Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

apache vulnerabilities and exploits

(subscribe to this query)

7.5
CVSSv3
CVE-2017-5647
A bug in the handling of the pipelined requests in Apache Tomcat 9.0.0.M1 to 9.0.0.M18, 8.5.0 to 8.5.12, 8.0.0.RC1 to 8.0.42, 7.0.0 to 7.0.76, and 6.0.0 to 6.0.52, when send file was used, results in the pipelined request being lost when send file processing of the previous...
Apache Tomcat 6.0.1Apache Tomcat 6.0.2Apache Tomcat 6.0.9Apache Tomcat 6.0.10Apache Tomcat 6.0.11Apache Tomcat 6.0.18Apache Tomcat 6.0.19Apache Tomcat 6.0.26Apache Tomcat 6.0.27Apache Tomcat 6.0.35Apache Tomcat 6.0.36Apache Tomcat 6.0.43Apache Tomcat 6.0.44Apache Tomcat 6.0.52Apache Tomcat 6.0.0Apache Tomcat 6.0.7Apache Tomcat 6.0.8Apache Tomcat 6.0.16Apache Tomcat 6.0.17Apache Tomcat 6.0.24Apache Tomcat 6.0.25Apache Tomcat 6.0.32Apache Tomcat 6.0.33Apache Tomcat 6.0.34Apache Tomcat 6.0.41Apache Tomcat 6.0.42Apache Tomcat 6.0.50Apache Tomcat 6.0.51Apache Tomcat 6.0.5Apache Tomcat 6.0.6Apache Tomcat 6.0.14Apache Tomcat 6.0.15Apache Tomcat 6.0.22Apache Tomcat 6.0.23Apache Tomcat 6.0.48Apache Tomcat 6.0.49Apache Tomcat 6.0.3Apache Tomcat 6.0.4Apache Tomcat 6.0.12Apache Tomcat 6.0.13Apache Tomcat 6.0.20Apache Tomcat 6.0.21Apache Tomcat 6.0.28Apache Tomcat 6.0.29Apache Tomcat 6.0.37Apache Tomcat 6.0.38Apache Tomcat 6.0.45Apache Tomcat 6.0.46Apache Tomcat 6.0.30Apache Tomcat 6.0.31Apache Tomcat 6.0.39Apache Tomcat 6.0.40Apache Tomcat 6.0.47Apache Tomcat 7.0.73Apache Tomcat 7.0.74Apache Tomcat 7.0.4Apache Tomcat 7.0.5Apache Tomcat 7.0.12Apache Tomcat 7.0.13Apache Tomcat 7.0.21Apache Tomcat 7.0.22Apache Tomcat 7.0.29Apache Tomcat 7.0.30Apache Tomcat 7.0.37Apache Tomcat 7.0.38Apache Tomcat 7.0.39Apache Tomcat 7.0.46Apache Tomcat 7.0.47Apache Tomcat 7.0.54Apache Tomcat 7.0.55Apache Tomcat 7.0.63Apache Tomcat 7.0.64Apache Tomcat 7.0.71Apache Tomcat 7.0.72Apache Tomcat 7.0.75Apache Tomcat 7.0.76Apache Tomcat 7.0.6Apache Tomcat 7.0.7Apache Tomcat 7.0.14Apache Tomcat 7.0.15Apache Tomcat 7.0.16Apache Tomcat 7.0.23Apache Tomcat 7.0.24Apache Tomcat 7.0.31Apache Tomcat 7.0.32Apache Tomcat 7.0.40Apache Tomcat 7.0.41Apache Tomcat 7.0.48Apache Tomcat 7.0.49Apache Tomcat 7.0.56Apache Tomcat 7.0.57Apache Tomcat 7.0.65Apache Tomcat 7.0.66Apache Tomcat 7.0.0Apache Tomcat 7.0.1Apache Tomcat 7.0.8Apache Tomcat 7.0.9Apache Tomcat 7.0.17Apache Tomcat 7.0.18Apache Tomcat 7.0.25Apache Tomcat 7.0.26Apache Tomcat 7.0.33Apache Tomcat 7.0.34Apache Tomcat 7.0.42Apache Tomcat 7.0.43Apache Tomcat 7.0.50Apache Tomcat 7.0.51Apache Tomcat 7.0.58Apache Tomcat 7.0.59Apache Tomcat 7.0.67Apache Tomcat 7.0.68Apache Tomcat 7.0.2Apache Tomcat 7.0.3Apache Tomcat 7.0.10Apache Tomcat 7.0.11Apache Tomcat 7.0.19Apache Tomcat 7.0.20Apache Tomcat 7.0.27Apache Tomcat 7.0.28Apache Tomcat 7.0.35Apache Tomcat 7.0.36Apache Tomcat 7.0.44Apache Tomcat 7.0.45Apache Tomcat 7.0.52Apache Tomcat 