apache

3,096 tracked vulnerabilities.

CVE-2007-3382
Apache Tomcat Session ID Exposure via Cookie Delimiter Mishandling
Aug 14, 2007
EPSS 0.37
CVE-2007-3385
Apache Tomcat 3.3-6.0.13 - Exposure of Sensitive Information via Cookie Value Handling
Aug 14, 2007
EPSS 0.17
CVE-2007-3386
Apache Tomcat 5.5.0-5.5.24 and 6.0.0-6.0.13 - Cross-Site Scripting via Host Manager Servlet Aliases Parameter
Aug 14, 2007
EPSS 0.59
CVE-2007-3384
Apache Tomcat 3.3-3.3.2 - Cross-Site Scripting via CookieExample Name or Value Field
Aug 08, 2007
EPSS 0.03
CVE-2007-3383
Apache Tomcat 4.0.0-4.0.6 and 4.1.0-4.1.36 - Cross-Site Scripting via SendMailServlet From Field
Jul 25, 2007
EPSS 0.09
CVE-2007-1863
macOS X Server - Denial of Service via Cache-Control Header Parsing
Jun 27, 2007
EPSS 0.12
CVE-2007-3303
Apache httpd 2.0.59 and 2.2.4 - Denial of Service via Worker Process Manipulation
Jun 20, 2007
EPSS 0.01
CVE-2007-3304
Apache HTTP Server 1.3.37 2.0.59 2.2.4 - Denial of Service via Prefork MPM Signal Handling
Jun 20, 2007
EPSS 0.03
CVE-2007-3101
Apache MyFaces Tomahawk < 1.1.5 - Cross-Site Scripting via autoscroll Parameter
Jun 18, 2007
EPSS 0.44
CVE-2007-2449 NUCLEI
Apache Tomcat 4.0.0-4.0.6, 4.1.0-4.1.36, 5.0.0-5.0.30, 5.5.0-5.5.24, 6.0.0-6.0.13 XSS via URI Semicolon Injection
Jun 14, 2007
EPSS 0.77
CVE-2007-2450
Apache Tomcat 4.0.0-4.0.6, 4.1.0-4.1.36, 5.0.0-5.0.30, 5.5.0-5.5.24, 6.0.0-6.0.13 - XSS via Manager Upload
Jun 14, 2007
EPSS 0.03
CVE-2007-1862
Apache HTTP Server 2.2.4 - Information Disclosure via mod_mem_cache Header Handling
Jun 04, 2007
EPSS 0.06
CVE-2007-1860
Apache Tomcat JK Web Server Connector < 1.2.23 - Path Traversal via Double-Encoded URL Prefix
May 25, 2007
EPSS 0.13
CVE-2007-1355
Tomcat 4.0.0-4.0.6, 4.1.0-4.1.36, 5.0.0-5.0.30, 5.5.0-5.5.23, 6.0.0-6.0.10 - Cross-Site Scripting
May 21, 2007
EPSS 0.58
CVE-2007-1358
Apache Tomcat 4.0.0-4.0.6 and 4.1.0-4.1.34 - Cross-Site Scripting via Malformed Accept-Language Header
May 10, 2007
EPSS 0.20
CVE-2007-1858
Apache Tomcat <4.1.31, <5.0.30, <5.5.17 - Info Disclosure
May 10, 2007
EPSS 0.18
CVE-2007-2353
Apache Axis 1.0 - Information Disclosure via Non-Existent WSDL Request
Apr 30, 2007
EPSS 0.28
CVE-2007-1742
Apache HTTP Server (httpd) <2.2.3 - Privilege Escalation
Apr 13, 2007
EPSS 0.01
CVE-2007-1743
Apache HTTP Server (httpd) <2.2.3 - Local Privilege Escalation
Apr 13, 2007
EPSS 0.01
CVE-2007-1741
Apache HTTP Server 2.2.3 - Local Privilege Escalation via Race Condition in suexec
Apr 13, 2007
EPSS 0.01
CVE-2007-1349
Apache mod_perl < 1.30 - Denial of Service via PATH_INFO Regular Expression
Mar 30, 2007
EPSS 0.10
CVE-2007-0450
Apache HTTP Server and Tomcat 5.0.0-5.5.21 - Directory Traversal via Proxy Module URL Path
Mar 16, 2007
EPSS 0.91
CVE-2007-0774
Apache Tomcat JK Web Server Connector <1.2.21 - RCE
Mar 04, 2007
EPSS 0.82
CVE-2007-0451
Apache SpamAssassin < 3.1.8 - Denial of Service via Long URLs in Malformed HTML
Feb 16, 2007
EPSS 0.07
CVE-2007-0086
Apache HTTP Server - Denial of Service via Range Header Fragment Multiplication
Jan 05, 2007
EPSS 0.10