Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cache poisoning vulnerabilities and exploits
(subscribe to this query)
6.1
CVSSv3
CVE-2023-24975
IBM Spectrum Symphony 7.3 is vulnerable to HTTP header injection, caused by improper validation of input by the HOST headers. This could allow an malicious user to conduct various attacks against the vulnerable system, including cross-site scripting, cache poisoning or session h...
Ibm Spectrum Symphony 7.3.0
6.1
CVSSv3
CVE-2022-34163
IBM CICS TX 11.1 is vulnerable to HTTP header injection, caused by improper validation of input by the HOST headers. This could allow an malicious user to conduct various attacks against the vulnerable system, including cross-site scripting, cache poisoning or session hijacking. ...
Ibm Cics Tx 11.1
NA
CVE-2005-0175
Squid 2.5 up to 2.5.STABLE7 allows remote malicious users to poison the cache via an HTTP response splitting attack.
Squid Squid 2.5.6
Squid Squid 2.5.stable7
Squid Squid 2.5 .stable1
Squid Squid 2.5.stable3
Squid Squid 2.5.stable4
Squid Squid 2.5 .stable6
Squid Squid 2.5 Stable3
Squid Squid 2.5.stable5
Squid Squid 2.5.stable6
Squid Squid 2.5 Stable4
Squid Squid 2.5 Stable9
Squid Squid 2.5.stable1
Squid Squid 2.5.stable2
Squid Squid 2.5 .stable3
Squid Squid 2.5 .stable4
Squid Squid 2.5 .stable5
5.4
CVSSv3
CVE-2019-4461
IBM Cloud Orchestrator 2.4 up to and including 2.4.0.5 and 2.5 up to and including 2.5.0.9 is vulnerable to HTTP Response Splitting caused by improper caching of content. This would allow the malicious user to perform further attacks, such as Web Cache poisoning, cross-site scrip...
Ibm Cloud Orchestrator
NA
CVE-2022-22399
IBM Aspera Faspex 5.0.0 and 5.0.1 is vulnerable to HTTP header injection, caused by improper validation of input by the HOST headers. This could allow an malicious user to conduct various attacks against the vulnerable system, including cross-site scripting, cache poisoning or se...
4.6
CVSSv3
CVE-2022-34362
IBM Sterling Secure Proxy 6.0.3 is vulnerable to HTTP header injection, caused by improper validation of input by the HOST headers. This could allow an malicious user to conduct various attacks against the vulnerable system, including cross-site scripting, cache poisoning or ses...
Ibm Sterling Secure Proxy 6.0.3
NA
CVE-2005-3899
The automatic update feature in Google Talk allows remote malicious users to cause a denial of service (CPU and memory consumption) by poisoning a target's DNS cache and causing a large update file to be sent, which consumes large amounts of CPU and memory during the signatu...
Google Talk
NA
CVE-2013-1509
Unspecified vulnerability in the Oracle WebCenter Sites component in Oracle Fusion Middleware 7.6.2, 11.1.1.6.0, and 11.1.1.6.1 allows remote authenticated users to affect integrity via unknown vectors related to WebCenter Sites.
Oracle Fusion Middleware 11.1.1.6.1
Oracle Fusion Middleware 7.6.2
Oracle Fusion Middleware 11.1.1.6.0
1 EDB exploit
5.4
CVSSv3
CVE-2023-50963
IBM Storage Defender - Data Protect 1.0.0 up to and including 1.4.1 is vulnerable to HTTP header injection, caused by improper validation of input by the HOST headers. This could allow an malicious user to conduct various attacks against the vulnerable system, including cross-sit...
Ibm Storage Defender Data Protect
6.1
CVSSv3
CVE-2023-45190
IBM Engineering Lifecycle Optimization 7.0.2 and 7.0.3 is vulnerable to HTTP header injection, caused by improper validation of input by the HOST headers. This could allow an malicious user to conduct various attacks against the vulnerable system, including cross-site scripting, ...
Ibm Engineering Lifecycle Optimization 7.0.2
Ibm Engineering Lifecycle Optimization 7.0.3
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-26925
CVE-2023-41826
LFI
CVE-2022-22364
CVE-2024-2887
command injection
remote code execution
CVE-2024-34446
CVE-2022-48699
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
5
6
7
8
9
10
NEXT »