7.0.53Apache Tomcat 7.0.60Apache Tomcat 7.0.61Apache Tomcat 7.0.62Apache Tomcat 7.0.69Apache Tomcat 7.0.70Apache Tomcat 8.0.40Apache Tomcat 8.0.41Apache Tomcat 8.0.4Apache Tomcat 8.0.5Apache Tomcat 8.0.12Apache Tomcat 8.0.13Apache Tomcat 8.0.21Apache Tomcat 8.0.22Apache Tomcat 8.0.29Apache Tomcat 8.0.30Apache Tomcat 8.0.37Apache Tomcat 8.0.38Apache Tomcat 8.0.39Apache Tomcat 8.0.2Apache Tomcat 8.0.3Apache Tomcat 8.0.10Apache Tomcat 8.0.11Apache Tomcat 8.0.19Apache Tomcat 8.0.20Apache Tomcat 8.0.27Apache Tomcat 8.0.28Apache Tomcat 8.0.35Apache Tomcat 8.0.36Apache Tomcat 8.0.0Apache Tomcat 8.0.1Apache Tomcat 8.0.8Apache Tomcat 8.0.9Apache Tomcat 8.0.16Apache Tomcat 8.0.17Apache Tomcat 8.0.18Apache Tomcat 8.0.25Apache Tomcat 8.0.26Apache Tomcat 8.0.33Apache Tomcat 8.0.34Apache Tomcat 8.0.42Apache Tomcat 8.0.6Apache Tomcat 8.0.7Apache Tomcat 8.0.14Apache Tomcat 8.0.15Apache Tomcat 8.0.23Apache Tomcat 8.0.24Apache Tomcat 8.0.31Apache Tomcat 8.0.32Apache Tomcat 8.5.0Apache Tomcat 8.5.1Apache Tomcat 8.5.11Apache Tomcat 8.5.12Apache Tomcat 8.5.6Apache Tomcat 8.5.9Apache Tomcat 8.5.10Apache Tomcat 8.5.4Apache Tomcat 8.5.5Apache Tomcat 8.5.7Apache Tomcat 8.5.8Apache Tomcat 8.5.2Apache Tomcat 8.5.3Apache Tomcat 9.0.0
5.3
CVSSv3
CVE-2016-3093
Apache Struts 2.0.0 through 2.3.24.1 does not properly cache method references when used with OGNL before 3.0.12, which allows remote attackers to cause a denial of service (block access to a web site) via unspecified vectors....
Ognl Project OgnlApache Struts 2.0.0Apache Struts 2.0.1Apache Struts 2.0.2Apache Struts 2.0.3Apache Struts 2.0.4Apache Struts 2.0.5Apache Struts 2.0.6Apache Struts 2.0.7Apache Struts 2.0.8Apache Struts 2.0.9Apache Struts 2.0.10Apache Struts 2.0.11Apache Struts 2.0.11.1Apache Struts 2.0.11.2Apache Struts 2.0.12Apache Struts 2.0.13Apache Struts 2.0.14Apache Struts 2.1.0Apache Struts 2.1.1Apache Struts 2.1.2Apache Struts 2.1.3Apache Struts 2.1.4Apache Struts 2.1.5Apache Struts 2.1.6Apache Struts 2.1.8Apache Struts 2.1.8.1Apache Struts 2.2.1Apache Struts 2.2.1.1Apache Struts 2.2.3Apache Struts 2.2.3.1Apache Struts 2.3.1Apache Struts 2.3.1.1Apache Struts 2.3.1.2Apache Struts 2.3.4Apache Struts 2.3.4.1Apache Struts 2.3.7Apache Struts 2.3.8Apache Struts 2.3.12Apache Struts 2.3.14Apache Struts 2.3.14.1Apache Struts 2.3.14.2Apache Struts 2.3.14.3Apache Struts 2.3.15Apache Struts 2.3.15.1Apache Struts 2.3.15.2Apache Struts 2.3.15.3Apache Struts 2.3.16Apache Struts 2.3.16.1Apache Struts 2.3.16.2Apache Struts 2.3.16.3Apache Struts 2.3.20Apache Struts 2.3.20.1Apache Struts 2.3.20.3Apache Struts 2.3.24Apache Struts 2.3.24.1
NA
CVE-2008-2370
Apache Tomcat 4.1.0 through 4.1.37, 5.5.0 through 5.5.26, and 6.0.0 through 6.0.16, when a RequestDispatcher is used, performs path normalization before removing the query string from the URI, which allows remote attackers to conduct directory traversal attacks and read...
Apache Tomcat 4.1.2Apache Tomcat 4.1.35Apache Tomcat 4.1.36Apache Tomcat 5.5.18Apache Tomcat 4.1.21Apache Tomcat 6.0.6Apache Tomcat 6.0.11Apache Tomcat 5.5.12Apache Tomcat 5.5.14Apache Tomcat 4.1.24Apache Tomcat 5.5.10Apache Tomcat 5.5.4Apache Tomcat 5.5.7Apache Tomcat 5.5.1Apache Tomcat 6.0.7Apache Tomcat 5.5.11Apache Tomcat 4.1.25Apache Tomcat 6.0.4Apache Tomcat 5.5.6Apache Tomcat 5.5.26Apache Tomcat 4.1.4Apache Tomcat 5.5.20Apache Tomcat 5.5.15Apache Tomcat 5.5.5Apache Tomcat 4.1.27Apache Tomcat 6.0.15Apache Tomcat 4.1.30Apache Tomcat 4.1.7Apache Tomcat 4.1.11Apache Tomcat 5.5.21Apache Tomcat 4.1.18Apache Tomcat 5.5.22Apache Tomcat 4.1.14Apache Tomcat 6.0.10Apache Tomcat 6.0.3Apache Tomcat 4.1.19Apache Tomcat 6.0.9Apache Tomcat 4.1.31Apache Tomcat 5.5.3Apache Tomcat 4.1.16Apache Tomcat 4.1.29Apache Tomcat 4.1.22Apache Tomcat 4.1.5Apache Tomcat 4.1.26Apache Tomcat 4.1.13Apache Tomcat 4.1.8Apache Tomcat 5.5.9Apache Tomcat 5.5.25Apache Tomcat 6.0.0Apache Tomcat 4.1.17Apache Tomcat 6.0.14Apache Tomcat 5.5.2Apache Tomcat 4.1.33Apache Tomcat 5.5.0Apache Tomcat 4.1.1Apache Tomcat 5.5.13Apache Tomcat 6.0.1Apache Tomcat 6.0.12Apache Tomcat 5.5.24Apache Tomcat 4.1.12Apache Tomcat 4.1.28Apache Tomcat 4.1.15Apache Tomcat 4.1.10Apache Tomcat 5.5.8Apache Tomcat 5.5.16Apache Tomcat 4.1.0Apache Tomcat 6.0.5Apache Tomcat 4.1.20Apache Tomcat 5.5.17Apache Tomcat 4.1.3Apache Tomcat 5.5.19Apache Tomcat 4.1.23Apache Tomcat 4.1.34Apache Tomcat 4.1.32Apache Tomcat 4.1.37Apache Tomcat 6.0.2Apache Tomcat 6.0.13Apache Tomcat 5.5.23Apache Tomcat 4.1.6Apache Tomcat 6.0.16Apache Tomcat 6.0.8Apache Tomcat 4.1.9
NA
CVE-2013-4322
Apache Tomcat before 6.0.39, 7.x before 7.0.50, and 8.x before 8.0.0-RC10 processes chunked transfer coding without properly handling (1) a large total amount of chunked data or (2) whitespace characters in an HTTP header value within a trailer field, which allows remote...
