cbcvebase.

Anon Proxy Server vulnerabilities

6 known vulnerabilities affecting anon_proxy_server/anon_proxy_server.

Total CVEs
6
CISA KEV
0
Public exploits
2
Exploited in wild
0
Severity breakdown
MEDIUM6

Vulnerabilities

Page 1 of 1
CVE-2007-6459P3MEDIUMCVSS 6.8PoCv0.1002007-12-20
CVE-2007-6459 [MEDIUM] CWE-94 CVE-2007-6459: Anon Proxy Server 0.100, and probably 0.101, allows remote attackers to execute arbitrary commands v Anon Proxy Server 0.100, and probably 0.101, allows remote attackers to execute arbitrary commands via shell metacharacters in (1) the host parameter to diagdns.php, and (2) the host parameter and possibly (3) the port parameter to diagconnect.php, a different vulnerability than CVE-2007-6460.
nvd
CVE-2008-0633P4MEDIUMCVSS 6.0PoC≤ 0.1022008-02-06
CVE-2008-0633 [MEDIUM] CWE-119 CVE-2008-0633: Buffer overflow in Anon Proxy Server 0.102 and earlier, when user authentication is enabled, allows Buffer overflow in Anon Proxy Server 0.102 and earlier, when user authentication is enabled, allows remote attackers to cause a denial of service (exception) via a user name with a large number of quotes, which triggers the overflow during escaping.
nvd
CVE-2025-41356P4MEDIUMCVSS 6.1v0.1042026-03-31
CVE-2025-41356 [MEDIUM] CWE-79 CVE-2025-41356: Reflected Cross-Site Scripting (XSS) vulnerability in Anon Proxy Server v0.104. This vulnerability a Reflected Cross-Site Scripting (XSS) vulnerability in Anon Proxy Server v0.104. This vulnerability allows an attacker to execute JavaScript code in the victim's browser by sending him/her a malicious URL. This vulnerability can be exploited to steal sensitive user data, such as session cookies, or to perform actions on behalf of the user. It affects
nvd
CVE-2025-41355P4MEDIUMCVSS 6.1v0.1042026-03-31
CVE-2025-41355 [MEDIUM] CWE-79 CVE-2025-41355: Reflected Cross-Site Scripting (XSS) vulnerability in Anon Proxy Server v0.104. This vulnerability Reflected Cross-Site Scripting (XSS) vulnerability in Anon Proxy Server v0.104. This vulnerability allows an attacker to execute JavaScript code in the victim's browser by sending him/her a malicious URL. This vulnerability can be exploited to steal sensitive user data, such as session cookies, or to perform actions on behalf of the user. It affects 'p
nvd
CVE-2025-41357P4MEDIUMCVSS 6.1v0.1042026-03-31
CVE-2025-41357 [MEDIUM] CWE-79 CVE-2025-41357: Reflected Cross-Site Scripting (XSS) vulnerability in Anon Proxy Server v0.104. This vulnerability a Reflected Cross-Site Scripting (XSS) vulnerability in Anon Proxy Server v0.104. This vulnerability allows an attacker to execute JavaScript code in the victim's browser by sending him/her a malicious URL. This vulnerability can be exploited to steal sensitive user data, such as session cookies, or to perform actions on behalf of the user. It affects
nvd
CVE-2007-6460P4MEDIUMCVSS 4.3v0.1012007-12-20
CVE-2007-6460 [MEDIUM] CVE-2007-6460: Multiple cross-site scripting (XSS) vulnerabilities in Anon Proxy Server before 0.101 allow remote a Multiple cross-site scripting (XSS) vulnerabilities in Anon Proxy Server before 0.101 allow remote attackers to inject arbitrary web script or HTML via the URI, which is later displayed by (1) log.php or (2) logerror.php, a different vulnerability than CVE-2007-6459.
nvd
Anon Proxy Server vulnerabilities | cvebase