Home/Product/roxy wi roxy wi
Product

roxy wi roxy wi

20 known vulnerabilities across versions
Vulnerabilities are listed by affected version. Select any CVE for the full briefing and its intelligence graph.
CVE-2026-33208
< 8.2.6.4
Roxy-WI is a web interface for managing Haproxy, Nginx, Apache and Keepalived servers. Prior to version 8.2.6.4, the /config/ < se
8.8HIGH
 CVE-2026-33078
< 8.2.6.4
Roxy-WI is a web interface for managing Haproxy, Nginx, Apache and Keepalived servers. Versions prior to 8.2.6.4 have a SQL inject
9.8CRITICAL
 CVE-2026-33077
< 8.2.6.4
Roxy-WI is a web interface for managing Haproxy, Nginx, Apache and Keepalived servers. Prior to version 8.2.6.4, the oldconfig par
7.5HIGH
 CVE-2026-33076
< 8.2.6.4
Roxy-WI is a web interface for managing Haproxy, Nginx, Apache and Keepalived servers. Prior to version 8.2.6.4, the haproxy_secti
9.8CRITICAL
 CVE-2026-33432
<= 8.2.8.2
Roxy-WI is a web interface for managing Haproxy, Nginx, Apache and Keepalived servers. In versions up to and including 8.2.8.2, wh
9.1CRITICAL
 CVE-2026-33431
< 8.2.6.4
Roxy-WI is a web interface for managing Haproxy, Nginx, Apache and Keepalived servers. Prior to version 8.2.6.4, the POST /config/
6.5MEDIUM
 CVE-2026-27811
< 8.2.6.3
Roxy-WI is a web interface for managing Haproxy, Nginx, Apache and Keepalived servers. Prior to version 8.2.6.3, a command injecti
8.8HIGH
 CVE-2026-22265
< 8.2.8.2
Roxy-WI is a web interface for managing Haproxy, Nginx, Apache and Keepalived servers. Prior to 8.2.8.2, command injection vulnera
7.5HIGH
 CVE-2024-43804
all versions
Roxy-WI is a web interface for managing Haproxy, Nginx, Apache and Keepalived servers. An OS Command Injection vulnerability allow
8.8HIGH
 CVE-2023-29004
<= 6.3.9.0
hap-wi/roxy-wi is a web interface for managing Haproxy, Nginx, Apache and Keepalived servers. A Path Traversal vulnerability was f
6.5MEDIUM
 CVE-2023-25804
< 6.3.5.0
Roxy-WI is a Web interface for managing Haproxy, Nginx, Apache, and Keepalived servers. Versions prior to 6.3.5.0 have a limited p
7.5HIGH
 CVE-2023-25803
< 6.3.5.0
Roxy-WI is a Web interface for managing Haproxy, Nginx, Apache, and Keepalived servers. Versions prior to 6.3.5.0 have a directory
7.5HIGH
 CVE-2023-25802
< 6.3.6.0
Roxy-WI is a Web interface for managing Haproxy, Nginx, Apache, and Keepalived servers. Versions prior to 6.3.6.0 don't correctly
7.5HIGH
 CVE-2022-31161
< 6.1.1.0
Roxy-WI is a Web interface for managing HAProxy, Nginx and Keepalived servers. Prior to version 6.1.1.0, the system command can be
10.0CRITICAL
 CVE-2022-31137
< 6.1.1.0
Roxy-WI is a web interface for managing Haproxy, Nginx, Apache and Keepalived servers. Versions prior to 6.1.1.0 are subject to a
10.0CRITICAL
 CVE-2022-31126
< 6.1.1.0
Roxy-wi is an open source web interface for managing Haproxy, Nginx, Apache and Keepalived servers. A vulnerability in Roxy-wi all
10.0CRITICAL
 CVE-2022-31125
< 6.1.1.0
Roxy-wi is an open source web interface for managing Haproxy, Nginx, Apache and Keepalived servers. A vulnerability in Roxy-wi all
10.0CRITICAL
 CVE-2021-38169
<= 5.2.2.0
Roxy-WI through 5.2.2.0 allows command injection via /app/funct.py and /api/api_funct.py.
8.8HIGH
 CVE-2021-38168
<= 5.2.2.0
Roxy-WI through 5.2.2.0 allows authenticated SQL injection via select_servers.
8.8HIGH
 CVE-2021-38167
<= 5.2.2.0
Roxy-WI through 5.2.2.0 allows SQL Injection via check_login. An unauthenticated attacker can extract a valid uuid to bypass authe
9.8CRITICAL
Vulnerabilities
CISA KEV catalog
CWE weaknesses
CAPEC attack patterns
Package vulnerabilities
Threat intelligence
Threat actors
Tools & malware
ATT&CK techniques
IOCs
Detection & defense
Sigma rules
YARA rules
Atomic Red Team tests
D3FEND countermeasures
Compliance
NIST 800-53
ISO 27001:2022
SOC 2 TSC
PCI-DSS v4.0
CIS Controls v8.1
About
All capabilities
Live statistics
Data sources
Privacy policy
Terms of service
threatengine.sh  ·  Open-source threat intelligence platform  ·  100+ authoritative sources  ·  Every fact traces to its origin