Apache Tomcat 7.0.50Apache Tomcat 7.0.46Apache Tomcat 7.0.45Apache Tomcat 7.0.4Apache Tomcat 7.0.39Apache Tomcat 7.0.32Apache Tomcat 7.0.31Apache Tomcat 7.0.40Apache Tomcat 7.0.34Apache Tomcat 7.0.33Apache Tomcat 7.0.27Apache Tomcat 7.0.26Apache Tomcat 7.0.42Apache Tomcat 7.0.41Apache Tomcat 7.0.36Apache Tomcat 7.0.35Apache Tomcat 7.0.29Apache Tomcat 7.0.28Apache Tomcat 7.0.20Apache Tomcat 7.0.2Apache Tomcat 7.0.14Apache Tomcat 7.0.13Apache Tomcat 7.0.44Apache Tomcat 7.0.43Apache Tomcat 7.0.38Apache Tomcat 7.0.37Apache Tomcat 7.0.30Apache Tomcat 7.0.3Apache Tomcat 7.0.22Apache Tomcat 7.0.21Apache Tomcat 7.0.16Apache Tomcat 7.0.15Apache Tomcat 7.0.0Apache Tomcat 7.0.19Apache Tomcat 7.0.12Apache Tomcat 7.0.11Apache Tomcat 7.0.25Apache Tomcat 7.0.24Apache Tomcat 7.0.23Apache Tomcat 7.0.18Apache Tomcat 7.0.17Apache Tomcat 7.0.10Apache Tomcat 7.0.1Apache TomcatApache Tomcat 6.0.29Apache Tomcat 6.0.28Apache Tomcat 6.0.2Apache Tomcat 6.0.19Apache Tomcat 6.0.12Apache Tomcat 6.0.11Apache Tomcat 6.0.10Apache Tomcat 5.5.9Apache Tomcat 6.0.30Apache Tomcat 6.0.3Apache Tomcat 6.0.14Apache Tomcat 6.0.13Apache Tomcat 6.0Apache Tomcat 6Apache Tomcat 5.5.35Apache Tomcat 5.5.34Apache Tomcat 5.5.28Apache Tomcat 5.5.27Apache Tomcat 5.5.26Apache Tomcat 5.5.2Apache Tomcat 5.5.19Apache Tomcat 5.5.12Apache Tomcat 5.5.11Apache Tomcat 5.0.5Apache Tomcat 5.0.4Apache Tomcat 5.0.25Apache Tomcat 5.0.24Apache Tomcat 5.0.17Apache Tomcat 5.0.16Apache Tomcat 5.0.0Apache Tomcat 5Apache Tomcat 4.1.28Apache Tomcat 4.1.24Apache Tomcat 4.0.6Apache Tomcat 4.0.5Apache Tomcat 3.3.1aApache Tomcat 3.3.1Apache Tomcat 3.2Apache Tomcat 3.1.1Apache Tomcat 5.5.8Apache Tomcat 5.5.33Apache Tomcat 5.5.32Apache Tomcat 5.5.25Apache Tomcat 5.5.24Apache Tomcat 5.5.18Apache Tomcat 5.5.17Apache Tomcat 5.5.10Apache Tomcat 5.5.1Apache Tomcat 5.0.30Apache Tomcat 5.0.3Apache Tomcat 5.0.23Apache Tomcat 5.0.22Apache Tomcat 5.0.15Apache Tomcat 5.0.14Apache Tomcat 4.1.9Apache Tomcat 4.1.36Apache Tomcat 4.1.2Apache Tomcat 4.1.15Apache Tomcat 4.0.4Apache Tomcat 4.0.3Apache Tomcat 3.3Apache Tomcat 3.2.4Apache Tomcat 3.1Apache Tomcat 3.0Apache Tomcat 6.0.36Apache Tomcat 6.0.35Apache Tomcat 6.0.33Apache Tomcat 6.0.27Apache Tomcat 6.0.26Apache Tomcat 6.0.18Apache Tomcat 6.0.17Apache Tomcat 6.0.1Apache Tomcat 5.5.7Apache Tomcat 5.5.6Apache Tomcat 5.5.31Apache Tomcat 5.5.30Apache Tomcat 5.5.23Apache Tomcat 5.5.22Apache Tomcat 5.5.16Apache Tomcat 5.5.15Apache Tomcat 5.5.0Apache Tomcat 5.0.9Apache Tomcat 5.0.29Apache Tomcat 5.0.28Apache Tomcat 5.0.21Apache Tomcat 5.0.2Apache Tomcat 5.0.13Apache Tomcat 5.0.12Apache Tomcat 4.1.31Apache Tomcat 4.1.3Apache Tomcat 4.1.12Apache Tomcat 4.1.10Apache Tomcat 4.0.2Apache Tomcat 4.0.1Apache Tomcat 4.0.0Apache Tomcat 3.2.3Apache Tomcat 3.2.2Apache Tomcat 1.1.3Apache Tomcat 6.0.32Apache Tomcat 6.0.31Apache Tomcat 6.0.24Apache Tomcat 6.0.20Apache Tomcat 6.0.16Apache Tomcat 6.0.15Apache Tomcat 6.0.0Apache Tomcat 5.5.5Apache Tomcat 5.5.4Apache Tomcat 5.5.3Apache Tomcat 5.5.29Apache Tomcat 5.5.21Apache Tomcat 5.5.20Apache Tomcat 5.5.14Apache Tomcat 5.5.13Apache Tomcat 5.0.8Apache Tomcat 5.0.7Apache Tomcat 5.0.6Apache Tomcat 5.0.27Apache Tomcat 5.0.26Apache Tomcat 5.0.19Apache Tomcat 5.0.18Apache Tomcat 5.0.11Apache Tomcat 5.0.10Apache Tomcat 5.0.1Apache Tomcat 4.1.29Apache Tomcat 4.1.1Apache Tomcat 4.1.0Apache Tomcat 4Apache Tomcat 3.3.2Apache Tomcat 3.2.1Apache Tomcat 8.0.0
NA
CVE-2011-5062
The HTTP Digest Access Authentication implementation in Apache Tomcat 5.5.x before 5.5.34, 6.x before 6.0.33, and 7.x before 7.0.12 does not check qop values, which might allow remote attackers to bypass intended integrity-protection requirements via a qop=auth value, a...
Apache Tomcat 5.5.30Apache Tomcat 5.5.0Apache Tomcat 5.5.8Apache Tomcat 5.5.33Apache Tomcat 5.5.18Apache Tomcat 5.5.15Apache Tomcat 5.5.3Apache Tomcat 5.5.22Apache Tomcat 5.5.2Apache Tomcat 5.5.1Apache Tomcat 5.5.28Apache Tomcat 5.5.4Apache Tomcat 5.5.29Apache Tomcat 5.5.14Apache Tomcat 5.5.11Apache Tomcat 5.5.32Apache Tomcat 5.5.20Apache Tomcat 5.5.27Apache Tomcat 5.5.9Apache Tomcat 5.5.31Apache Tomcat 5.5.17Apache Tomcat 5.5.12Apache Tomcat 5.5.24Apache Tomcat 5.5.21Apache Tomcat 5.5.19Apache Tomcat 5.5.25Apache Tomcat 5.5.10Apache Tomcat 5.5.7Apache Tomcat 5.5.6Apache Tomcat 5.5.5Apache Tomcat 5.5.16Apache Tomcat 5.5.13Apache Tomcat 5.5.23Apache Tomcat 5.5.26Apache Tomcat 6.0.15Apache Tomcat 6.0.9Apache Tomcat 6.0.29Apache Tomcat 6.0.4Apache Tomcat 6.0.27Apache Tomcat 6.0.31Apache Tomcat 6.0.12Apache Tomcat 6.0.11Apache Tomcat 6.0.14Apache Tomcat 6.0.6Apache Tomcat 6.0.18Apache Tomcat 6.0.1Apache Tomcat 6.0.2Apache Tomcat 6.0.32Apache Tomcat 6.0.19Apache Tomcat 6.0.16Apache Tomcat 6.0.7Apache Tomcat 6.0.8Apache Tomcat 6.0.0Apache Tomcat 6.0.5Apache Tomcat 6.0.24Apache Tomcat 6.0.13Apache Tomcat 6.0.30Apache Tomcat 6.0Apache Tomcat 6.0.28Apache Tomcat 6.0.17Apache Tomcat 6.0.3Apache Tomcat 6.0.26Apache Tomcat 6.0.10Apache Tomcat 6.0.20Apache Tomcat 7.0.6Apache Tomcat 7.0.1Apache Tomcat 7.0.3Apache Tomcat 7.0.7Apache Tomcat 7.0.2Apache Tomcat 7.0.0Apache Tomcat 7.0.5Apache Tomcat 7.0.4Apache Tomcat 7.0.10Apache Tomcat 7.0.11Apache Tomcat 7.0.9Apache Tomcat 7.0.8
NA
CVE-2011-5064
DigestAuthenticator.java in the HTTP Digest Access Authentication implementation in Apache Tomcat 5.5.x before 5.5.34, 6.x before 6.0.33, and 7.x before 7.0.12 uses Catalina as the hard-coded server secret (aka private key), which makes it easier for remote attackers to bypass...
