Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
http server vulnerabilities and exploits
(subscribe to this query)
950
VMScore
CVE-2008-5674
Multiple array index errors in the HTTP server in Darkwet Network webcamXP 3.72.440.0 and previous versions and beta 4.05.280 and previous versions allow remote malicious users to cause a denial of service (device crash) and read portions of memory via (1) an invalid camnum param...
Darkwet Webcam Xp 3.72
Darkwet Webcam Xp 2.20
Darkwet Webcam Xp 1.6.945
Darkwet Webcam Xp 1.02.432
Darkwet Webcam Xp 1.02.535
Darkwet Webcam Xp
2 EDB exploits
950
VMScore
CVE-2002-2268
Buffer overflow in Webster HTTP Server allows remote malicious users to execute arbitrary code via a long URL.
Netdave Webster Http Server
2 EDB exploits
1 Github repository
950
VMScore
CVE-2001-0537
HTTP server for Cisco IOS 11.3 to 12.2 allows malicious users to bypass authentication and execute arbitrary commands, when local authorization is being used, by specifying a high access level in the URL.
Cisco Ios 12.1xg
Cisco Ios 12.0xc
Cisco Ios 11.3xa
Cisco Ios 12.0xr
Cisco Ios 12.1xm
Cisco Ios 12.1xi
Cisco Ios 12.0st
Cisco Ios 12.1e
Cisco Ios 12.1xc
Cisco Ios 11.3ma
Cisco Ios 12.1xp
Cisco Ios 12.1ya
Cisco Ios 12.1yd
Cisco Ios 12.0dc
Cisco Ios 12.0xq
Cisco Ios 12.1xs
Cisco Ios 12.2xe
Cisco Ios 12.0xe
Cisco Ios 12.1xy
Cisco Ios 12.0xd
Cisco Ios 11.3na
Cisco Ios 12.1xz
4 EDB exploits
940
VMScore
CVE-2022-20828
A vulnerability in the CLI parser of Cisco FirePOWER Software for Adaptive Security Appliance (ASA) FirePOWER module could allow an authenticated, remote malicious user to execute arbitrary commands on the underlying operating system of an affected ASA FirePOWER module as the roo...
Cisco Asa Firepower
1 Metasploit module
1 Github repository
1 Article
940
VMScore
CVE-2021-25296
Nagios XI version xi-5.7.5 is affected by OS command injection. The vulnerability exists in the file /usr/local/nagiosxi/html/includes/configwizards/windowswmi/windowswmi.inc.php due to improper sanitization of authenticated user-controlled input by a single HTTP request, which c...
Nagios Nagios Xi 5.7.5
1 Metasploit module
1 Github repository
940
VMScore
CVE-2021-25297
Nagios XI version xi-5.7.5 is affected by OS command injection. The vulnerability exists in the file /usr/local/nagiosxi/html/includes/configwizards/switch/switch.inc.php due to improper sanitization of authenticated user-controlled input by a single HTTP request, which can lead ...
Nagios Nagios Xi 5.7.5
1 Metasploit module
1 Github repository
940
VMScore
CVE-2021-25298
Nagios XI version xi-5.7.5 is affected by OS command injection. The vulnerability exists in the file /usr/local/nagiosxi/html/includes/configwizards/cloud-vm/cloud-vm.inc.php due to improper sanitization of authenticated user-controlled input by a single HTTP request, which can l...
Nagios Nagios Xi 5.7.5
1 Metasploit module
1 Github repository
940
VMScore
CVE-2009-4769
Multiple format string vulnerabilities in the tolog function in httpdx 1.4, 1.4.5, 1.4.6, 1.4.6b, and 1.5 allow (1) remote malicious users to execute arbitrary code via format string specifiers in a GET request to the HTTP server component when logging is enabled, and allow (2) r...
Jasper Httpdx 1.4.6b
Jasper Httpdx 1.4
Jasper Httpdx 1.4.5
Jasper Httpdx 1.4.6
Jasper Httpdx 1.5
2 EDB exploits
937
VMScore
CVE-2019-0232
When running on Windows with enableCmdLineArguments enabled, the CGI Servlet in Apache Tomcat 9.0.0.M1 to 9.0.17, 8.5.0 to 8.5.39 and 7.0.0 to 7.0.93 is vulnerable to Remote Code Execution due to a bug in the way the JRE passes command line arguments to Windows. The CGI Servlet i...
Apache Tomcat
Apache Tomcat 9.0.0
1 EDB exploit
8 Github repositories
935
VMScore
CVE-2019-8672
Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, watchOS 5.3, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing maliciously crafte...
Apple Icloud
Apple Itunes
Apple Safari
Apple Iphone Os
Apple Mac Os X
Apple Tvos
Apple Watchos
Redhat Enterprise Linux Desktop 7.0
Redhat Enterprise Linux Server 7.0
Redhat Enterprise Linux Workstation 7.0
1 EDB exploit
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-22120
CVE-2024-35921
CVE-2024-35874
brute force
CVE-2024-36080
unprivileged
CVE-2024-35917
IDOR
CVE-2024-4947
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
2
3
4
5
6
7
8
9
10
NEXT »