Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
subversion subversion 1.0 vulnerabilities and exploits
(subscribe to this query)
10
CVSSv2
CVE-2004-0413
libsvn_ra_svn in Subversion 1.0.4 trusts the length field of (1) svn://, (2) svn+ssh://, and (3) other svn protocol URL strings, which allows remote malicious users to cause a denial of service (memory consumption) and possibly execute arbitrary code via an integer overflow that ...
Subversion Subversion 1.0.4
Subversion Subversion 1.0
Subversion Subversion 1.0.1
Openpkg Openpkg
Openpkg Openpkg 2.0
Subversion Subversion 1.0.2
Subversion Subversion 1.0.3
8.5
CVSSv2
CVE-2009-2411
Multiple integer overflows in the libsvn_delta library in Subversion prior to 1.5.7, and 1.6.x prior to 1.6.4, allow remote authenticated users and remote Subversion servers to execute arbitrary code via an svndiff stream with large windows that trigger a heap-based buffer overfl...
Subversion Subversion 1.0.7
Subversion Subversion 1.0.1
Subversion Subversion 1.4.4
Subversion Subversion 1.5.3
Subversion Subversion 1.4.2
Subversion Subversion 1.3.1
Subversion Subversion 1.3.0
Subversion Subversion 1.2.3
Subversion Subversion 1.1.1
Subversion Subversion 1.0.9
Subversion Subversion 0.36.0
Subversion Subversion 0.34.0
Subversion Subversion 0.28.2
Subversion Subversion 0.28.1
Subversion Subversion 0.23.0
Subversion Subversion 0.22.1
Subversion Subversion 1.0.6
Subversion Subversion 1.0.5
Subversion Subversion 1.0.4
Subversion Subversion 1.4.3
Subversion Subversion 1.1.0 Rc3
Subversion Subversion 1.5.1
7.5
CVSSv2
CVE-2004-0397
Stack-based buffer overflow during the apr_time_t data conversion in Subversion 1.0.2 and previous versions allows remote malicious users to execute arbitrary code via a (1) DAV2 REPORT query or (2) get-dated-rev svn-protocol command.
Subversion Subversion 1.0
Subversion Subversion 1.0.1
Subversion Subversion 1.0.2
3 EDB exploits
5
CVSSv2
CVE-2010-1623
Memory leak in the apr_brigade_split_line function in buckets/apr_brigade.c in the Apache Portable Runtime Utility library (aka APR-util) prior to 1.3.10, as used in the mod_reqtimeout module in the Apache HTTP Server and other software, allows remote malicious users to cause a d...
Apache Apr-util 1.3.6
Apache Apr-util 1.2.13
Apache Apr-util 1.3.3
Apache Apr-util 0.9.11
Apache Apr-util 0.9.9
Apache Apr-util 1.2.7
Apache Apr-util 0.9.13
Apache Apr-util 1.2.8
Apache Apr-util 1.2.2
Apache Apr-util 1.3.0
Apache Apr-util 1.3.4
Apache Apr-util 0.9.4
Apache Apr-util 1.0.2
Apache Apr-util 0.9.14
Apache Apr-util 1.0
Apache Apr-util 1.2.1
Apache Apr-util 0.9.3
Apache Apr-util
Apache Apr-util 1.1.0
Apache Apr-util 0.9.12
Apache Apr-util 0.9.1
Apache Apr-util 0.9.7
5
CVSSv2
CVE-2004-0915
Multiple unknown vulnerabilities in viewcvs prior to 0.9.2, when exporting a repository as a tar archive, does not properly implement the hide_cvsroot and forbidden settings, which could allow remote malicious users to gain sensitive information.
Viewcvs Viewcvs 0.9.2
Debian Debian Linux 3.0
5
CVSSv2
CVE-2004-0749
The mod_authz_svn module in Subversion 1.0.7 and previous versions does not properly restrict access to all metadata on unreadable paths, which could allow remote malicious users to gain sensitive information via (1) svn log -v, (2) svn propget, or (3) svn blame, and other comman...
Subversion Subversion 1.0.1
Subversion Subversion 1.0.2
Subversion Subversion 1.1.0 Rc3
Subversion Subversion 1.0.3
Subversion Subversion 1.0.4
Subversion Subversion 1.0.5
Subversion Subversion 1.0.6
Subversion Subversion 1.0.7
Subversion Subversion 1.0
Subversion Subversion 1.1.0 Rc1
Subversion Subversion 1.1.0 Rc2
Gentoo Linux 1.4
Gentoo Linux 0.5
Gentoo Linux 0.7
Gentoo Linux 1.1a
Gentoo Linux 1.2
4.3
CVSSv2
CVE-2009-0023
The apr_strmatch_precompile function in strmatch/apr_strmatch.c in Apache APR-util prior to 1.3.5 allows remote malicious users to cause a denial of service (daemon crash) via crafted input involving (1) a .htaccess file used with the Apache HTTP Server, (2) the SVNMasterURI dire...
Apache Apr-util 1.3.3
Apache Apr-util 1.2.7
Apache Apr-util 1.2.8
Apache Apr-util 1.2.2
Apache Apr-util 1.3.0
Apache Apr-util 0.9.4
Apache Apr-util 1.0.2
Apache Apr-util 1.0
Apache Apr-util 1.2.1
Apache Apr-util 0.9.3
Apache Apr-util 1.1.0
Apache Apr-util 0.9.1
Apache Apr-util
Apache Apr-util 1.3.1
Apache Apr-util 0.9.2
Apache Apr-util 1.3.2
Apache Apr-util 1.1.1
Apache Apr-util 1.1.2
Apache Apr-util 1.2.6
Apache Apr-util 1.0.1
Apache Apr-util 0.9.5
Apache Http Server
2.1
CVSSv2
CVE-2013-6372
The Subversion plugin prior to 1.54 for Jenkins stores credentials using base64 encoding, which allows local users to obtain passwords and SSH private keys by reading a subversion.credentials file.
Jenkins-ci Subversion-plugin 1.27
Jenkins-ci Subversion-plugin 1.44
Jenkins-ci Subversion-plugin 1.18
Jenkins-ci Subversion-plugin 1.12
Jenkins-ci Subversion-plugin 1.39
Jenkins-ci Subversion-plugin 1.38
Jenkins-ci Subversion-plugin 1.24
Jenkins-ci Subversion-plugin 1.32
Jenkins-ci Subversion-plugin 1.1
Jenkins-ci Subversion-plugin 1.46
Jenkins-ci Subversion-plugin 1.0
Jenkins-ci Subversion-plugin 1.45
Jenkins-ci Subversion-plugin 1.41
Jenkins-ci Subversion-plugin 1.50
Jenkins-ci Subversion-plugin 1.3
Jenkins-ci Subversion-plugin 1.16
Jenkins-ci Subversion-plugin 1.11
Jenkins-ci Subversion-plugin 1.19
Jenkins-ci Subversion-plugin 1.30
Jenkins-ci Subversion-plugin 1.17
Jenkins-ci Subversion-plugin 1.35
Jenkins-ci Subversion-plugin 1.14
2.1
CVSSv2
CVE-2004-1438
The mod_authz_svn Apache module for Subversion 1.0.4-r1 and previous versions allows remote authenticated users, with write access to the repository, to read unauthorized parts of the repository via the svn copy command.
Subversion Subversion 1.0.2
Subversion Subversion 1.0.3
Subversion Subversion 1.0.4
Subversion Subversion 1.0.5
Subversion Subversion 1.0
Subversion Subversion 1.0.1
NA
CVE-2023-22464
ViewVC is a browser interface for CVS and Subversion version control repositories. Versions before 1.2.3 and 1.1.30 are vulnerable to cross-site scripting. The impact of this vulnerability is mitigated by the need for an malicious user to have commit privileges to a Subversion re...
Viewvc Viewvc
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-7028
memory leak
log injection
CVE-2024-3400
CVE-2022-48695
CVE-2022-48675
CVE-2024-34487
CVE-2024-33792
spoof
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »