Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
bash vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2017-8799
Untrusted input execution via igetwild in all iRODS versions prior to 4.1.11 and 4.2.1 allows other iRODS users (potentially anonymous) to execute remote shell commands via iRODS virtual pathnames. To exploit this vulnerability, a virtual iRODS pathname that includes a semicolon ...
Irods Irods
Irods Irods 4.2.0
7.8
CVSSv3
CVE-2017-5932
The path autocompletion feature in Bash 4.4 allows local users to gain privileges via a crafted filename starting with a " (double quote) character and a command substitution metacharacter.
Gnu Bash 4.4
8.1
CVSSv3
CVE-2016-4338
The mysql user parameter configuration script (userparameter_mysql.conf) in the agent in Zabbix prior to 2.0.18, 2.2.x prior to 2.2.13, and 3.0.x prior to 3.0.3, when used with a shell other than bash, allows context-dependent malicious users to execute arbitrary code or SQL comm...
Zabbix Zabbix 2.0.14
Zabbix Zabbix 2.0.13
Zabbix Zabbix 2.0.6
Zabbix Zabbix 2.0.5
Zabbix Zabbix 2.2.10
Zabbix Zabbix 2.2.9
Zabbix Zabbix 2.0.12
Zabbix Zabbix 2.0.11
Zabbix Zabbix 2.0.4
Zabbix Zabbix 2.0.3
Zabbix Zabbix 2.0.2
Zabbix Zabbix 2.2.8
Zabbix Zabbix 2.2.7
Zabbix Zabbix 2.2.0
Zabbix Zabbix 3.0.2
Zabbix Zabbix 2.2.2
Zabbix Zabbix 2.2.1
Zabbix Zabbix 2.0.17
Zabbix Zabbix 2.0.10
Zabbix Zabbix 2.0.9
Zabbix Zabbix 2.0.1
Zabbix Zabbix 2.0.0
1 EDB exploit
9.8
CVSSv3
CVE-2016-10033
The mailSend function in the isMail transport in PHPMailer prior to 5.2.18 might allow remote malicious users to pass extra parameters to the mail command and consequently execute arbitrary code via a \" (backslash double quote) in a crafted Sender property.
Phpmailer Project Phpmailer
Wordpress Wordpress
Joomla Joomla\\!
9 EDB exploits
120 Github repositories
8.8
CVSSv3
CVE-2016-5685
Dell iDRAC7 and iDRAC8 devices with firmware prior to 2.40.40.40 allow authenticated users to gain Bash shell access through a string injection.
Dell Idrac7 Firmware
Dell Idrac8 Firmware
2.8
CVSSv3
CVE-2016-5480
Unspecified vulnerability in Oracle Sun Solaris 10 allows local users to affect integrity via vectors related to Bash.
Oracle Solaris 10
9.8
CVSSv3
CVE-2016-1329
Cisco NX-OS 6.0(2)U6(1) up to and including 6.0(2)U6(5) on Nexus 3000 devices and 6.0(2)A6(1) up to and including 6.0(2)A6(5) and 6.0(2)A7(1) on Nexus 3500 devices has hardcoded credentials, which allows remote malicious users to obtain root privileges via a (1) TELNET or (2) SSH...
Cisco Nx-os 6.0\\\\\\(2\\\\\\)u6\\\\\\(5\\\\\\)
Cisco Nx-os 6.0\\\\\\(2\\\\\\)u6\\\\\\(4\\\\\\)
Cisco Nx-os 6.0\\\\\\(2\\\\\\)u6\\\\\\(3\\\\\\)
Cisco Nx-os 6.0\\\\\\(2\\\\\\)u6\\\\\\(2\\\\\\)
Cisco Nx-os 6.0\\\\\\(2\\\\\\)u6\\\\\\(1\\\\\\)
Cisco Nx-ox 6.0\\\\\\(2\\\\\\)a7\\\\\\(1\\\\\\)
Cisco Nx-os 6.0\\\\\\(2\\\\\\)a6\\\\\\(1\\\\\\)
Cisco Nx-os 6.0\\\\\\(2\\\\\\)a6\\\\\\(5\\\\\\)
Cisco Nx-os 6.0\\\\\\(2\\\\\\)a6\\\\\\(4\\\\\\)
Cisco Nx-os 6.0\\\\\\(2\\\\\\)a6\\\\\\(3\\\\\\)
Cisco Nx-os 6.0\\\\\\(2\\\\\\)a6\\\\\\(2\\\\\\)
1 Article
7.4
CVSSv3
CVE-2015-7393
dcoep in BIG-IP LTM, Analytics, APM, ASM, and Link Controller 11.2.0 up to and including 11.6.0 and 12.0.0 prior to 12.0.0 HF1, BIG-IP AAM 11.4.0 up to and including 11.6.0 and 12.0.0 prior to 12.0.0 HF1, BIG-IP AFM and PEM 11.3.0 up to and including 11.6.0 and 12.0.0 prior to 12...
F5 Big-iq Application Delivery Controller 4.5.0
F5 Big-ip Application Security Manager 11.4.0
F5 Big-ip Application Security Manager 11.2.1
F5 Big-ip Application Security Manager 11.2.0
F5 Big-ip Application Security Manager 11.6.0
F5 Big-ip Application Security Manager 12.0.0
F5 Big-ip Application Security Manager 11.5.1
F5 Big-ip Application Security Manager 11.4.1
F5 Big-ip Application Security Manager 11.3.0
F5 Big-iq Security 4.1.0
F5 Big-iq Security 4.3.0
F5 Big-iq Security 4.5.0
F5 Big-iq Security 4.0.0
F5 Big-iq Security 4.2.0
F5 Big-iq Security 4.4.0
F5 Big-ip Wan Optimization Manager 11.2.0
F5 Big-ip Wan Optimization Manager 11.2.1
F5 Big-ip Wan Optimization Manager 11.3.0
F5 Big-ip Global Traffic Manager 11.6.0
F5 Big-ip Global Traffic Manager 11.4.1
F5 Big-ip Global Traffic Manager 11.3.0
F5 Big-ip Global Traffic Manager 11.2.1
NA
CVE-2014-7196
Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2014-7169. Reason: This candidate is a duplicate of CVE-2014-7169. A typo caused the wrong ID to be used. Notes: All CVE users should reference CVE-2014-7169 instead of this candidate. All references and descripti...
15 EDB exploits
NA
CVE-2014-62771
Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2014-6271. Reason: This candidate is a duplicate of CVE-2014-6271. A typo caused the wrong ID to be used. Notes: All CVE users should reference CVE-2014-6271 instead of this candidate. All references and descripti...
14 EDB exploits
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-33572
CVE-2024-24919
CVE-2024-0230
CVE-2024-32714
HTML injection
local file inclusion
CVE-2024-31098
CVE-2024-31244
privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
6
7
8
9
10
NEXT »