Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
fedoraproject fedora 18 vulnerabilities and exploits
(subscribe to this query)
7.1
CVSSv3
CVE-2013-0159
The fedora-business-cards package prior to 1-0.1.beta1.fc17 on Fedora 17 and prior to 1-0.1.beta1.fc18 on Fedora 18 allows local users to cause a denial of service or write to arbitrary files via a symlink attack on /tmp/fedora-business-cards-buffer.svg.
Fedoraproject Fedora 17
Fedoraproject Fedora 18
NA
CVE-2013-1888
pip prior to 1.3 allows local users to overwrite arbitrary files via a symlink attack on a file in the /tmp/pip-build temporary directory.
Pypa Pip
Fedoraproject Fedora 17
Fedoraproject Fedora 18
Fedoraproject Fedora 19
7.5
CVSSv3
CVE-2013-4410
ReviewBoard: has an access-control problem in REST API
Reviewboard Reviewboard
Fedoraproject Fedora 18
Fedoraproject Fedora 19
Fedoraproject Fedora 20
4.3
CVSSv3
CVE-2013-4411
Review Board: URL processing gives unauthorized users access to review lists
Reviewboard Reviewboard
Fedoraproject Fedora 18
Fedoraproject Fedora 19
Fedoraproject Fedora 20
NA
CVE-2012-3354
doku.php in DokuWiki, as used in Fedora 16, 17, and 18, when certain PHP error levels are set, allows remote malicious users to obtain sensitive information via the prefix parameter, which reveals the installation path in an error message.
Fedoraproject Fedora 17
Fedoraproject Fedora 18
Dokuwiki Dokuwiki -
Fedoraproject Fedora 16
7.5
CVSSv3
CVE-2012-4524
xlockmore prior to 5.43 'dclock' security bypass vulnerability
Sillycycle Xlockmore
Fedoraproject Fedora 16
Fedoraproject Fedora 17
Fedoraproject Fedora 18
7.5
CVSSv3
CVE-2012-5645
A denial of service flaw was found in the way the server component of Freeciv prior to 2.3.4 processed certain packets. A remote attacker could send a specially-crafted packet that, when processed would lead to memory exhaustion or excessive CPU consumption.
Freeciv Freeciv
Fedoraproject Fedora 16
Fedoraproject Fedora 17
Fedoraproject Fedora 18
4.3
CVSSv3
CVE-2013-1930
MantisBT 1.2.12 prior to 1.2.15 allows authenticated users to by the workflow restriction and close issues.
Mantisbt Mantisbt
Fedoraproject Fedora 17
Fedoraproject Fedora 18
6.1
CVSSv3
CVE-2013-4752
Symfony 2.0.X prior to 2.0.24, 2.1.X prior to 2.1.12, 2.2.X prior to 2.2.5, and 2.3.X prior to 2.3.3 have an issue in the HttpFoundation component. The Host header can be manipulated by an attacker when the framework is generating an absolute URL. A remote attacker could exploit ...
Sensiolabs Symfony
Fedoraproject Fedora 18
Fedoraproject Fedora 19
7.8
CVSSv3
CVE-2012-4480
mom creates world-writable pid files in /var/run
Ovirt Mom
Fedoraproject Fedora 17
Fedoraproject Fedora 18
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
HTML injection
CVE-2024-35894
SQL
CVE-2024-5105
CVE-2014-100005
CVE-2024-35895
unauthorized
CVE-2024-22120
CVE-2024-35890
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
6
NEXT »