Known Vulnerabilities for products from Mod Auth Mellon Project
Listed below are 3 of the newest known vulnerabilities associated with the vendor "Mod Auth Mellon Project".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2019-13038 | mod_auth_mellon through 0.14.2 has an Open Redirect via the login?ReturnTo= substring, as demonstrated by omitting the // aft... | 6.1 - MEDIUM | 2019-06-29 | 2023-11-07 |
| CVE-2019-3878 | A vulnerability was found in mod_auth_mellon before v0.14.2. If Apache is configured as a reverse proxy and mod_auth_mellon i... | 8.1 - HIGH | 2019-03-26 | 2023-11-07 |
| CVE-2019-3877 | A vulnerability was found in mod_auth_mellon before v0.14.2. An open redirect in the logout URL allows requests with backslas... | 6.1 - MEDIUM | 2019-03-27 | 2023-11-07 |
Known software with vulnerabilities from Mod Auth Mellon Project
| Type | Vendor | Product | Version |
|---|---|---|---|
| Application | Mod Auth Mellon Project | Mod Auth Mellon | 0.4.0 |