Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
buildbot buildbot vulnerabilities and exploits
(subscribe to this query)
383
VMScore
CVE-2009-2967
Multiple cross-site scripting (XSS) vulnerabilities in Buildbot 0.7.6 up to and including 0.7.11p2 allow remote malicious users to inject arbitrary web script or HTML via unspecified vectors, different vulnerabilities than CVE-2009-2959.
Buildbot Buildbot 0.7.11
Buildbot Buildbot 0.7.10p1
Buildbot Buildbot 0.7.6
Buildbot Buildbot 0.7.10
Buildbot Buildbot 0.7.11p2
Buildbot Buildbot 0.7.11p1
Buildbot Buildbot 0.7.7
Buildbot Buildbot 0.7.8
Buildbot Buildbot 0.7.9
383
VMScore
CVE-2009-2959
Cross-site scripting (XSS) vulnerability in the waterfall web status view (status/web/waterfall.py) in Buildbot 0.7.6 up to and including 0.7.11p1 allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors.
Buildbot Buildbot 0.7.11p1
Buildbot Buildbot 0.7.10p1
Buildbot Buildbot 0.7.8
Buildbot Buildbot 0.7.10
Buildbot Buildbot 0.7.6
Buildbot Buildbot 0.7.7
Buildbot Buildbot 0.7.9
Buildbot Buildbot 0.7.11
516
VMScore
CVE-2019-7313
www/resource.py in Buildbot prior to 1.8.1 allows CRLF injection in the Location header of /auth/login and /auth/logout via the redirect parameter. This affects other web sites in the same domain.
Buildbot Buildbot
445
VMScore
CVE-2019-12300
Buildbot prior to 1.8.2 and 2.x prior to 2.3.1 accepts a user-submitted authorization token from OAuth and uses it to authenticate a user. If an attacker has a token allowing them to read the user details of a victim, they can login as the victim.
Buildbot Buildbot
505
VMScore
CVE-2009-3242
Unspecified vulnerability in packet.c in the GSM A RR dissector in Wireshark 1.2.0 and 1.2.1 allows remote malicious users to cause a denial of service (application crash) via unknown vectors related to "an uninitialized dissector handle," which triggers an assertion fa...
Wireshark Wireshark 1.2.0
Wireshark Wireshark 1.2.1
1 EDB exploit
435
VMScore
CVE-2011-1143
epan/dissectors/packet-ntlmssp.c in the NTLMSSP dissector in Wireshark prior to 1.4.4 allows remote malicious users to cause a denial of service (NULL pointer dereference and application crash) via a crafted .pcap file.
Wireshark Wireshark 0.99.3
Wireshark Wireshark 0.99.4
Wireshark Wireshark 1.0.10
Wireshark Wireshark 1.2.13
Wireshark Wireshark 1.0.8
Wireshark Wireshark 1.2.3
Wireshark Wireshark 1.4.2
Wireshark Wireshark 1.2.7
Wireshark Wireshark 1.0.2
Wireshark Wireshark 1.0.3
Wireshark Wireshark 1.0.4
Wireshark Wireshark
Wireshark Wireshark 0.99.5
Wireshark Wireshark 0.99.6
Wireshark Wireshark 1.2.5
Wireshark Wireshark 1.2.1
Wireshark Wireshark 1.2.0
Wireshark Wireshark 1.2.4
Wireshark Wireshark 1.4.1
Wireshark Wireshark 1.2.12
Wireshark Wireshark 1.2.6
Wireshark Wireshark 1.0.15
1 EDB exploit
785
VMScore
CVE-2009-3241
Unspecified vulnerability in the OpcUa (OPC UA) dissector in Wireshark 0.99.6 up to and including 1.0.8 and 1.2.0 up to and including 1.2.1 allows remote malicious users to cause a denial of service (memory and CPU consumption) via malformed OPCUA Service CallRequest packets.
Wireshark Wireshark 0.99.7
Wireshark Wireshark 1.0
Wireshark Wireshark 1.2
Wireshark Wireshark 1.2.1
Wireshark Wireshark 1.0.4
Wireshark Wireshark 1.0.3
Wireshark Wireshark 1.0.6
Wireshark Wireshark 0.99.9
Wireshark Wireshark 1.2.0
Wireshark Wireshark 1.0.0
Wireshark Wireshark 1.0.1
Wireshark Wireshark 1.0.2
Wireshark Wireshark 1.0.5
Wireshark Wireshark 0.99.8
Wireshark Wireshark 1.0.7
Wireshark Wireshark 1.0.8
Wireshark Wireshark 0.99.6
Wireshark Wireshark 0.99.6a
1 EDB exploit
505
VMScore
CVE-2009-3243
Unspecified vulnerability in the TLS dissector in Wireshark 1.2.0 and 1.2.1, when running on Windows, allows remote malicious users to cause a denial of service (application crash) via unknown vectors related to TLS 1.2 conversations.
Wireshark Wireshark 1.2.0
Wireshark Wireshark 1.2.1
1 EDB exploit
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4367
CVE-2024-35977
CVE-2023-49335
man-in-the-middle
CVE-2024-4947
CVE-2024-31714
memory leak
SQL
CVE-2024-35994
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started