Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
gat3way vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2009-2766
httpd.c in httpd in the management GUI in DD-WRT 24 sp1 does not require administrative authentication for programs under cgi-bin/, which allows remote malicious users to change settings via HTTP requests.
Dd-wrt Dd-wrt 24
1 EDB exploit
NA
CVE-2009-0543
ProFTPD Server 1.3.1, with NLS support enabled, allows remote malicious users to bypass SQL injection protection mechanisms via invalid, encoded multibyte characters, which are not properly handled in (1) mod_sql_mysql and (2) mod_sql_postgres.
Proftpd Proftpd 1.3.1
1 EDB exploit
1 Github repository
NA
CVE-2009-1337
The exit_notify function in kernel/exit.c in the Linux kernel prior to 2.6.30-rc1 does not restrict exit signals when the CAP_KILL capability is held, which allows local users to send an arbitrary signal to a process by running a program that modifies the exit_signal field and th...
Linux Linux Kernel 2.6.27.12
Linux Linux Kernel 2.6.20.6
Linux Linux Kernel 2.6.28
Linux Linux Kernel 2.6.25.4
Linux Linux Kernel 2.6.25.11
Linux Linux Kernel 2.6.20.9
Linux Linux Kernel 2.6.26
Linux Linux Kernel 2.6.18
Linux Linux Kernel 2.6.11
Linux Linux Kernel 2.6.25.9
Linux Linux Kernel 2.6.23.4
Linux Linux Kernel 2.6.22.15
Linux Linux Kernel 2.6.16.16
Linux Linux Kernel 2.6.18.7
Linux Linux Kernel 2.6.17.12
Linux Linux Kernel 2.6.16.39
Linux Linux Kernel 2.6.27.3
Linux Linux Kernel 2.6.21
Linux Linux Kernel 2.6.16.9
Linux Linux Kernel 2.6.17.9
Linux Linux Kernel 2.6.11.2
Linux Linux Kernel 2.6.27.1
1 EDB exploit
NA
CVE-2008-4210
fs/open.c in the Linux kernel prior to 2.6.22 does not properly strip setuid and setgid bits when there is a write to a file, which allows local users to gain the privileges of a different group, and obtain sensitive information or possibly have unspecified other impact, by creat...
Linux Linux Kernel 2.6.18
Linux Linux Kernel 2.4.36.6
Linux Linux Kernel 2.6.21.6
Linux Linux Kernel 2.4.36.2
Linux Linux Kernel 2.6.20.16
Linux Linux Kernel 2.6.19.4
Linux Linux Kernel 2.6.20.21
Linux Linux Kernel 2.4.36.1
Linux Linux Kernel 2.6.20.17
Linux Linux Kernel 2.6.21.5
Linux Linux Kernel 2.4.36.4
Linux Linux Kernel 2.6.20.20
Linux Linux Kernel 2.4.36.3
Linux Linux Kernel 2.6.20.18
Linux Linux Kernel 2.6.19.7
Linux Linux Kernel 2.6.20.19
Linux Linux Kernel 2.4.36
Linux Linux Kernel 2.6.19.6
Linux Linux Kernel 2.6.19.5
Linux Linux Kernel 2.4.36.5
Linux Linux Kernel 2.2.27
Linux Linux Kernel
1 EDB exploit
NA
CVE-2009-0542
SQL injection vulnerability in ProFTPD Server 1.3.1 up to and including 1.3.2rc2 allows remote malicious users to execute arbitrary SQL commands via a "%" (percent) character in the username, which introduces a "'" (single quote) character during variable...
Proftpd Project Proftpd 1.3.1
Proftpd Project Proftpd 1.3.2 Rc2
Proftpd Project Proftpd 1.3.2
2 EDB exploits
NA
CVE-2008-6974
Multiple cross-site request forgery (CSRF) vulnerabilities in apply.cgi in DD-WRT 24 sp1 and previous versions allow remote malicious users to hijack the authentication of administrators for requests that (1) execute arbitrary commands via the ping_ip parameter; (2) change the ad...
Dd-wrt Dd-wrt
2 EDB exploits
NA
CVE-2008-6975
Multiple cross-site request forgery (CSRF) vulnerabilities in apply.cgi in DD-WRT 24 sp2 allow remote malicious users to hijack the authentication of administrators for requests that (1) execute arbitrary commands via the ping_ip parameter; (2) change the administrative credentia...
Dd-wrt Dd-wrt 24
2 EDB exploits
NA
CVE-2009-2765
httpd.c in httpd in the management GUI in DD-WRT 24 sp1, and other versions before build 12533, allows remote malicious users to execute arbitrary commands via shell metacharacters in a request to a cgi-bin/ URI.
Dd-wrt Dd-wrt
3 EDB exploits
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2021-35000
CVE-2024-4439
unauthorized
CVE-2024-0042
CVE-2024-31848
CVE-2023-40694
cache poisoning
CVE-2024-23707
firmware
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started