Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
fedoraproject fedora 18 vulnerabilities and exploits
(subscribe to this query)
7.1
CVSSv3
CVE-2013-0159
The fedora-business-cards package prior to 1-0.1.beta1.fc17 on Fedora 17 and prior to 1-0.1.beta1.fc18 on Fedora 18 allows local users to cause a denial of service or write to arbitrary files via a symlink attack on /tmp/fedora-business-cards-buffer.svg.
Fedoraproject Fedora 17
Fedoraproject Fedora 18
NA
CVE-2012-3354
doku.php in DokuWiki, as used in Fedora 16, 17, and 18, when certain PHP error levels are set, allows remote malicious users to obtain sensitive information via the prefix parameter, which reveals the installation path in an error message.
Fedoraproject Fedora 17
Fedoraproject Fedora 18
Dokuwiki Dokuwiki -
Fedoraproject Fedora 16
7.5
CVSSv3
CVE-2012-5645
A denial of service flaw was found in the way the server component of Freeciv prior to 2.3.4 processed certain packets. A remote attacker could send a specially-crafted packet that, when processed would lead to memory exhaustion or excessive CPU consumption.
Freeciv Freeciv
Fedoraproject Fedora 16
Fedoraproject Fedora 17
Fedoraproject Fedora 18
7.5
CVSSv3
CVE-2012-4524
xlockmore prior to 5.43 'dclock' security bypass vulnerability
Sillycycle Xlockmore
Fedoraproject Fedora 16
Fedoraproject Fedora 17
Fedoraproject Fedora 18
7.5
CVSSv3
CVE-2013-4410
ReviewBoard: has an access-control problem in REST API
Reviewboard Reviewboard
Fedoraproject Fedora 18
Fedoraproject Fedora 19
Fedoraproject Fedora 20
4.3
CVSSv3
CVE-2013-4411
Review Board: URL processing gives unauthorized users access to review lists
Reviewboard Reviewboard
Fedoraproject Fedora 18
Fedoraproject Fedora 19
Fedoraproject Fedora 20
NA
CVE-2013-1888
pip prior to 1.3 allows local users to overwrite arbitrary files via a symlink attack on a file in the /tmp/pip-build temporary directory.
Pypa Pip
Fedoraproject Fedora 17
Fedoraproject Fedora 18
Fedoraproject Fedora 19
6.1
CVSSv3
CVE-2013-4752
Symfony 2.0.X prior to 2.0.24, 2.1.X prior to 2.1.12, 2.2.X prior to 2.2.5, and 2.3.X prior to 2.3.3 have an issue in the HttpFoundation component. The Host header can be manipulated by an attacker when the framework is generating an absolute URL. A remote attacker could exploit ...
Sensiolabs Symfony
Fedoraproject Fedora 18
Fedoraproject Fedora 19
7.8
CVSSv3
CVE-2012-4480
mom creates world-writable pid files in /var/run
Ovirt Mom
Fedoraproject Fedora 17
Fedoraproject Fedora 18
7.5
CVSSv3
CVE-2013-4572
The CentralNotice extension for MediaWiki prior to 1.19.9, 1.20.x prior to 1.20.8, and 1.21.x prior to 1.21.3 sets the Cache-Control header to cache session cookies when a user is autocreated, which allows remote malicious users to authenticate as the created user.
Mediawiki Mediawiki
Fedoraproject Fedora 18
Fedoraproject Fedora 19
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2006-4304
CVE-2024-4240
arbitrary
CVE-2024-31601
XSS
CVE-2023-20198
CVE-2024-4256
CVE-2024-3342
encryption
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
6
NEXT »