Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
flightcrew project flightcrew vulnerabilities and exploits
(subscribe to this query)
5
CVSSv2
CVE-2019-14452
Sigil prior to 0.9.16 is vulnerable to a directory traversal, allowing malicious users to write arbitrary files via a ../ (dot dot slash) in a ZIP archive entry that is mishandled during extraction.
Sigil-ebook Sigil
Flightcrew Project Flightcrew
Canonical Ubuntu Linux 19.04
Canonical Ubuntu Linux 18.04
Canonical Ubuntu Linux 16.04
4.3
CVSSv2
CVE-2019-13453
Zipios prior to 0.1.7 does not properly handle certain malformed zip archives and can go into an infinite loop, causing a denial of service. This is related to zipheadio.h:readUint32() and zipfile.cpp:Zipfile::Zipfile().
Zipios Project Zipios
6.8
CVSSv2
CVE-2019-13241
FlightCrew v0.9.2 and older are vulnerable to a directory traversal, allowing malicious users to write arbitrary files via a ../ (dot dot slash) in a ZIP archive entry that is mishandled during extraction.
Flightcrew Project Flightcrew
Canonical Ubuntu Linux 18.04
Canonical Ubuntu Linux 18.10
Canonical Ubuntu Linux 19.04
Canonical Ubuntu Linux 16.04
4.3
CVSSv2
CVE-2019-13032
An issue exists in FlightCrew v0.9.2 and previous versions. A NULL pointer dereference occurs in GetRelativePathToNcx() or GetRelativePathsToXhtmlDocuments() when a NULL pointer is passed to xc::XMLUri::isValidURI(). This affects third-party software (not Sigil) that uses FlightC...
Flightcrew Project Flightcrew
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-5248
CVE-2024-3110
CVE-2024-5552
CVE-2024-29415
HTML injection
CVE-2024-3095
TCP
type confusion
CVE-2024-1800
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started