Show filters
33 Total Results
Displaying 31-33 of 33
Sort by:
Attacker Value
Unknown

CVE-2016-1133

Disclosure Date: January 16, 2016 (last updated November 25, 2024)
CRLF injection vulnerability in the on_req function in lib/handler/redirect.c in H2O before 1.6.2 and 1.7.x before 1.7.0-beta3 allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via a crafted URI.
0
0
Attacker Value
Unknown

CVE-2015-5638

Disclosure Date: September 20, 2015 (last updated October 05, 2023)
Directory traversal vulnerability in H2O before 1.4.5 and 1.5.x before 1.5.0-beta2, when the file.dir directive is enabled, allows remote attackers to read arbitrary files via a crafted URL.
0
0
Attacker Value
Unknown

CVE-2010-5008

Disclosure Date: November 02, 2011 (last updated October 04, 2023)
SQL injection vulnerability in pages/contact_list_mail_form.asp in BrightSuite Groupware 5.4 allows remote attackers to execute arbitrary SQL commands via the ContactID parameter.
0
0
View More Topics  < Previous