VYPR

Mod Python

by Apache

CVEs (7)

  • CVE-2005-0088May 2, 2005
    risk 0.01cvss epss 0.06

    The publisher handler for mod_python 2.7.8 and earlier allows remote attackers to obtain access to restricted objects via a crafted URL.

  • CVE-2013-5106Feb 12, 2020
    risk 0.00cvss epss 0.02

    A Code Execution vulnerability exists in select.py when using python-mode 2012-12-19.

  • CVE-2006-1095Mar 9, 2006
    risk 0.00cvss epss 0.01

    Directory traversal vulnerability in the FileSession object in Mod_python module 3.2.7 for Apache allows local users to execute arbitrary code via a crafted session cookie.

  • CVE-2004-2680Dec 31, 2004
    risk 0.00cvss epss 0.04

    mod_python (libapache2-mod-python) 3.1.4 and earlier does not properly handle when output filters process more than 16384 bytes, which can cause filter.read to return portions of previously freed memory.

  • CVE-2004-0096Mar 3, 2004
    risk 0.00cvss epss 0.04

    Unknown vulnerability in mod_python 2.7.9 allows remote attackers to cause a denial of service (httpd crash) via a certain query string, a variant of CAN-2003-0973.

  • CVE-2003-0973Dec 15, 2003
    risk 0.00cvss epss 0.06

    Unknown vulnerability in mod_python 3.0.x before 3.0.4, and 2.7.x before 2.7.9, allows remote attackers to cause a denial of service (httpd crash) via a certain query string.

  • CVE-2002-0185May 16, 2002
    risk 0.00cvss epss 0.04

    mod_python version 2.7.6 and earlier allows a module indirectly imported by a published module to then be accessed via the publisher, which allows remote attackers to call possibly dangerous functions from the imported module.