Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
botan vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2006-3990
Multiple PHP remote file inclusion vulnerabilities in Paul M. Jones Savant2, possibly when used with the com_mtree component for Mambo and Joomla!, allow remote malicious users to execute arbitrary PHP code via a URL in the mosConfig_absolute_path parameter in (1) Savant2_Plugin_...
Phpsavant Savant2
2 EDB exploits
7.5
CVSSv2
CVE-2006-3323
PHP remote file inclusion vulnerability in admin/admin.php in MF Piadas 1.0 allows remote malicious users to execute arbitrary PHP code via the page parameter. NOTE: the same vector can be used for cross-site scripting, but CVE analysis suggests that this is resultant from file i...
Mastersfusion Mf Piadas 1.0
2 EDB exploits
7.5
CVSSv2
CVE-2006-1212
Unspecified vulnerability in index.php in Core CoreNews 2.0.1 allows remote malicious users to execute arbitrary commands via the page parameter, possibly due to a PHP remote file include vulnerability. NOTE: this vulnerability could not be confirmed by source code inspection of ...
Corenews Corenews 2.0.1
1 EDB exploit
7.5
CVSSv2
CVE-2006-1099
PHP remote file include vulnerability in logIT 1.3 and 1.4 allows remote malicious users to execute arbitrary PHP code via a URL in the pg parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
Logit Logit 1.3
Logit Logit 1.4
1 EDB exploit
7.5
CVSSv2
CVE-2006-1013
PHP remote file include vulnerability in index.php in SMartBlog (aka SMBlog) 1.2 allows remote malicious users to include and execute arbitrary PHP files via (1) the pg parameter and (2) a query string without a parameter.
Smartblog Smartblog 1.2
1 EDB exploit
6.8
CVSSv2
CVE-2006-2122
PHP remote file inclusion vulnerability in index.php in CoolMenus allows remote malicious users to execute arbitrary code via a URL in the page parameter. NOTE: the original report for this issue is probably erroneous, since CoolMenus does not appear to be written in PHP.
Coolmenus Coolmenus 4.0
1 EDB exploit
6.4
CVSSv2
CVE-2006-1584
Unspecified vulnerability in index.php in Warcraft III Replay Parser for PHP 1.8c allows remote malicious users to inject arbitrary web script or HTML via the page parameter, possibly related to fopen function calls or file uploads. NOTE: post-disclosure analysis by CVE suggests ...
Juliusz Julas Gonera Warcraft Iii Replay Parser Php 1.8c
1 EDB exploit
5
CVSSv2
CVE-2018-9860
An issue exists in Botan 1.11.32 up to and including 2.x prior to 2.6.0. An off-by-one error when processing malformed TLS-CBC ciphertext could cause the receiving side to include in the HMAC computation exactly 64K bytes of data following the record buffer, aka an over-read. The...
Botan Project Botan
5
CVSSv2
CVE-2016-6879
The X509_Certificate::allowed_usage function in botan 1.11.x prior to 1.11.31 might allow malicious users to have unspecified impact by leveraging a call with more than one Key_Usage set in the enum value.
Botan Project Botan 1.11.12
Botan Project Botan 1.11.13
Botan Project Botan 1.11.14
Botan Project Botan 1.11.15
Botan Project Botan 1.11.16
Botan Project Botan 1.11.29
Botan Project Botan 1.11.30
Botan Project Botan 1.11.4
Botan Project Botan 1.11.5
Botan Project Botan 1.11.6
Botan Project Botan 1.11.7
Botan Project Botan 1.11.21
Botan Project Botan 1.11.22
Botan Project Botan 1.11.23
Botan Project Botan 1.11.24
Botan Project Botan 1.11.1
Botan Project Botan 1.11.3
Botan Project Botan 1.11.8
Botan Project Botan 1.11.10
Botan Project Botan 1.11.17
Botan Project Botan 1.11.19
Botan Project Botan 1.11.26
5
CVSSv2
CVE-2015-7824
botan 1.11.x prior to 1.11.22 makes it easier for remote malicious users to decrypt TLS ciphertext data via a padding-oracle attack against TLS CBC ciphersuites.
Botan Project Botan
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27322
cross-site request forgery
unauthorized
CVE-2024-33925
reflected XSS
CVE-2023-51580
CVE-2023-51579
CVE-2015-2051
CVE-2023-51609
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
NEXT »