Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
fedoraproject fedora 19 vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2014-6394
visionmedia send prior to 0.8.4 for Node.js uses a partial comparison for verifying whether a directory is within the document root, which allows remote malicious users to access restricted directories, as demonstrated using "public-restricted" under a "public"...
Fedoraproject Fedora 21
Fedoraproject Fedora 20
Fedoraproject Fedora 19
Apple Xcode 7.0
Joyent Node.js
Joyent Node.js 0.8.2
Joyent Node.js 0.8.1
Joyent Node.js 0.8.0
1 Github repository
6.5
CVSSv2
CVE-2014-2328
lib/graph_export.php in Cacti 0.8.7g, 0.8.8b, and previous versions allows remote authenticated users to execute arbitrary commands via shell metacharacters in unspecified vectors.
Cacti Cacti
Fedoraproject Fedora 20
Fedoraproject Fedora 19
Opensuse Opensuse 13.2
Opensuse Opensuse 13.1
Debian Debian Linux 7.0
2.1
CVSSv2
CVE-2014-1859
(1) core/tests/test_memmap.py, (2) core/tests/test_multiarray.py, (3) f2py/f2py2e.py, and (4) lib/tests/test_io.py in NumPy prior to 1.8.1 allow local users to write to arbitrary files via a symlink attack on a temporary file.
Numpy Numpy
Numpy Numpy 1.8.1
Redhat Enterprise Linux 7.0
Redhat Enterprise Linux 6.0
Fedoraproject Fedora 19
Fedoraproject Fedora 20
4.3
CVSSv2
CVE-2014-2326
Cross-site scripting (XSS) vulnerability in cdef.php in Cacti 0.8.7g, 0.8.8b, and previous versions allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors.
Fedoraproject Fedora 19
Fedoraproject Fedora 20
Opensuse Opensuse 13.2
Opensuse Opensuse 13.1
Cacti Cacti 0.8.7g
Debian Debian Linux 7.0
2.1
CVSSv2
CVE-2014-5118
Trusted Boot (tboot) prior to 1.8.2 has a 'loader.c' Security Bypass Vulnerability
Trusted Boot Project Trusted Boot
Redhat Enterprise Linux 6.0
Redhat Enterprise Linux 7.0
Fedoraproject Fedora 19
Fedoraproject Fedora 20
4.3
CVSSv2
CVE-2013-4158
smokeping prior to 2.6.9 has XSS (incomplete fix for CVE-2012-0790)
Smokeping Smokeping
Debian Debian Linux 8.0
Debian Debian Linux 9.0
Debian Debian Linux 10.0
Fedoraproject Fedora 18
Fedoraproject Fedora 19
4.6
CVSSv2
CVE-2013-4251
The scipy.weave component in SciPy prior to 0.12.1 creates insecure temporary directories.
Scipy Scipy
Fedoraproject Fedora 19
Fedoraproject Fedora 20
Fedoraproject Fedora 18
Redhat Enterprise Linux 6.0
Debian Debian Linux 9.0
Debian Debian Linux 10.0
Debian Debian Linux 8.0
4.3
CVSSv2
CVE-2013-4168
Cross-site scripting (XSS) vulnerability in SmokePing 2.6.9 in the start and end time fields.
Smokeping Smokeping 2.6.9
Debian Debian Linux 8.0
Debian Debian Linux 10.0
Debian Debian Linux 9.0
Fedoraproject Fedora 18
Fedoraproject Fedora 19
5
CVSSv2
CVE-2014-0021
Chrony prior to 1.29.1 has traffic amplification in cmdmon protocol
Chrony Project Chrony
Debian Debian Linux 8.0
Debian Debian Linux 9.0
Debian Debian Linux 10.0
Fedoraproject Fedora 19
Fedoraproject Fedora 20
7.5
CVSSv2
CVE-2013-1915
ModSecurity prior to 2.7.3 allows remote malicious users to read arbitrary files, send HTTP requests to intranet servers, or cause a denial of service (CPU and memory consumption) via an XML external entity declaration in conjunction with an entity reference, aka an XML External ...
Trustwave Modsecurity
Opensuse Opensuse 11.4
Opensuse Opensuse 12.2
Opensuse Opensuse 12.3
Fedoraproject Fedora 17
Fedoraproject Fedora 18
Fedoraproject Fedora 19
Debian Debian Linux 6.0
Debian Debian Linux 7.0
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-32886
insecure direct object reference
CVE-2024-34342
file inclusion
CVE-2024-34562
CVE-2024-34347
CVE-2024-26026
CVE-2024-4647
unprivileged
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »