Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
sqlite vulnerabilities and exploits
(subscribe to this query)
5.5
CVSSv3
CVE-2017-13685
The dump_callback function in SQLite 3.20.0 allows remote malicious users to cause a denial of service (EXC_BAD_ACCESS and application crash) via a crafted file.
Sqlite Sqlite 3.20.0
8.8
CVSSv3
CVE-2021-23404
This affects all versions of package sqlite-web. The SQL dashboard area allows sensitive actions to be performed without validating that the request originated from the application. This could enable an malicious user to trick a user into performing these actions unknowingly thro...
Sqlite-web Project Sqlite-web -
5.5
CVSSv3
CVE-2020-13435
SQLite up to and including 3.32.0 has a segmentation fault in sqlite3ExprCodeTarget in expr.c.
Sqlite Sqlite
Fedoraproject Fedora 32
9.8
CVSSv3
CVE-2023-32697
SQLite JDBC is a library for accessing and creating SQLite database files in Java. Sqlite-jdbc addresses a remote code execution vulnerability via JDBC URL. This issue impacting versions 3.6.14.1 up to and including 3.41.2.1 and has been fixed in version 3.41.2.2.
Sqlite Jdbc Project Sqlite Jdbc
NA
CVE-2008-0516
PHP remote file inclusion vulnerability in spaw/dialogs/confirm.php in SQLiteManager 1.2.0 allows remote malicious users to execute arbitrary PHP code via a URL in the spaw_root parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from t...
Sqlite Manager Sqlite Manager 1.2
NA
CVE-2007-1232
Directory traversal vulnerability in SQLiteManager 1.2.0 allows remote malicious users to read arbitrary files via a .. (dot dot) in a SQLiteManager_currentTheme cookie.
Sqlite Manager Sqlite Manager 1.2
1 EDB exploit
7.5
CVSSv3
CVE-2017-16048
`node-sqlite` was a malicious module published with the intent to hijack environment variables. It has been unpublished by npm.
Node-sqlite Project Node-sqlite
7.5
CVSSv3
CVE-2018-8740
In SQLite up to and including 3.22.0, databases whose schema is corrupted using a CREATE TABLE AS statement could cause a NULL pointer dereference, related to build.c and prepare.c.
Sqlite Sqlite
Debian Debian Linux 8.0
5 Github repositories
NA
CVE-2008-6589
Multiple cross-site scripting (XSS) vulnerabilities in LightNEasy "no database" (aka flat) version 1.2.2, and possibly SQLite version 1.2.2, allow remote malicious users to inject arbitrary web script or HTML via the page parameter to (1) index.php and (2) LightNEasy.ph...
Lightneasy Lightneasy 1.2.2
Sqlite Sqlite 1.2.2
NA
CVE-2008-6590
Multiple directory traversal vulnerabilities in LightNEasy "no database" (aka flat) version 1.2.2, and possibly SQLite version 1.2.2, allow remote malicious users to read arbitrary files via a .. (dot dot) in the page parameter to (1) index.php and (2) LightNEasy.php.
Lightneasy Lightneasy 1.2.2
Sqlite Sqlite 1.2.2
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-33572
CVE-2024-24919
CVE-2024-0230
CVE-2024-32714
HTML injection
local file inclusion
CVE-2024-31098
CVE-2024-31244
privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »