Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
subversion subversion vulnerabilities and exploits
(subscribe to this query)
10
CVSSv2
CVE-2013-4267
Ajaxeplorer prior to 5.0.1 allows remote malicious users to execute arbitrary commands via shell metacharacters in the (1) archive_name parameter to the Power FS module (plugins/action.powerfs/class.PowerFSController.php), a (2) file name to the getTrustSizeOnFileSystem function ...
Pydio Pydio
10
CVSSv2
CVE-2004-0413
libsvn_ra_svn in Subversion 1.0.4 trusts the length field of (1) svn://, (2) svn+ssh://, and (3) other svn protocol URL strings, which allows remote malicious users to cause a denial of service (memory consumption) and possibly execute arbitrary code via an integer overflow that ...
Subversion Subversion 1.0.4
Subversion Subversion 1.0
Subversion Subversion 1.0.1
Openpkg Openpkg
Openpkg Openpkg 2.0
Subversion Subversion 1.0.2
Subversion Subversion 1.0.3
9.3
CVSSv2
CVE-2008-0015
Stack-based buffer overflow in the CComVariant::ReadFromStream function in the Active Template Library (ATL), as used in the MPEG2TuneRequest ActiveX control in msvidctl.dll in DirectShow, in Microsoft Windows 2000 SP4, XP SP2 and SP3, Server 2003 SP2, Vista Gold, SP1, and SP2, a...
Microsoft Windows 2003 Server -
Microsoft Windows Xp -
Microsoft Windows Xp
2 EDB exploits
9
CVSSv2
CVE-2015-5259
Integer overflow in the read_string function in libsvn_ra_svn/marshal.c in Apache Subversion 1.9.x prior to 1.9.3 allows remote malicious users to execute arbitrary code via an svn:// protocol string, which triggers a heap-based buffer overflow and an out-of-bounds read.
Apache Subversion 1.9.2
Apache Subversion 1.9.1
Apache Subversion 1.9.0
8.5
CVSSv2
CVE-2009-2411
Multiple integer overflows in the libsvn_delta library in Subversion prior to 1.5.7, and 1.6.x prior to 1.6.4, allow remote authenticated users and remote Subversion servers to execute arbitrary code via an svndiff stream with large windows that trigger a heap-based buffer overfl...
Subversion Subversion 1.0.7
Subversion Subversion 1.0.1
Subversion Subversion 1.4.4
Subversion Subversion 1.5.3
Subversion Subversion 1.4.2
Subversion Subversion 1.3.1
Subversion Subversion 1.3.0
Subversion Subversion 1.2.3
Subversion Subversion 1.1.1
Subversion Subversion 1.0.9
Subversion Subversion 0.36.0
Subversion Subversion 0.34.0
Subversion Subversion 0.28.2
Subversion Subversion 0.28.1
Subversion Subversion 0.23.0
Subversion Subversion 0.22.1
Subversion Subversion 1.0.6
Subversion Subversion 1.0.5
Subversion Subversion 1.0.4
Subversion Subversion 1.4.3
Subversion Subversion 1.1.0 Rc3
Subversion Subversion 1.5.1
8.5
CVSSv2
CVE-2007-6415
scponly 4.6 and previous versions allows remote authenticated users to bypass intended restrictions and execute arbitrary code by invoking scp, as implemented by OpenSSH, with the -F and -o options.
Debian Debian Linux 3.1
Debian Debian Linux 4.0
8.5
CVSSv2
CVE-2007-6350
scponly 4.6 and previous versions allows remote authenticated users to bypass intended restrictions and execute code by invoking dangerous subcommands including (1) unison, (2) rsync, (3) svn, and (4) svnserve, as originally demonstrated by creating a Subversion (SVN) repository ...
Scponly Scponly
Scponly Scponly 4.5
Scponly Scponly 4.4
Scponly Scponly 4.3
Scponly Scponly 4.2
8
CVSSv2
CVE-2015-5343
Integer overflow in util.c in mod_dav_svn in Apache Subversion 1.7.x, 1.8.x prior to 1.8.15, and 1.9.x prior to 1.9.3 allows remote authenticated users to cause a denial of service (subversion server crash or memory consumption) and possibly execute arbitrary code via a skel-enco...
Apache Subversion
Debian Debian Linux 8.0
1 Github repository
7.8
CVSSv2
CVE-2015-0202
The mod_dav_svn server in Subversion 1.8.0 up to and including 1.8.11 allows remote malicious users to cause a denial of service (memory consumption) via a large number of REPORT requests, which trigger the traversal of FSFS repository nodes.
Apache Subversion 1.8.0
Apache Subversion 1.8.8
Apache Subversion 1.8.9
Apache Subversion 1.8.3
Apache Subversion 1.8.4
Apache Subversion 1.8.5
Apache Subversion 1.8.1
Apache Subversion 1.8.2
Apache Subversion 1.8.10
Apache Subversion 1.8.11
Apache Subversion 1.8.6
Apache Subversion 1.8.7
Opensuse Opensuse 13.1
Opensuse Opensuse 13.2
7.5
CVSSv2
CVE-2004-0397
Stack-based buffer overflow during the apr_time_t data conversion in Subversion 1.0.2 and previous versions allows remote malicious users to execute arbitrary code via a (1) DAV2 REPORT query or (2) get-dated-rev svn-protocol command.
Subversion Subversion 1.0
Subversion Subversion 1.0.1
Subversion Subversion 1.0.2
3 EDB exploits
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-49223
CVE-2024-0044
information disclosure
CVE-2024-35753
HTML injection
CVE-2024-21306
CVE-2024-35733
SQL injection
CVE-2024-35732
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
6
NEXT »