Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
proxy vulnerabilities and exploits
(subscribe to this query)
516
VMScore
CVE-2021-21291
OAuth2 Proxy is an open-source reverse proxy and static file server that provides authentication using Providers (Google, GitHub, and others) to validate accounts by email, domain or group. In OAuth2 Proxy before version 7.0.0, for users that use the whitelist domain feature, a d...
Oauth2 Proxy Project Oauth2 Proxy
490
VMScore
CVE-2021-21411
OAuth2-Proxy is an open source reverse proxy that provides authentication with Google, Github or other providers. The `--gitlab-group` flag for group-based authorization in the GitLab provider stopped working in the v7.0.0 release. Regardless of the flag settings, authorization w...
Oauth2 Proxy Project Oauth2 Proxy
668
VMScore
CVE-2021-41739
A OS Command Injection vulnerability exists in Artica Proxy 4.30.000000. Attackers can execute OS commands in cyrus.events.php with GET param logs and POST param rp.
Artica-proxy Artica Proxy 4.30.000000
605
VMScore
CVE-2008-0633
Buffer overflow in Anon Proxy Server 0.102 and previous versions, when user authentication is enabled, allows remote malicious users to cause a denial of service (exception) via a user name with a large number of quotes, which triggers the overflow during escaping.
Anon Proxy Server Anon Proxy Server
1 EDB exploit
605
VMScore
CVE-2017-1000069
CSRF in Bitly oauth2_proxy 2.1 during authentication flow
Oauth2 Proxy Project Oauth2 Proxy 2.1
890
VMScore
CVE-2008-4541
Heap-based buffer overflow in the FTP subsystem in Sun Java System Web Proxy Server 4.0 up to and including 4.0.7 allows remote malicious users to execute arbitrary code via a crafted HTTP GET request.
Sun Java System Web Proxy Server 4.0
Sun Java System Web Proxy Server 4.0.1
Sun Java System Web Proxy Server 4.0.3
Sun Java System Web Proxy Server 4.0.4
Sun Java System Web Proxy Server 4.0.6
Sun Java System Web Proxy Server 4.0.5
Sun Java System Web Proxy Server 4.0.7
Sun Java System Web Proxy Server 4.0.2
890
VMScore
CVE-2002-2236
Format string vulnerability in the awp_log function in apt-www-proxy 0.1 allows remote malicious users to execute arbitrary code.
Apt-www-proxy Apt-www-proxy 1.0
685
VMScore
CVE-2007-6459
Anon Proxy Server 0.100, and probably 0.101, allows remote malicious users to execute arbitrary commands via shell metacharacters in (1) the host parameter to diagdns.php, and (2) the host parameter and possibly (3) the port parameter to diagconnect.php, a different vulnerability...
Anon Proxy Server Anon Proxy Server 0.100
1 EDB exploit
570
VMScore
CVE-2018-3739
https-proxy-agent prior to 2.1.1 passes auth option to the Buffer constructor without proper sanitization, resulting in DoS and uninitialized memory leak in setups where an attacker could submit typed input to the 'auth' parameter (e.g. JSON).
Https-proxy-agent Project Https-proxy-agent
NA
CVE-2023-3893
A security issue exists in Kubernetes where a user that can create pods on Windows nodes running kubernetes-csi-proxy may be able to escalate to admin privileges on those nodes. Kubernetes clusters are only affected if they include Windows nodes running kubernetes-csi-proxy.
Kubernetes Csi Proxy 2.0.0
Kubernetes Csi Proxy
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-29895
blind SQL injection
CVE-2024-5064
CVE-2023-52677
CVE-2023-52682
CVE-2024-30051
CVE-2024-35849
remote attackers
remote
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »