Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
file file 4.7 vulnerabilities and exploits
(subscribe to this query)
9.3
CVSSv2
CVE-2010-2600
Untrusted search path vulnerability in BlackBerry Desktop Software prior to 6.0.0.47 allows local users, and possibly remote attackers, to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse DLL that is located in the same folder as a file that is processe...
Rim Blackberry Desktop Software 5.0
Rim Blackberry Desktop Software 5.0.1
Rim Blackberry Desktop Software 3.0
Rim Blackberry Desktop Software
Rim Blackberry Desktop Software 4.6
Rim Blackberry Desktop Software 4.5
Rim Blackberry Desktop Software 4.0
Rim Blackberry Desktop Software 4.7
9.3
CVSSv2
CVE-2009-2817
Buffer overflow in Apple iTunes prior to 9.0.1 allows remote malicious users to execute arbitrary code or cause a denial of service (application crash) via a crafted .pls file.
Apple Itunes 2.0.3
Apple Itunes 2.0.2
Apple Itunes 4.0.1
Apple Itunes 4.5.0
Apple Itunes 4.1.0
Apple Itunes 4.7.0
Apple Itunes 6.0.4
Apple Itunes 6.0.3
Apple Itunes 7.3.2
Apple Itunes 7.1.1
Apple Itunes 7.6.2
Apple Itunes 7.7.0
Apple Itunes 1.1.2
Apple Itunes 3.0.1
Apple Itunes 4.2.72
Apple Itunes 4.6.0
Apple Itunes 4.7
Apple Itunes 6.0.2
Apple Itunes 6.0.4.2
Apple Itunes 7.0.2
Apple Itunes 7.3.1
Apple Itunes 7.5.0
2 EDB exploits
9.3
CVSSv2
CVE-2008-4720
Multiple PHP remote file inclusion vulnerabilities in The Gemini Portal 4.7 allow remote malicious users to execute arbitrary PHP code via a URL in the lang parameter to (1) page/forums/bottom.php and (2) page/forums/category.php.
Arzdev Gemini Portal 4.7
1 EDB exploit
8.5
CVSSv2
CVE-2007-0505
Unrestricted file upload vulnerability in the Project issue tracking 4.7.0 up to and including 5.x prior to 20070123, a module for Drupal, allows remote authenticated users to execute arbitrary code by attaching a file with executable or multiple extensions to a project issue.
Drupal Project 4.7 1.1
Drupal Project 4.7 2.1
Drupal Project 4.6 1.1
Drupal Project 4.7
Drupal Project Issue Tracking Module 5.0
Drupal Project 5.0
Drupal Project Issue Tracking Module 4.7
Drupal Project 4.6
Drupal Project Issue Tracking Module 4.7 1.1
Drupal Project Issue Tracking Module 4.7 2.1
7.5
CVSSv2
CVE-2021-28132
LUCY Security Awareness Software up to and including 4.7.x allows unauthenticated remote code execution because the Migration Tool (in the Support section) allows upload of .php files within a system.tar.gz file. The .php file becomes accessible with a public/system/static URI.
Lucysecurity Security Awareness
7.5
CVSSv2
CVE-2007-4752
ssh in OpenSSH prior to 4.7 does not properly handle when an untrusted cookie cannot be created and uses a trusted X11 cookie instead, which allows malicious users to violate intended policy and gain privileges by causing an X client to be treated as trusted.
Openbsd Openssh 4.3p2
Openbsd Openssh 4.3p1
Openbsd Openssh 4.0
Openbsd Openssh 4.3
Openbsd Openssh 4.2p1
Openbsd Openssh 4.4p1
Openbsd Openssh 4.4
Openbsd Openssh 4.1
Openbsd Openssh 4.0p1
Openbsd Openssh
Openbsd Openssh 4.5
Openbsd Openssh 4.2
Openbsd Openssh 4.1p1
7.5
CVSSv2
CVE-2006-2831
Drupal 4.6.x prior to 4.6.8 and 4.7.x prior to 4.7.2, when running under certain Apache configurations such as when FileInfo overrides are disabled within .htaccess, allows remote malicious users to execute arbitrary code by uploading a file with multiple extensions, a variant of...
Drupal Drupal 4.6.0
Drupal Drupal 4.6.1
Drupal Drupal 4.7.1
Drupal Drupal 4.6
Drupal Drupal 4.6.6
Drupal Drupal 4.6.7
Drupal Drupal 4.7.0
Drupal Drupal 4.6.2
Drupal Drupal 4.6.3
Drupal Drupal 4.6.4
Drupal Drupal 4.6.5
7.5
CVSSv2
CVE-2005-1248
Buffer overflow in Apple iTunes prior to 4.8 allows remote malicious users to execute arbitrary code via a crafted MPEG4 file.
Apple Itunes 4.2.72
Apple Itunes 4.7
Apple Itunes 4.7.1
Apple Itunes 4.5
Apple Itunes 4.6
7.5
CVSSv2
CVE-2005-0764
Buffer overflow in command.C for rxvt-unicode prior to 5.3 allows remote malicious users to execute arbitrary code via a crafted file containing long escape sequences.
Marc Lehmann Rxvt-unicode 3.7
Marc Lehmann Rxvt-unicode 3.9
Marc Lehmann Rxvt-unicode 4.6
Marc Lehmann Rxvt-unicode 4.8
Marc Lehmann Rxvt-unicode 3.4
Marc Lehmann Rxvt-unicode 3.5
Marc Lehmann Rxvt-unicode 4.9
Marc Lehmann Rxvt-unicode 5.0
Marc Lehmann Rxvt-unicode 5.1
Marc Lehmann Rxvt-unicode 5.2
Marc Lehmann Rxvt-unicode 4.0
Marc Lehmann Rxvt-unicode 4.1
Marc Lehmann Rxvt-unicode 4.2
Marc Lehmann Rxvt-unicode 4.3
Marc Lehmann Rxvt-unicode 4.4
Marc Lehmann Rxvt-unicode 3.6
Marc Lehmann Rxvt-unicode 3.8
Marc Lehmann Rxvt-unicode 4.5
Marc Lehmann Rxvt-unicode 4.7
7.5
CVSSv2
CVE-2005-0115
Stack-based buffer overflow in DataRescue Interactive Disassembler (IDA) Pro 4.7 allows malicious users to execute arbitrary code via a PE file with an Import Address Table containing a long import library name.
Datarescue Ida 4.7
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4671
unauthorized
CVE-2024-4776
CVE-2024-3407
CVE-2024-26026
CVE-2024-32888
wireless
CVE-2024-4656
template injection
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »