Anon Proxy Server : Security Vulnerabilities, CVEs,
Anon Proxy Server 0.100, and probably 0.101, allows remote attackers to execute arbitrary commands via shell metacharacters in (1) the host parameter to diagdns.php, and (2) the host parameter and possibly (3) the port parameter to diagconnect.php, a different vulnerability than CVE-2007-6460.
Max CVSS
6.8
EPSS Score
5.44%
Published
2007-12-20
Updated
2018-10-15
Buffer overflow in Anon Proxy Server 0.102 and earlier, when user authentication is enabled, allows remote attackers to cause a denial of service (exception) via a user name with a large number of quotes, which triggers the overflow during escaping.
Max CVSS
6.0
EPSS Score
0.37%
Published
2008-02-06
Updated
2018-10-15
Multiple cross-site scripting (XSS) vulnerabilities in Anon Proxy Server before 0.101 allow remote attackers to inject arbitrary web script or HTML via the URI, which is later displayed by (1) log.php or (2) logerror.php, a different vulnerability than CVE-2007-6459.
Max CVSS
4.3
EPSS Score
0.50%
Published
2007-12-20
Updated
2008-09-05
3 vulnerabilities found