Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
diesel diesel vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2021-28305
An issue exists in the diesel crate prior to 1.4.6 for Rust. There is a use-after-free in the SQLite backend because the semantics of sqlite3_column_name are not followed.
Diesel Diesel
5.8
CVSSv2
CVE-2007-4843
Directory traversal vulnerability in X-Diesel Unreal Commander 0.92 build 565 and 573 allows remote FTP servers to create or overwrite arbitrary files via a .. (dot dot) in a filename. NOTE: this can be leveraged for code execution by writing to a Startup folder.
X-diesel Unreal Commander 0.92 Build573
X-diesel Unreal Commander 0.92 Build565
1 EDB exploit
4.3
CVSSv2
CVE-2007-4844
X-Diesel Unreal Commander 0.92 build 565 and 573 does not properly react to an FTP server's behavior after sending a "CWD /" command, which allows remote FTP servers to cause a denial of service (infinite loop) by (1) repeatedly sending a 550 error response, or (2)...
X-diesel Unreal Commander 0.92 Build565
X-diesel Unreal Commander 0.92 Build573
4.3
CVSSv2
CVE-2007-4547
Unreal Commander 0.92 build 565 and 573 writes portions of heap memory into local files when extracting from an archive with malformed size information in a file header, which might allow user-assisted malicious users to obtain sensitive information (memory contents) by reading t...
X-diesel Unreal Commander 0.92 Build565
X-diesel Unreal Commander 0.92 Build573
5.8
CVSSv2
CVE-2007-4546
Unreal Commander 0.92 build 565 and 573 lists the filenames from the Central Directory of a ZIP archive, but extracts to local filenames corresponding to names in Local File Header fields in this archive, which might allow remote malicious users to trick a user into performing a ...
X-diesel Unreal Commander 0.92 Build573
X-diesel Unreal Commander 0.92 Build565
6.8
CVSSv2
CVE-2007-4545
Multiple directory traversal vulnerabilities in Unreal Commander 0.92 build 565 and 573 allow user-assisted remote malicious users to create or overwrite arbitrary files via a .. (dot dot) in a filename within a (1) ZIP or (2) RAR archive.
X-diesel Unreal Commander 0.92 Build565
X-diesel Unreal Commander 0.92 Build573
1 EDB exploit
4.3
CVSSv2
CVE-2006-4358
Cross-site scripting (XSS) vulnerability in index.php in Diesel Pay allows remote malicious users to inject arbitrary web script or HTML via the read parameter.
Dieselscripts Diesel Pay
1 EDB exploit
7.5
CVSSv2
CVE-2008-6468
SQL injection vulnerability in index.php in Diesel Pay allows remote malicious users to execute arbitrary SQL commands via the area parameter in a browse action.
Dieselscripts Diesel Pay -
1 EDB exploit
4.3
CVSSv2
CVE-2006-4361
Multiple cross-site scripting (XSS) vulnerabilities in jobseekers/forgot.php in Diesel Job Site allow remote malicious users to inject arbitrary web script or HTML via the (1) uname or (2) SEmail parameters.
Dieselscripts Diesel Job Site
7.5
CVSSv2
CVE-2008-4150
SQL injection vulnerability in picture_category.php in Diesel Joke Site allows remote malicious users to execute arbitrary SQL commands via the id parameter, a different vector than CVE-2006-3763.
Dieselscripts Diesel Joke Site
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
inject
CVE-2024-34001
CVE-2024-37018
LFI
CVE-2024-1275
CVE-2024-1086
CSRF
CVE-2024-31030
CVE-2024-24919
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »