Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
marcus schafer kiwi vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2011-2225
Unspecified vulnerability in Kiwi prior to 3.74.2, as used in SUSE Studio 1.1 prior to 1.1.4, allows malicious users to have an unknown impact via a crafted directory pathname that is inserted into config.sh.
Marcus Schafer Kiwi
Novell Suse Studio Onsite 1.1
NA
CVE-2011-2226
Cross-site scripting (XSS) vulnerability in Kiwi prior to 3.74.2, as used in SUSE Studio 1.1 prior to 1.1.4, allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors, related to a pattern listing.
Marcus Schafer Kiwi
Novell Suse Studio Onsite 1.1
NA
CVE-2011-2644
Cross-site scripting (XSS) vulnerability in Kiwi prior to 3.74.2, as used in SUSE Studio 1.1 prior to 1.1.4, allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors, related to an RPM info display.
Marcus Schafer Kiwi
Novell Suse Studio Onsite 1.1
NA
CVE-2011-2645
Unspecified vulnerability in Kiwi prior to 3.74.2, as used in SUSE Studio 1.1 prior to 1.1.4, allows remote malicious users to execute arbitrary code via a crafted filename for a custom RPM.
Marcus Schafer Kiwi
Novell Suse Studio Onsite 1.1
NA
CVE-2011-2646
Unspecified vulnerability in Kiwi prior to 3.74.2, as used in SUSE Studio 1.1 prior to 1.1.4, allows remote malicious users to execute arbitrary code via a crafted filename in the list of testdrive modified files.
Marcus Schafer Kiwi
Novell Suse Studio Onsite 1.1
NA
CVE-2011-2647
Unspecified vulnerability in Kiwi prior to 3.74.2, as used in SUSE Studio 1.1 prior to 1.1.4, allows remote malicious users to execute arbitrary code via a crafted archive name in the list of testdrive modified files.
Marcus Schafer Kiwi
Novell Suse Studio Onsite 1.1
NA
CVE-2011-2648
Unspecified vulnerability in Kiwi prior to 3.74.2, as used in SUSE Studio 1.1 prior to 1.1.4, allows remote malicious users to execute arbitrary code via a filter in a modified file.
Marcus Schafer Kiwi
Novell Suse Studio Onsite 1.1
NA
CVE-2011-2649
Kiwi prior to 3.74.2, as used in SUSE Studio 1.1 prior to 1.1.4, allows malicious users to execute arbitrary commands via shell metacharacters in an unspecified FileUtils function call.
Marcus Schafer Kiwi
Novell Suse Studio Onsite 1.1
NA
CVE-2011-2650
Cross-site scripting (XSS) vulnerability in Kiwi prior to 3.74.2, as used in SUSE Studio 1.1 prior to 1.1.4, allows remote malicious users to inject arbitrary web script or HTML via a crafted pattern name that is included in an RPM info display.
Marcus Schafer Kiwi
Novell Suse Studio Onsite 1.1
NA
CVE-2011-2651
Unspecified vulnerability in the file browser in Kiwi prior to 3.74.2, as used in SUSE Studio 1.1 prior to 1.1.4, allows remote malicious users to execute arbitrary code via a crafted filename.
Marcus Schafer Kiwi
Novell Suse Studio Onsite 1.1
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
deserialization
CVE-2024-4541
CVE-2024-3080
CVE-2024-4787
log injection
CVE-2024-5967
inject
CVE-2024-30078
CVE-2024-5899
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »