Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
file file 4.3 vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2006-4828
PHP remote file inclusion vulnerability in zipndownload.php in PhotoPost 4.0 up to and including 4.6 allows remote malicious users to execute arbitrary PHP code via a URL in the PP_PATH parameter.
Photopost Photopost Php Pro 4.0
Photopost Photopost Php Pro 4.1
Photopost Photopost Php Pro 4.2
Photopost Photopost Php Pro 4.3
Photopost Photopost Php Pro 4.6
Photopost Photopost Php Pro 4.4
Photopost Photopost Php Pro 4.5
1 EDB exploit
7.5
CVSSv2
CVE-1999-0427
Eudora 4.1 allows remote malicious users to perform a denial of service by sending attachments with long file names.
Qualcomm Eudora 4.3
Qualcomm Eudora 4.2
Qualcomm Eudora Pro 1.00
Qualcomm Eudora Light 3.0
5
CVSSv2
CVE-2002-0591
Directory traversal vulnerability in AOL Instant Messenger (AIM) 4.8 beta and previous versions allows remote malicious users to create arbitrary files and execute commands via a Direct Connection with an IMG tag with a SRC attribute that specifies the target filename.
Aol Instant Messenger 4.1
Aol Instant Messenger 4.6
Aol Instant Messenger 4.8 Beta
Aol Instant Messenger 4.2
Aol Instant Messenger 4.3
Aol Instant Messenger 4.4
Aol Instant Messenger 4.5
Aol Instant Messenger 4.0
Aol Instant Messenger 4.7
1 EDB exploit
7.5
CVSSv2
CVE-2005-1054
PHP remote file inclusion vulnerability in news.php in ModernBill 4.3.0 and previous versions allows remote malicious users to execute arbitrary PHP code by modifying the DIR parameter to reference a URL on a remote web server that contains the code.
Moderngigabyte Modernbill
1 EDB exploit
3.7
CVSSv2
CVE-2000-1162
ghostscript prior to 5.10-16 allows local users to overwrite files of other users via a symlink attack.
Aladdin Enterprises Ghostscript 4.3
Aladdin Enterprises Ghostscript 5.10.10
Aladdin Enterprises Ghostscript 5.10.15
Aladdin Enterprises Ghostscript 5.50
1.2
CVSSv2
CVE-2002-1674
procfs on FreeBSD prior to 4.5 allows local users to cause a denial of service (kernel panic) by removing a file that the fstatfs function refers to.
Freebsd Freebsd 4.2
Freebsd Freebsd 4.3
Freebsd Freebsd 4.4
Freebsd Freebsd 4.5
Freebsd Freebsd 4.1
Freebsd Freebsd 4.1.1
2.1
CVSSv2
CVE-2001-1029
libutil in OpenSSH on FreeBSD 4.4 and previous versions does not drop privileges before verifying the capabilities for reading the copyright and welcome files, which allows local users to bypass the capabilities checks and read arbitrary files by specifying alternate copyright or...
Openbsd Openssh 4.5
Freebsd Freebsd
1 EDB exploit
5.5
CVSSv2
CVE-2020-26831
SAP BusinessObjects BI Platform (Crystal Report), versions - 4.1, 4.2, 4.3, does not sufficiently validate uploaded XML entities during crystal report generation due to missing XML validation, An attacker with basic privileges can inject some arbitrary XML entities leading to int...
Sap Businessobjects Business Intelligence Platform 4.1
Sap Businessobjects Business Intelligence Platform 4.2
Sap Businessobjects Business Intelligence Platform 4.3
5.1
CVSSv2
CVE-2006-2161
Buffer overflow in (1) TZipBuilder 1.79.03.01, (2) Abakt 0.9.2 and 0.9.3-beta1, (3) CAM UnZip 4.0 and 4.3, and possibly other products, allows user-assisted malicious users to execute arbitrary code via a ZIP archive that contains a file with a long file name.
Roger Aelbrecht Tzipbuilder 1.79.03.01
Cam Development Cam Unzip 4.3
Erik Dienske Abakt 0.9.2
Erik Dienske Abakt 0.9.3 Beta1
Cam Development Cam Unzip 4.0
5
CVSSv2
CVE-2020-6308
SAP BusinessObjects Business Intelligence Platform (Web Services) versions - 410, 420, 430, allows an unauthenticated malicious user to inject arbitrary values as CMS parameters to perform lookups on the internal network which is otherwise not accessible externally. On successful...
Sap Businessobjects Business Intelligence Platform 4.1
Sap Businessobjects Business Intelligence Platform 4.2
Sap Businessobjects Business Intelligence Platform 4.3
3 Github repositories
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4761
command injection
CVE-2024-3676
IDOR
CVE-2024-30039
CVE-2024-32113
CVE-2024-30049
CVE-2024-4776
SQL injection
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »