Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
file file 4.3 vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2007-4180
Directory traversal vulnerability in data/inc/theme.php in Pluck 4.3, when register_globals is enabled, allows remote malicious users to read arbitrary local files via a .. (dot dot) in the file parameter. NOTE: CVE and a reliable third party dispute this vulnerability because th...
Pluck Pluck 4.3
NA
CVE-2001-1017
rmuser utility in FreeBSD 4.2 and 4.3 creates a copy of the master.passwd file with world-readable permissions while updating the original file, which could allow local users to gain privileges by reading the copied file while rmuser is running, obtain the password hashes, and cr...
Freebsd Freebsd 4.2
Freebsd Freebsd 4.3
NA
CVE-2009-0349
Stack-based buffer overflow in FTPShell Server 4.3 allows user-assisted remote malicious users to cause a denial of service (persistent daemon crash) and possibly execute arbitrary code via a long string in a licensing key (aka .key) file.
Ftpshell Ftpshell Server 4.3
1 EDB exploit
9.8
CVSSv3
CVE-2019-0259
SAP BusinessObjects, versions 4.2 and 4.3, (Visual Difference) allows an malicious user to upload any file (including script files) without proper file format validation.
Sap Businessobjects 4.3
Sap Businessobjects 4.2
NA
CVE-2001-1098
Cisco PIX firewall manager (PFM) 4.3(2)g logs the enable password in plaintext in the pfm.log file, which could allow local users to obtain the password by reading the file.
Cisco Pix Firewall Manager 4.3\\(2\\)g
NA
CVE-2003-0278
Cross-site scripting (XSS) vulnerability in normal_html.cgi in Happycgi.com Happymall 4.3 and 4.4 allows remote malicious users to insert arbitrary web script via the file parameter.
Happycgi.com Happymall 4.3
Happycgi.com Happymall 4.4
1 EDB exploit
NA
CVE-2003-0243
Happycgi.com Happymall 4.3 and 4.4 allows remote malicious users to execute arbitrary commands via shell metacharacters in the file parameter for the (1) normal_html.cgi or (2) member_html.cgi scripts.
Happycgi Happymall 4.4
Happycgi Happymall 4.3
2 EDB exploits
7.5
CVSSv3
CVE-2015-9547
An issue exists on Samsung mobile devices with JBP(4.3) and KK(4.4.2) software. Because the READ_LOGS permission is mishandled, sensitive information is disclosed in a world-readable copy of the log file if the error message is "Unhandled exception in Dalvik VM," "...
Google Android 4.3
Google Android 4.4.2
NA
CVE-2001-0671
Buffer overflows in (1) send_status, (2) kill_print, and (3) chk_fhost in lpd in AIX 4.3 and 5.1 allow remote malicious users to gain root privileges.
Ibm Aix 4.3
Ibm Aix 5.1
8.8
CVSSv3
CVE-2023-28937
DataSpider Servista version 4.4 and previous versions uses a hard-coded cryptographic key. DataSpider Servista is data integration software. ScriptRunner and ScriptRunner for Amazon SQS are used to start the configured processes on DataSpider Servista. The cryptographic key is em...
Saison Dataspider Servista
Saison Dataspider Servista 4.3
Saison Dataspider Servista 4.4
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-30310
CVE-2024-21683
CVE-2024-22187
chrome
deserialization
XPath injection
CVE-2024-27842
denial of service
CVE-2024-24851
google
CVE-2024-35400
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »