Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
subversion subversion 1.0.1 vulnerabilities and exploits
(subscribe to this query)
10
CVSSv2
CVE-2004-0413
libsvn_ra_svn in Subversion 1.0.4 trusts the length field of (1) svn://, (2) svn+ssh://, and (3) other svn protocol URL strings, which allows remote malicious users to cause a denial of service (memory consumption) and possibly execute arbitrary code via an integer overflow that ...
Subversion Subversion 1.0.4
Subversion Subversion 1.0
Subversion Subversion 1.0.1
Openpkg Openpkg
Openpkg Openpkg 2.0
Subversion Subversion 1.0.2
Subversion Subversion 1.0.3
8.5
CVSSv2
CVE-2009-2411
Multiple integer overflows in the libsvn_delta library in Subversion prior to 1.5.7, and 1.6.x prior to 1.6.4, allow remote authenticated users and remote Subversion servers to execute arbitrary code via an svndiff stream with large windows that trigger a heap-based buffer overfl...
Subversion Subversion 1.0.7
Subversion Subversion 1.0.1
Subversion Subversion 1.4.4
Subversion Subversion 1.5.3
Subversion Subversion 1.4.2
Subversion Subversion 1.3.1
Subversion Subversion 1.3.0
Subversion Subversion 1.2.3
Subversion Subversion 1.1.1
Subversion Subversion 1.0.9
Subversion Subversion 0.36.0
Subversion Subversion 0.34.0
Subversion Subversion 0.28.2
Subversion Subversion 0.28.1
Subversion Subversion 0.23.0
Subversion Subversion 0.22.1
Subversion Subversion 1.0.6
Subversion Subversion 1.0.5
Subversion Subversion 1.0.4
Subversion Subversion 1.4.3
Subversion Subversion 1.1.0 Rc3
Subversion Subversion 1.5.1
7.5
CVSSv2
CVE-2004-0397
Stack-based buffer overflow during the apr_time_t data conversion in Subversion 1.0.2 and previous versions allows remote malicious users to execute arbitrary code via a (1) DAV2 REPORT query or (2) get-dated-rev svn-protocol command.
Subversion Subversion 1.0
Subversion Subversion 1.0.1
Subversion Subversion 1.0.2
3 EDB exploits
6.8
CVSSv2
CVE-2010-4539
The walk function in repos.c in the mod_dav_svn module for the Apache HTTP Server, as distributed in Apache Subversion prior to 1.6.15, allows remote authenticated users to cause a denial of service (NULL pointer dereference and daemon crash) via vectors that trigger the walking ...
Apache Subversion 1.2.0
Apache Subversion 1.0.4
Apache Subversion 1.6.10
Apache Subversion 0.22.0
Apache Subversion 1.0.8
Apache Subversion 1.4.5
Apache Subversion 1.0.2
Apache Subversion 1.1.2
Apache Subversion 0.26.0
Apache Subversion 0.10.1
Apache Subversion 0.15
Apache Subversion 1.0.9
Apache Subversion 1.4.2
Apache Subversion 0.37.0
Apache Subversion M2
Apache Subversion 1.6.2
Apache Subversion 0.9
Apache Subversion 0.7
Apache Subversion 0.19.0
Apache Subversion 0.22.2
Apache Subversion 0.12.0
Apache Subversion 1.5.5
5
CVSSv2
CVE-2010-1623
Memory leak in the apr_brigade_split_line function in buckets/apr_brigade.c in the Apache Portable Runtime Utility library (aka APR-util) prior to 1.3.10, as used in the mod_reqtimeout module in the Apache HTTP Server and other software, allows remote malicious users to cause a d...
Apache Apr-util 1.3.6
Apache Apr-util 1.2.13
Apache Apr-util 1.3.3
Apache Apr-util 0.9.11
Apache Apr-util 0.9.9
Apache Apr-util 1.2.7
Apache Apr-util 0.9.13
Apache Apr-util 1.2.8
Apache Apr-util 1.2.2
Apache Apr-util 1.3.0
Apache Apr-util 1.3.4
Apache Apr-util 0.9.4
Apache Apr-util 1.0.2
Apache Apr-util 0.9.14
Apache Apr-util 1.0
Apache Apr-util 1.2.1
Apache Apr-util 0.9.3
Apache Apr-util
Apache Apr-util 1.1.0
Apache Apr-util 0.9.12
Apache Apr-util 0.9.1
Apache Apr-util 0.9.7
5
CVSSv2
CVE-2004-0749
The mod_authz_svn module in Subversion 1.0.7 and previous versions does not properly restrict access to all metadata on unreadable paths, which could allow remote malicious users to gain sensitive information via (1) svn log -v, (2) svn propget, or (3) svn blame, and other comman...
Subversion Subversion 1.0.1
Subversion Subversion 1.0.2
Subversion Subversion 1.1.0 Rc3
Subversion Subversion 1.0.3
Subversion Subversion 1.0.4
Subversion Subversion 1.0.5
Subversion Subversion 1.0.6
Subversion Subversion 1.0.7
Subversion Subversion 1.0
Subversion Subversion 1.1.0 Rc1
Subversion Subversion 1.1.0 Rc2
Gentoo Linux 1.4
Gentoo Linux 0.5
Gentoo Linux 0.7
Gentoo Linux 1.1a
Gentoo Linux 1.2
4.3
CVSSv2
CVE-2020-2199
Jenkins Subversion Partial Release Manager Plugin 1.0.1 and previous versions does not escape the error message for the repository URL field form validation, resulting in a reflected cross-site scripting vulnerability.
Jenkins Subversion Partial Release Manager
4.3
CVSSv2
CVE-2011-0715
The mod_dav_svn module for the Apache HTTP Server, as distributed in Apache Subversion prior to 1.6.16, allows remote malicious users to cause a denial of service (NULL pointer dereference and daemon crash) via a request that contains a lock token.
Apache Subversion 1.0.1
Apache Subversion 0.36.0
Apache Subversion 1.0.9
Apache Subversion 1.0.6
Apache Subversion 1.2.1
Apache Subversion 1.2.0
Apache Subversion 1.1.4
Apache Subversion 1.4.0
Apache Subversion 0.18.1
Apache Subversion 0.18.0
Apache Subversion 0.22.2
Apache Subversion 0.28.1
Apache Subversion 0.28.0
Apache Subversion 0.34.0
Apache Subversion 0.33.1
Apache Subversion 1.5.0
Apache Subversion 1.5.3
Apache Subversion 1.6.3
Apache Subversion 1.6.2
Apache Subversion 0.9
Apache Subversion 0.8
Apache Subversion 0.15
4.3
CVSSv2
CVE-2009-0023
The apr_strmatch_precompile function in strmatch/apr_strmatch.c in Apache APR-util prior to 1.3.5 allows remote malicious users to cause a denial of service (daemon crash) via crafted input involving (1) a .htaccess file used with the Apache HTTP Server, (2) the SVNMasterURI dire...
Apache Apr-util 1.3.3
Apache Apr-util 1.2.7
Apache Apr-util 1.2.8
Apache Apr-util 1.2.2
Apache Apr-util 1.3.0
Apache Apr-util 0.9.4
Apache Apr-util 1.0.2
Apache Apr-util 1.0
Apache Apr-util 1.2.1
Apache Apr-util 0.9.3
Apache Apr-util 1.1.0
Apache Apr-util 0.9.1
Apache Apr-util
Apache Apr-util 1.3.1
Apache Apr-util 0.9.2
Apache Apr-util 1.3.2
Apache Apr-util 1.1.1
Apache Apr-util 1.1.2
Apache Apr-util 1.2.6
Apache Apr-util 1.0.1
Apache Apr-util 0.9.5
Apache Http Server
4
CVSSv2
CVE-2014-3504
The (1) serf_ssl_cert_issuer, (2) serf_ssl_cert_subject, and (3) serf_ssl_cert_certificate functions in Serf 0.2.0 up to and including 1.3.x prior to 1.3.7 does not properly handle a NUL byte in a domain name in the subject's Common Name (CN) field of an X.509 certificate, w...
Apache Subversion 1.6.10
Apache Subversion 1.6.19
Apache Subversion 1.8.2
Apache Subversion 1.4.5
Apache Subversion 1.7.3
Apache Subversion 1.6.20
Apache Subversion 1.7.17
Apache Subversion 1.8.0
Apache Subversion 1.4.2
Apache Subversion 1.6.2
Apache Subversion 1.7.1
Apache Subversion 1.7.11
Apache Subversion 1.7.16
Apache Subversion 1.6.18
Apache Subversion 1.6.16
Apache Subversion 1.5.5
Apache Subversion 1.7.4
Apache Subversion 1.6.21
Apache Subversion 1.6.5
Apache Subversion 1.7.6
Apache Subversion 1.5.3
Apache Subversion 1.4.0
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-17519
open redirect
CVE-2024-21683
cache poisoning
CVE-2021-47524
CVE-2021-47521
CVE-2024-5229
CVE-2021-47560
local
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »