Vulnerability Database

289,599

Total vulnerabilities in the database

CVE-2013-1944

The tailMatch function in cookie.c in cURL and libcurl before 7.30.0 does not properly match the path domain when sending cookies, which allows remote attackers to steal cookies via a matching suffix in the domain of a URL.

  • Published: Apr 30, 2013
  • Updated: Apr 13, 2023
  • CVE: CVE-2013-1944
  • Severity: Medium
  • Exploit:

CVSS v2:

  • Severity: Medium
  • Score: 5
  • AV:N/AC:L/Au:N/C:P/I:N/A:N

CWEs:

Software From Fixed in
haxx / curl 7.7 7.7.x
haxx / curl 7.21.3 7.21.3.x
haxx / curl 7.10 7.10.x
haxx / curl 7.15.1 7.15.1.x
haxx / curl 7.24.0 7.24.0.x
haxx / curl 6.3 6.3.x
haxx / curl 7.16.1 7.16.1.x
haxx / curl 6.1 6.1.x
haxx / curl 7.13.0 7.13.0.x
haxx / curl 7.18.0 7.18.0.x
haxx / curl 7.8.1 7.8.1.x
haxx / curl 7.14.1 7.14.1.x
haxx / curl 7.21.5 7.21.5.x
haxx / curl 6.5.2 6.5.2.x
haxx / curl 7.21.1 7.21.1.x
haxx / curl 7.12.1 7.12.1.x
haxx / curl 7.16.2 7.16.2.x
haxx / curl 7.7.3 7.7.3.x
haxx / curl 7.9.7 7.9.7.x
haxx / curl 7.9.6 7.9.6.x
haxx / curl 7.17.1 7.17.1.x
haxx / curl 7.19.1 7.19.1.x
haxx / curl 6.5.1 6.5.1.x
haxx / curl 7.10.4 7.10.4.x
haxx / curl 7.12.2 7.12.2.x
haxx / curl 7.15.2 7.15.2.x
haxx / curl 7.19.6 7.19.6.x
haxx / curl 7.7.2 7.7.2.x
haxx / curl 7.4.2 7.4.2.x
haxx / curl 7.15.0 7.15.0.x
haxx / curl 6.2 6.2.x
haxx / curl 6.0 6.0.x
haxx / curl 7.22.0 7.22.0.x
haxx / curl 7.16.0 7.16.0.x
haxx / curl 7.10.6 7.10.6.x
haxx / curl - 7.29.0.x
haxx / curl 7.13.1 7.13.1.x
haxx / curl 7.10.8 7.10.8.x
haxx / curl 7.20.0 7.20.0.x
haxx / curl 7.9.4 7.9.4.x
haxx / curl 7.20.1 7.20.1.x
haxx / curl 7.26.0 7.26.0.x
haxx / curl 7.4 7.4.x
haxx / curl 7.19.7 7.19.7.x
haxx / curl 7.9.5 7.9.5.x
haxx / curl 7.19.3 7.19.3.x
haxx / curl 7.23.1 7.23.1.x
haxx / curl 7.2.1 7.2.1.x
haxx / curl 7.25.0 7.25.0.x
haxx / curl 6.4 6.4.x
haxx / curl 7.2 7.2.x
haxx / curl 7.19.0 7.19.0.x
haxx / curl 6.3.1 6.3.1.x
haxx / curl 7.12.0 7.12.0.x
haxx / curl 7.1 7.1.x
haxx / curl 7.3 7.3.x
haxx / curl 7.10.2 7.10.2.x
haxx / curl 7.10.5 7.10.5.x
haxx / curl 7.21.6 7.21.6.x
haxx / curl 7.27.0 7.27.0.x
haxx / curl 7.17.0 7.17.0.x
haxx / curl 7.12.3 7.12.3.x
haxx / curl 7.5.2 7.5.2.x
haxx / curl 7.8 7.8.x
haxx / curl 7.10.3 7.10.3.x
haxx / curl 7.14.0 7.14.0.x
haxx / curl 7.19.4 7.19.4.x
haxx / curl 7.15.3 7.15.3.x
haxx / curl 7.15.5 7.15.5.x
haxx / curl 7.21.2 7.21.2.x
haxx / curl 7.9.1 7.9.1.x
haxx / curl 7.11.2 7.11.2.x
haxx / curl 7.16.4 7.16.4.x
haxx / curl 7.10.7 7.10.7.x
haxx / curl 7.6.1 7.6.1.x
haxx / curl 7.21.0 7.21.0.x
haxx / curl 7.13.2 7.13.2.x
haxx / curl 7.5.1 7.5.1.x
haxx / curl 7.10.1 7.10.1.x
haxx / curl 7.28.0 7.28.0.x
haxx / curl 7.11.1 7.11.1.x
haxx / curl 7.23.0 7.23.0.x
haxx / curl 7.28.1 7.28.1.x
haxx / curl 7.18.1 7.18.1.x
haxx / curl 7.9.3 7.9.3.x
haxx / curl 7.18.2 7.18.2.x
haxx / curl 7.21.4 7.21.4.x
haxx / curl 7.19.2 7.19.2.x
haxx / curl 7.16.3 7.16.3.x
haxx / curl 7.4.1 7.4.1.x
haxx / curl 7.7.1 7.7.1.x
haxx / curl 6.5 6.5.x
haxx / curl 7.21.7 7.21.7.x
haxx / curl 7.1.1 7.1.1.x
haxx / curl 6.1-beta 6.1-beta.x
haxx / curl 7.9 7.9.x
haxx / curl 7.15.4 7.15.4.x
haxx / curl 7.9.8 7.9.8.x
haxx / curl 7.19.5 7.19.5.x
haxx / curl 7.9.2 7.9.2.x
haxx / curl 7.11.0 7.11.0.x
haxx / curl 7.6 7.6.x
haxx / libcurl 7.21.2 7.21.2.x
haxx / libcurl 7.17.1 7.17.1.x
haxx / libcurl - 7.29.0.x
haxx / libcurl 7.16.4 7.16.4.x
haxx / libcurl 7.18.0 7.18.0.x
haxx / libcurl 7.23.0 7.23.0.x
haxx / libcurl 7.15.2 7.15.2.x
haxx / libcurl 7.16.0 7.16.0.x
haxx / libcurl 7.16.2 7.16.2.x
haxx / libcurl 7.15.5 7.15.5.x
haxx / libcurl 7.22.0 7.22.0.x
haxx / libcurl 7.20.0 7.20.0.x
haxx / libcurl 7.14.1 7.14.1.x
haxx / libcurl 7.28.0 7.28.0.x
haxx / libcurl 7.18.2 7.18.2.x
haxx / libcurl 7.15.1 7.15.1.x
haxx / libcurl 7.19.3 7.19.3.x
haxx / libcurl 7.17.0 7.17.0.x
haxx / libcurl 7.15.3 7.15.3.x
haxx / libcurl 7.14.0 7.14.0.x
haxx / libcurl 7.16.3 7.16.3.x
haxx / libcurl 7.15.4 7.15.4.x
haxx / libcurl 7.28.1 7.28.1.x
haxx / libcurl 7.15.0 7.15.0.x
canonical / ubuntu_linux 8.04 8.04.x
canonical / ubuntu_linux 11.10 11.10.x
canonical / ubuntu_linux 12.10 12.10.x
canonical / ubuntu_linux 12.04 12.04.x
canonical / ubuntu_linux 10.04 10.04.x