Apache Tomcat 5.5.10Apache Tomcat 5.5.1Apache Tomcat 5.5.6Apache Tomcat 5.5.5Apache Tomcat 5.5.16Apache Tomcat 5.5.13Apache Tomcat 5.5.26Apache Tomcat 5.5.32Apache Tomcat 5.5.28Apache Tomcat 5.5.27Apache Tomcat 5.5.4Apache Tomcat 5.5.29Apache Tomcat 5.5.14Apache Tomcat 5.5.11Apache Tomcat 5.5.12Apache Tomcat 5.5.20Apache Tomcat 5.5.21Apache Tomcat 5.5.0Apache Tomcat 5.5.25Apache Tomcat 5.5.33Apache Tomcat 5.5.7Apache Tomcat 5.5.18Apache Tomcat 5.5.15Apache Tomcat 5.5.22Apache Tomcat 5.5.23Apache Tomcat 5.5.30Apache Tomcat 5.5.9Apache Tomcat 5.5.8Apache Tomcat 5.5.31Apache Tomcat 5.5.17Apache Tomcat 5.5.24Apache Tomcat 5.5.3Apache Tomcat 5.5.19Apache Tomcat 5.5.2Apache Tomcat 6.0.30Apache Tomcat 6.0Apache Tomcat 6.0.28Apache Tomcat 6.0.17Apache Tomcat 6.0.18Apache Tomcat 6.0.14Apache Tomcat 6.0.6Apache Tomcat 6.0.1Apache Tomcat 6.0.0Apache Tomcat 6.0.32Apache Tomcat 6.0.24Apache Tomcat 6.0.19Apache Tomcat 6.0.16Apache Tomcat 6.0.15Apache Tomcat 6.0.9Apache Tomcat 6.0.29Apache Tomcat 6.0.27Apache Tomcat 6.0.3Apache Tomcat 6.0.12Apache Tomcat 6.0.11Apache Tomcat 6.0.26Apache Tomcat 6.0.2Apache Tomcat 6.0.10Apache Tomcat 6.0.20Apache Tomcat 6.0.7Apache Tomcat 6.0.8Apache Tomcat 6.0.5Apache Tomcat 6.0.4Apache Tomcat 6.0.13Apache Tomcat 6.0.31Apache Tomcat 7.0.0Apache Tomcat 7.0.4Apache Tomcat 7.0.6Apache Tomcat 7.0.1Apache Tomcat 7.0.10Apache Tomcat 7.0.7Apache Tomcat 7.0.9Apache Tomcat 7.0.11Apache Tomcat 7.0.2Apache Tomcat 7.0.8Apache Tomcat 7.0.5Apache Tomcat 7.0.3
NA
CVE-2010-0425
modules/arch/win32/mod_isapi.c in mod_isapi in the Apache HTTP Server 2.0.37 through 2.0.63, 2.2.0 through 2.2.14, and 2.3.x before 2.3.7, when running on Windows, does not ensure that request processing is complete before calling isapi_unload for an ISAPI .dll module, which...
Apache Http Server 2.3.0Apache Http Server 2.3.3Apache Http Server 2.3.6Apache Http Server 2.3.1Apache Http Server 2.3.2Apache Http Server 2.3.5Apache Http Server 2.3.4Apache Http Server 2.0.58Apache Http Server 2.0.60Apache Http Server 2.0.52Apache Http Server 2.0.47Apache Http Server 2.0.44Apache Http Server 2.0.28Apache Http Server 2.0.36Apache Http Server 2.0.39Apache Http Server 2.0.57Apache Http Server 2.0.56Apache Http Server 2.0.48Apache Http Server 2.0.43Apache Http Server 2.0.32Apache Http Server 2.0.35Apache Http Server 2.0.41Apache Http Server 2.0.40Apache Http Server 2.0.63Apache Http Server 2.0.55Apache Http Server 2.0.54Apache Http Server 2.0.46Apache Http Server 2.0.49Apache Http Server 2.0.38Apache Http Server 2.0.59Apache Http Server 2.0.9Apache Http Server 2.0.61Apache Http Server 2.0.51Apache Http Server 2.0.50Apache Http Server 2.0.53Apache Http Server 2.0.42Apache Http Server 2.0.45Apache Http Server 2.0.34Apache Http Server 2.0.37Apache Http Server 2.2.14Apache Http Server 2.2.2Apache Http Server 2.2.7Apache Http Server 2.2.10Apache Http Server 2.2.11Apache Http Server -Apache Http Server 2.2.6Apache Http Server 2.2.0Apache Http Server 2.2.1Apache Http Server 2.2.3Apache Http Server 2.2.4Apache Http Server 2.2.12Apache Http Server 2.2.13Apache Http Server 2.2.8Apache Http Server 2.2.9
NA
CVE-2013-4505
The is_this_legal function in mod_dontdothat for Apache Subversion 1.4.0 through 1.7.13 and 1.8.0 through 1.8.4 allows remote attackers to bypass intended access restrictions and possibly cause a denial of service (resource consumption) via a relative URL in a REPORT request....
Apache Mod Dontdothat -Apache Subversion 1.8.1Apache Subversion 1.4.0Apache Subversion 1.5.0Apache Subversion 1.5.1Apache Subversion 1.5.8Apache Subversion 1.6.0Apache Subversion 1.6.16Apache Subversion 1.6.17Apache Subversion 1.6.3Apache Subversion 1.6.4Apache Subversion 1.7.1Apache Subversion 1.7.10Apache Subversion 1.4.5Apache Subversion 1.4.6Apache Subversion 1.5.6Apache Subversion 1.5.7Apache Subversion 1.6.14Apache Subversion 1.6.15Apache Subversion 1.6.21Apache Subversion 1.6.23Apache Subversion 1.6.9Apache Subversion 1.7.0Apache Subversion 1.7.5Apache Subversion 1.7.6Apache Subversion 1.4.1Apache Subversion 1.4.2Apache Subversion 1.5.2Apache Subversion 1.5.3Apache Subversion 1.6.1Apache Subversion 1.6.10Apache Subversion 1.6.18Apache Subversion 1.6.19Apache Subversion 1.6.5Apache Subversion 1.6.6Apache Subversion 1.7.11Apache Subversion 1.7.12Apache Subversion 1.7.2Apache Subversion 1.7.9Apache Subversion 1.7.7Apache Subversion 1.7.8Apache Subversion 1.4.3Apache Subversion 1.4.4Apache Subversion 1.5.4Apache Subversion 1.5.5Apache Subversion 1.6.11Apache Subversion 1.6.12Apache Subversion 1.6.13Apache Subversion 1.6.2Apache Subversion 1.6.20Apache Subversion 1.6.7Apache Subversion 1.6.8Apache Subversion 1.7.3Apache Subversion 1.7.4
NA
CVE-2014-0099
Integer overflow in java/org/apache/tomcat/util/buf/Ascii.java in Apache Tomcat before 6.0.40, 7.x before 7.0.53, and 8.x before 8.0.4, when operated behind a reverse proxy, allows remote attackers to conduct HTTP request smuggling attacks via a crafted Content-Length HTTP...
Apache Tomcat 6.0.1Apache Tomcat 6.0.10Apache Tomcat 6.0.17Apache Tomcat 6.0.18Apache Tomcat 6.0.19Apache Tomcat 6.0.27Apache Tomcat 6.0.28Apache Tomcat 6.0.35Apache Tomcat 6.0.36Apache TomcatApache Tomcat 6Apache Tomcat 6.0.11Apache Tomcat 6.0.12Apache Tomcat 6.0.2Apache Tomcat 6.0.29Apache Tomcat 6.0.3Apache Tomcat 6.0.37Apache Tomcat 6.0.4Apache Tomcat 6.0.8Apache Tomcat 6.0.0Apache Tomcat 6.0.15Apache Tomcat 6.0.16Apache Tomcat 6.0.24Apache Tomcat 6.0.26Apache Tomcat 6.0.32Apache Tomcat 6.0.33Apache Tomcat 6.0.6Apache Tomcat 6.0.7Apache Tomcat 6.0Apache Tomcat 6.0.13Apache Tomcat 6.0.14Apache Tomcat 6.0.20Apache Tomcat 6.0.30Apache Tomcat 6.0.31Apache Tomcat 6.0.5Apache Tomcat 6.0.9Apache Tomcat 8.0.0Apache Tomcat 8.0.3Apache Tomcat 8.0.1Apache Tomcat 7.0.10Apache Tomcat 7.0.11Apache Tomcat 7.0.19Apache Tomcat 7.0.2Apache Tomcat 7.0.25Apache Tomcat 7.0.26Apache Tomcat 7.0.32Apache Tomcat 7.0.33Apache Tomcat 7.0.34Apache Tomcat 7.0.4Apache Tomcat 7.0.52Apache Tomcat 7.0.0Apache Tomcat 7.0.15Apache Tomcat 7.0.16Apache Tomcat 7.0.21Apache Tomcat 7.0.22Apache Tomcat 7.0.29Apache Tomcat 7.0.3Apache Tomcat 7.0.37Apache Tomcat 7.0.38Apache Tomcat 7.0.43Apache Tomcat 7.0.44Apache Tomcat 7.0.50Apache Tomcat 7.0.6Apache Tomcat 7.0.40Apache Tomcat 7.0.47Apache Tomcat 7.0.48Apache Tomcat 7.0.9Apache Tomcat 7.0.1Apache Tomcat 7.0.17Apache Tomcat 7.0.18Apache Tomcat 7.0.23Apache Tomcat 7.0.24Apache Tomcat 7.0.30Apache Tomcat 7.0.31Apache Tomcat 7.0.39Apache Tomcat 7.0.45Apache Tomcat 7.0.46Apache Tomcat 7.0.7Apache Tomcat 7.0.8Apache Tomcat 7.0.12Apache Tomcat 7.0.13Apache Tomcat 7.0.14Apache Tomcat 7.0.20Apache Tomcat 7.0.27Apache Tomcat 7.0.28Apache Tomcat 7.0.35Apache Tomcat 7.0.36Apache Tomcat 7.0.41Apache Tomcat 7.0.42Apache Tomcat 7.0.49Apache Tomcat 7.0.5
NA
CVE-2011-4858
Apache Tomcat before 5.5.35, 6.x before 6.0.35, and 7.x before 7.0.23 computes hash values for form parameters without restricting the ability to trigger hash collisions predictably, which allows remote attackers to cause a denial of service (CPU consumption) by sending many...
Apache Tomcat 6.0.33Apache Tomcat 6.0.34Apache Tomcat 6.0.26Apache Tomcat 6.0.25Apache Tomcat 6.0.30Apache Tomcat 6.0.29Apache Tomcat 6.0.21Apache Tomcat 6.0.20Apache Tomcat 6.0.13Apache Tomcat 6.0.12Apache Tomcat 6.0.5Apache Tomcat 6.0.4Apache Tomcat 7.0.19Apache Tomcat 7.0.18Apache Tomcat 7.0.11Apache Tomcat 7.0.10Apache Tomcat 7.0.3Apache Tomcat 7.0.2Apache Tomcat 5.5.35Apache Tomcat 6.0.28Apache Tomcat 6.0.27Apache Tomcat 6.0.19Apache Tomcat 6.0.18Apache Tomcat 6.0.11Apache Tomcat 6.0.10Apache Tomcat 6.0.3Apache Tomcat 6.0.2Apache Tomcat 7.0.17Apache Tomcat 7.0.16Apache Tomcat 7.0.9Apache Tomcat 7.0.8Apache Tomcat 7.0.1Apache Tomcat 7.0.0Apache Tomcat 6.0.17Apache Tomcat 6.0.16Apache Tomcat 6.0.9Apache Tomcat 6.0.8Apache Tomcat 6.0.1Apache Tomcat 6.0.0Apache Tomcat 7.0.15Apache Tomcat 7.0.14Apache Tomcat 7.0.7Apache Tomcat 7.0.6Apache Tomcat 6.0.32Apache Tomcat 6.0.31Apache Tomcat 6.0.24Apache Tomcat 6.0.23Apache Tomcat 6.0.22Apache Tomcat 6.0.15Apache Tomcat 6.0.14Apache Tomcat 6.0.7Apache Tomcat 6.0.6Apache Tomcat 7.0.22Apache Tomcat 7.0.21Apache Tomcat 7.0.20Apache Tomcat 7.0.13Apache Tomcat 7.0.12Apache Tomcat 7.0.5Apache Tomcat 7.0.4
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
remoteCVE-2022-47986CVE-2023-20963CVE-2023-1013CVE-2022-43628CVE-2023-1014log injectionCVE-2022-43639SQL injection
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook