Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
sun cobalt raq 4 vulnerabilities and exploits
(subscribe to this query)
10
CVSSv2
CVE-2002-1361
overflow.cgi CGI script in Sun Cobalt RaQ 4 with the SHP (Security Hardening Patch) installed allows remote malicious users to execute arbitrary code via a POST request with shell metacharacters in the email parameter.
Sun Cobalt Raq 4
1 EDB exploit
7.5
CVSSv2
CVE-2002-0346
Cross-site scripting vulnerability in Cobalt RAQ 4 allows remote malicious users to execute arbitrary script as other Cobalt users via Javascript in a URL to (1) service.cgi or (2) alert.cgi.
Sun Cobalt Raq 4
Sun Cobalt Raq 2
Sun Cobalt Raq 3i
1 Github repository
7.5
CVSSv2
CVE-2002-0348
service.cgi in Cobalt RAQ 4 allows remote malicious users to cause a denial of service, and possibly execute arbitrary code, via a long service argument.
Sun Cobalt Raq 4
Sun Cobalt Raq 2
Sun Cobalt Raq 3i
1 Github repository
5
CVSSv2
CVE-2002-1344
Directory traversal vulnerability in wget prior to 1.8.2-4 allows a remote FTP server to create or overwrite files as the wget user via filenames containing (1) /absolute/path or (2) .. (dot dot) sequences.
Gnu Wget 1.8
Gnu Wget 1.8.1
Gnu Wget 1.5.3
Gnu Wget 1.6
Gnu Wget 1.8.2
Sun Cobalt Raq Xtr
Gnu Wget 1.7
Gnu Wget 1.7.1
5
CVSSv2
CVE-2002-0347
Directory traversal vulnerability in Cobalt RAQ 4 allows remote malicious users to read password-protected files, and possibly files outside the web root, via a .. (dot dot) in an HTTP request.
Sun Cobalt Raq 4
Sun Cobalt Raq 2
Sun Cobalt Raq 3i
1 Github repository
3.7
CVSSv2
CVE-2002-0430
MultiFileUploadHandler.php in the Sun Cobalt RaQ XTR administration interface allows local users to bypass authentication and overwrite arbitrary files via a symlink attack on a temporary file, followed by a request to MultiFileUpload.php.
Sun Cobalt Raq 2
Sun Cobalt Raq 3i
Sun Cobalt Raq 4
2 EDB exploits
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-26925
CVE-2023-41826
LFI
CVE-2022-22364
CVE-2024-2887
command injection
remote code execution
CVE-2024-34446
CVE-2022-48699
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started