2014
Airlive Wl-2000cam Firmware Lm.1.6.18 14.10.2011
Airlive Poe-200cam V2 Firmware Lm.1.6.17.01
Airlive Bu-2015 Firmware 1.03.18 16.06.2014
10
CVSSv2
CVE-2017-16934
The web server on DBL DBLTek devices allows remote malicious users to execute arbitrary OS commands by obtaining the admin password via a frame.html?content=/dev/mtdblock/5 request, and then using this password for the HTTP Basic Authentication needed for a change_password.csp re...
Dbltek Web Server -
1 EDB exploit
10
CVSSv2
CVE-2017-12635
Due to differences in the Erlang-based JSON parser and JavaScript-based JSON parser, it is possible in Apache CouchDB prior to 1.7.0 and 2.x prior to 2.1.1 to submit _users documents with duplicate keys for 'roles' used for access control within the database, including ...
Apache Couchdb
Apache Couchdb 2.0.0
2 EDB exploits
6 Github repositories
10
CVSSv2
CVE-2017-12229
A vulnerability in the REST API of the web-based user interface (web UI) of Cisco IOS XE 3.1 up to and including 16.5 could allow an unauthenticated, remote malicious user to bypass authentication to the REST API of the web UI of the affected software. The vulnerability is due to...
Cisco Ios Xe 16.1.2
Cisco Ios Xe 3.8.0ex
Cisco Ios Xe 16.1.4
Cisco Ios Xe 16.5.1a
Cisco Ios Xe 3.2.0ja
Cisco Ios Xe 3.1.3as
Cisco Ios Xe 3.4.7asg
Cisco Ios Xe 16.5.1c
Cisco Ios Xe 3.18.3vs
Cisco Ios Xe 16.1.3a
Cisco Ios Xe 16.2.2a
Cisco Ios Xe 16.1.1
Cisco Ios Xe 3.6.5be
Cisco Ios Xe 16.1.3
Cisco Ios Xe 16.3.1a
Cisco Ios Xe 16.2.1
Cisco Ios Xe 3.2.1xo
10
CVSSv2
CVE-2017-12240
The DHCP relay subsystem of Cisco IOS 12.2 up to and including 15.6 and Cisco IOS XE Software contains a vulnerability that could allow an unauthenticated, remote malicious user to execute arbitrary code and gain full control of an affected system. The attacker could also cause a...
Cisco Ios 12.1\\(5a\\)
Cisco Ios 15.5\\(3\\)m4
Cisco Ios 12.3\\(2\\)t1
Cisco Ios 12.2\\(20\\)se2
Cisco Ios 15.3\\(3\\)ja1m
Cisco Ios 12.3\\(9d\\)
Cisco Ios 12.3\\(1\\)
Cisco Ios 12.4\\(4\\)xc5
Cisco Ios 12.2\\(58\\)se1
Cisco Ios 12.3\\(7\\)t12
Cisco Ios 12.2\\(2\\)bx1
Cisco Ios 12.4\\(15\\)xl3
Cisco Ios 12.3\\(11\\)ja4
Cisco Ios 12.2\\(2\\)yc1
Cisco Ios 12.2\\(8\\)yw3
Cisco Ios 15.0\\(2\\)ey1
Cisco Ios 12.1\\(10\\)e3
Cisco Ios 12.1\\(10\\)e2
Cisco Ios 12.2\\(46\\)ey
Cisco Ios 12.2\\(2\\)xh1
Cisco Ios 12.4\\(7c\\)
Cisco Ios 12.4\\(3g\\)ja1
10
CVSSv2
CVE-2015-5168
Unspecified vulnerability in the HTTP/2 experimental feature in Apache Traffic Server 5.3.x prior to 5.3.2 has unknown impact and attack vectors, a different vulnerability than CVE-2015-5206.
Apache Traffic Server 5.3.1
Apache Traffic Server 5.3.0
10
CVSSv2
CVE-2015-5206
Unspecified vulnerability in the HTTP/2 experimental feature in Apache Traffic Server prior to 5.3.x prior to 5.3.2 has unknown impact and attack vectors, a different vulnerability than CVE-2015-5168.
Apache Traffic Server 5.3.1
Apache Traffic Server 5.3.0
10
CVSSv2
CVE-2017-7269
Buffer overflow in the ScStoragePathFromUrl function in the WebDAV service in Internet Information Services (IIS) 6.0 in Microsoft Windows Server 2003 R2 allows remote malicious users to execute arbitrary code via a long header beginning with "If: <http://" in a PROP...
Microsoft Internet Information Server 6.0
2 EDB exploits
21 Github repositories
2 Articles
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-22460
CVE-2024-4646
CVE-2024-29212
IMAP
CVE-2023-36672
CVE-2024-34547
command injection
CVE-2024-4651
stored XSS
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »