Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
proxy vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2021-21322
fastify-http-proxy is an npm package which is a fastify plugin for proxying your http requests to another server, with hooks. By crafting a specific URL, it is possible to escape the prefix of the proxied backend service. If the base url of the proxied server is `/pub/`, a user e...
Fastify-http-proxy Project Fastify-http-proxy
NA
CVE-2023-3893
A security issue exists in Kubernetes where a user that can create pods on Windows nodes running kubernetes-csi-proxy may be able to escalate to admin privileges on those nodes. Kubernetes clusters are only affected if they include Windows nodes running kubernetes-csi-proxy.
Kubernetes Csi Proxy 2.0.0
Kubernetes Csi Proxy
10
CVSSv2
CVE-2002-2236
Format string vulnerability in the awp_log function in apt-www-proxy 0.1 allows remote malicious users to execute arbitrary code.
Apt-www-proxy Apt-www-proxy 1.0
5
CVSSv2
CVE-2002-2286
The parse-get function in utils.c for apt-www-proxy 0.1 allows remote malicious users to cause a denial of service (crash) via an empty HTTP request, which causes a null dereference.
Apt-www-proxy Apt-www-proxy 0.1
5
CVSSv2
CVE-2008-3683
Unspecified vulnerability in the FTP subsystem in Sun Java System Web Proxy Server 4.0 up to and including 4.0.5 before SP6 allows remote malicious users to cause a denial of service (failure to accept connections) via unknown vectors, probably related to exhaustion of file descr...
Sun Java System Web Proxy Server 4.0.1
Sun Java System Web Proxy Server 4.0.2
Sun Java System Web Proxy Server 4.0.4
Sun Java System Web Proxy Server 4
Sun Java System Web Proxy Server 4.0.3
Sun Java System Web Proxy Server 4.0.5
5
CVSSv2
CVE-1999-1481
Squid 2.2.STABLE5 and below, when using external authentication, allows malicious users to bypass access controls via a newline in the user/password pair.
National Science Foundation Squid Web Proxy 1.0novm
National Science Foundation Squid Web Proxy 1.1
National Science Foundation Squid Web Proxy 1.0
National Science Foundation Squid Web Proxy 2.1
National Science Foundation Squid Web Proxy 2.2
1 EDB exploit
9.3
CVSSv2
CVE-2017-16659
The Gentoo mail-filter/assp package 1.9.8.13030 and previous versions allows local users to gain privileges by leveraging access to the assp user account to install a Trojan horse /usr/share/assp/assp.pl script.
Anti-spam Smtp Proxy Project Anti-spam Smtp Proxy
5
CVSSv2
CVE-2004-2479
Squid Web Proxy Cache 2.5 might allow remote malicious users to obtain sensitive information via URLs containing invalid hostnames that cause DNS operations to fail, which results in references to previously used error messages.
National Science Foundation Squid Web Proxy Cache 2.5 Stable4
National Science Foundation Squid Web Proxy Cache 2.5 Stable5
National Science Foundation Squid Web Proxy Cache 2.5 Stable1
National Science Foundation Squid Web Proxy Cache 2.5 Stable6
National Science Foundation Squid Web Proxy Cache 2.5 Stable7
National Science Foundation Squid Web Proxy Cache 2.5 Stable2
National Science Foundation Squid Web Proxy Cache 2.5 Stable3
5
CVSSv2
CVE-2016-6023
Directory traversal vulnerability in the Configuration Manager in IBM Sterling Secure Proxy (SSP) 3.4.2 prior to 3.4.2.0 iFix 8 and 3.4.3 prior to 3.4.3.0 iFix 1 allows remote malicious users to read arbitrary files via a crafted URL.
Ibm Sterling Secure Proxy 3.4.2.0
Ibm Sterling Secure Proxy 3.4.3.0
5.8
CVSSv2
CVE-2016-6027
The Configuration Manager in IBM Sterling Secure Proxy (SSP) 3.4.2 prior to 3.4.2.0 iFix 8 and 3.4.3 prior to 3.4.3.0 iFix 1 does not enable the HSTS protection mechanism, which makes it easier for remote malicious users to obtain sensitive information or modify data by leveragin...
Ibm Sterling Secure Proxy 3.4.3.0
Ibm Sterling Secure Proxy 3.4.2.0
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-4463
CVE-2024-29895
inject
CVE-2023-52689
CVE-2024-5049
CVE-2024-5051
privilege escalation
physical
CVE-2023-52676
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »