|
Colapse all |
Post message
Advisory: CVE-2014-9708: Appweb Web Server 2015-03-28 Matthew Daley (mattd bugfuzz com) Affected software: Appweb Web Server CVE ID: CVE-2014-9708 Description: An HTTP request with a Range header of the form "Range: x=," (ie. with an empty range value) will cause a null pointer dereference, leading to a remotely-triggerable DoS. Fixed versions: 4.6.6, 5.2.1 Bug entry: https://github. [ more ] [ reply ] Advisory: CVE-2014-9707: GoAhead Web Server 3.0.0 - 3.4.1 2015-03-28 Matthew Daley (mattd bugfuzz com) Affected software: GoAhead Web Server Affected versions: 3.0.0 - 3.4.1 (3.x.x series before 3.4.2) CVE ID: CVE-2014-9707 Description: The server incorrectly normalizes HTTP request URIs that contain path segments that start with a "." but are not entirely equal to "." or ".." (eg. ".x"). By sending [ more ] [ reply ] CVE-2015-2755 WordPress AB Google Map Travel CSRF / XSS 2015-03-27 kingkaustubh me com ======================================================================== ======= CSRF/Stored XSS Vulnerability in AB Google Map Travel (AB-MAP) Wordpress Plugin ======================================================================== ======= . contents:: Table Of Content Overview ======== * Title [ more ] [ reply ] |
|
Privacy Statement |
Hash: SHA1
_______________________________________________________________________
Mandriva Linux Security Advisory MDVSA-2015:088
http://www.mandriva.com/en/support/security/
___________________________________________________________
[ more ] [ reply ]