Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
file file 4.6 vulnerabilities and exploits
(subscribe to this query)
10
CVSSv2
CVE-2002-0450
Buffer overflow in Talentsoft Web+ 5.0 and previous versions allows remote malicious users to execute arbitrary code via a long Web Markup Language (wml) file name to (1) webplus.dll or (2) webplus.exe.
Talentsoft Web\\+ Server 4.6
Talentsoft Web\\+ Server 5.0
6.5
CVSSv2
CVE-2008-1657
OpenSSH 4.4 up to versions prior to 4.9 allows remote authenticated users to bypass the sshd_config ForceCommand directive by modifying the .ssh/rc session file.
Openbsd Openssh 4.4
Openbsd Openssh 4.4p1
Openbsd Openssh 4.5
Openbsd Openssh 4.6
Openbsd Openssh 4.7
Openbsd Openssh 4.8
1 Github repository
7.2
CVSSv2
CVE-2016-9754
The ring_buffer_resize function in kernel/trace/ring_buffer.c in the profiling subsystem in the Linux kernel prior to 4.6.1 mishandles certain integer calculations, which allows local users to gain privileges by writing to the /sys/kernel/debug/tracing/buffer_size_kb file.
Linux Linux Kernel 4.6
Linux Linux Kernel
6.8
CVSSv2
CVE-2011-4614
PHP remote file inclusion vulnerability in Classes/Controller/AbstractController.php in the workspaces system extension in TYPO3 4.5.x prior to 4.5.9, 4.6.x prior to 4.6.2, and development versions of 4.7 allows remote malicious users to execute arbitrary PHP code via a URL in th...
Typo3 Typo3 4.5.2
Typo3 Typo3 4.5.3
Typo3 Typo3 4.5.4
Typo3 Typo3 4.5.5
Typo3 Typo3 4.5.1
Typo3 Typo3 4.5.6
Typo3 Typo3 4.5.8
Typo3 Typo3 4.5
Typo3 Typo3 4.5.7
Typo3 Typo3 4.6
Typo3 Typo3 4.6.1
1 EDB exploit
7.5
CVSSv2
CVE-2006-7011
PHP remote file inclusion vulnerability in adminips.php in Develooping Flash Chat allows remote malicious users to execute arbitrary PHP code via a URL in the banned_file parameter. NOTE: CVE disputes this vulnerability because banned_file is set to a constant value
Develooping Flash Chat 4.6.1
Develooping Flash Chat 4.5.7
Develooping Flash Chat 4.6
7.5
CVSSv2
CVE-2006-4990
Multiple PHP remote file inclusion vulnerabilities in PhotoPost allow remote malicious users to execute arbitrary PHP code via a URL in the PP_PATH parameter in (1) addfav.php, (2) adm-admlog.php, (3) adm-approve.php, (4) adm-backup.php, (5) adm-cats.php, (6) adm-cinc.php, (7) ad...
Photopost Photopost Php Pro 4.5
Photopost Photopost Php Pro 4.6
7.5
CVSSv2
CVE-2006-4828
PHP remote file inclusion vulnerability in zipndownload.php in PhotoPost 4.0 up to and including 4.6 allows remote malicious users to execute arbitrary PHP code via a URL in the PP_PATH parameter.
Photopost Photopost Php Pro 4.0
Photopost Photopost Php Pro 4.1
Photopost Photopost Php Pro 4.2
Photopost Photopost Php Pro 4.3
Photopost Photopost Php Pro 4.6
Photopost Photopost Php Pro 4.4
Photopost Photopost Php Pro 4.5
1 EDB exploit
5
CVSSv2
CVE-2019-5418
There is a File Content Disclosure vulnerability in Action View <5.2.2.1, <5.1.6.2, <5.0.7.2, <4.2.11.1 and v3 where specially crafted accept headers can cause contents of arbitrary files on the target system's filesystem to be exposed.
Rubyonrails Rails
Debian Debian Linux 8.0
Redhat Cloudforms 4.7
Opensuse Leap 15.0
Fedoraproject Fedora 30
Redhat Software Collections 1.0
Redhat Cloudforms 4.6
1 EDB exploit
15 Github repositories
7.5
CVSSv2
CVE-2005-1248
Buffer overflow in Apple iTunes prior to 4.8 allows remote malicious users to execute arbitrary code via a crafted MPEG4 file.
Apple Itunes 4.2.72
Apple Itunes 4.7
Apple Itunes 4.7.1
Apple Itunes 4.5
Apple Itunes 4.6
7.5
CVSSv2
CVE-2003-1023
Stack-based buffer overflow in vfs_s_resolve_symlink of vfs/direntry.c for Midnight Commander (mc) 4.6.0 and previous versions, and possibly later versions, allows remote malicious users to execute arbitrary code during symlink conversion.
Midnight Commander Midnight Commander 4.5.52
Midnight Commander Midnight Commander 4.5.55
Midnight Commander Midnight Commander 4.6
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4671
unauthorized
CVE-2024-4776
CVE-2024-3407
CVE-2024-26026
CVE-2024-32888
wireless
CVE-2024-4656
template injection
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »