Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
devscripts vulnerabilities and exploits
(subscribe to this query)
107
VMScore
CVE-2012-3500
scripts/annotate-output.sh in devscripts prior to 2.12.2, as used in rpmdevtools prior to 8.3, allows local users to modify arbitrary files via a symlink attack on the temporary (1) standard output or (2) standard error output file.
Devscripts Devel Team Devscripts
Devscripts Devel Team Devscripts 2.12.0
445
VMScore
CVE-2015-5705
Argument injection vulnerability in devscripts prior to 2.15.7 allows remote malicious users to write to arbitrary files via a crafted symlink and crafted filename.
Devscripts Devel Team Devscripts
Fedoraproject Fedora 21
Fedoraproject Fedora 22
641
VMScore
CVE-2015-5704
scripts/licensecheck.pl in devscripts prior to 2.15.7 allows local users to execute arbitrary shell commands.
Devscripts Devel Team Devscripts
Fedoraproject Fedora 21
Fedoraproject Fedora 22
828
VMScore
CVE-2009-2946
Eval injection vulnerability in scripts/uscan.pl before Rev 1984 in devscripts allows remote malicious users to execute arbitrary Perl code via crafted pathnames on distribution servers for upstream source code used in Debian GNU/Linux packages.
Devscripts Devel Team Devscripts
755
VMScore
CVE-2006-0852
Direct static code injection vulnerability in write.php in Admbook 1.2.2 and previous versions allows remote malicious users to execute arbitrary PHP code via the X-Forwarded-For HTTP header field, which is inserted into content-data.php.
Devscripts Admbook
1 EDB exploit
668
VMScore
CVE-2018-13043
scripts/grep-excuses.pl in Debian devscripts up to and including 2.18.3 allows code execution through unsafe YAML loading because YAML::Syck is used without a configuration that prevents unintended blessing.
Debian Devscripts
Canonical Ubuntu Linux 17.10
Canonical Ubuntu Linux 18.04
578
VMScore
CVE-2013-7325
An issue exists in uscan in devscripts prior to 2.13.19, which could let a remote malicious user execute arbitrary code via a crafted tarball.
Debian Devscripts
Debian Debian Linux 7.0
Debian Debian Linux 8.0
Debian Debian Linux 9.0
Debian Debian Linux 10.0
Debian Debian Linux 11.0
642
VMScore
CVE-2016-1238
(1) cpan/Archive-Tar/bin/ptar, (2) cpan/Archive-Tar/bin/ptardiff, (3) cpan/Archive-Tar/bin/ptargrep, (4) cpan/CPAN/scripts/cpan, (5) cpan/Digest-SHA/shasum, (6) cpan/Encode/bin/enc2xs, (7) cpan/Encode/bin/encguess, (8) cpan/Encode/bin/piconv, (9) cpan/Encode/bin/ucmlint, (10) cpa...
Debian Debian Linux 8.0
Fedoraproject Fedora 24
Fedoraproject Fedora 23
Perl Perl 5.003 92
Perl Perl 5.21.1
Perl Perl 5.9.3
Perl Perl 5.14.1
Perl Perl 5.8.0
Perl Perl 5.003 97
Perl Perl 5.6.0
Perl Perl 5.17.11
Perl Perl 5.24.1
Perl Perl 5.16.0
Perl Perl 5.19.6
Perl Perl 5.22.3
Perl Perl 5.17.4
Perl Perl 5.003 03
Perl Perl 5.18.4
Perl Perl 5.18.2
Perl Perl 5.8.4
Perl Perl 5.15.6
Perl Perl 5.004 04
4 Github repositories
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
validation
CVE-2012-1823
malicious code
CVE-2024-5770
CVE-2023-45866
CVE-2024-35687
local users
CVE-2024-31246
CVE-2024-35730
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2