Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.5
CVE-2020-15598
- EPSS 3.79%
- Veröffentlicht 06.10.2020 14:15:12
- Zuletzt bearbeitet 03.07.2025 20:59:18
Trustwave ModSecurity 3.x through 3.0.4 allows denial of service via a special request. NOTE: The discoverer reports "Trustwave has signaled they are disputing our claims." The CVE suggests that there is a security issue with how ModSecurity handles ...
7.5
CVE-2019-19886
- EPSS 4.01%
- Veröffentlicht 21.01.2020 22:15:15
- Zuletzt bearbeitet 03.07.2025 20:59:18
Trustwave ModSecurity 3.0.0 through 3.0.3 allows an attacker to send crafted requests that may, when sent quickly in large volumes, lead to the server becoming slow or unresponsive (Denial of Service) because of a flaw in Transaction::addRequestHeade...
6.1
CVE-2018-13065
- EPSS 0.28%
- Veröffentlicht 03.07.2018 12:29:00
- Zuletzt bearbeitet 03.07.2025 20:59:18
ModSecurity 3.0.0 has XSS via an onerror attribute of an IMG element. NOTE: a third party has disputed this issue because it may only apply to environments without a Core Rule Set configured