Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
python vulnerabilities and exploits
(subscribe to this query)
10
CVSSv2
CVE-2009-0544
Buffer overflow in the PyCrypto ARC2 module 2.0.1 allows remote malicious users to cause a denial of service and possibly execute arbitrary code via a large ARC2 key length.
Pycrypto Arc2 2.0.1
1 EDB exploit
10
CVSSv2
CVE-2008-5031
Multiple integer overflows in Python 2.2.3 up to and including 2.5.1, and 2.6, allow context-dependent malicious users to have an unknown impact via a large integer value in the tabsize argument to the expandtabs method, as implemented by (1) the string_expandtabs function in Obj...
Python Python 2.4.6
Python Python 2.5.1
Python Python 2.2.3
Python Python 2.3.7
10
CVSSv2
CVE-2008-4250
The Server service in Microsoft Windows 2000 SP4, XP SP2 and SP3, Server 2003 SP1 and SP2, Vista Gold and SP1, Server 2008, and 7 Pre-Beta allows remote malicious users to execute arbitrary code via a crafted RPC request that triggers the overflow during path canonicalization, as...
Microsoft Windows 2000 -
Microsoft Windows Server 2003 -
Microsoft Windows Server 2008 -
Microsoft Windows Vista -
Microsoft Windows Xp -
6 EDB exploits
1 Nmap script
12 Github repositories
1 Article
10
CVSSv2
CVE-2007-1567
Stack-based buffer overflow in War FTP Daemon 1.65, and possibly earlier, allows remote malicious users to cause a denial of service or execute arbitrary code via unspecified vectors, as demonstrated by warftp_165.tar by Immunity. NOTE: this might be the same issue as CVE-1999-02...
War Ftp Daemon War Ftp Daemon
3 EDB exploits
2 Github repositories
10
CVSSv2
CVE-2006-4691
Stack-based buffer overflow in the NetpManageIPCConnect function in the Workstation service (wkssvc.dll) in Microsoft Windows 2000 SP4 and XP SP2 allows remote malicious users to execute arbitrary code via NetrJoinDomain2 RPC messages with a long hostname.
Microsoft Windows 2000
Microsoft Windows Xp
4 EDB exploits
10
CVSSv2
CVE-2005-3068
Unspecified vulnerability in Eric Integrated Development Environment (eric3) prior to 3.7.2 has unknown impact and attack vectors related to a "potential security exploit."
Eric Integrated Development Environment Eric Integrated Development Environment 3.6.0
Eric Integrated Development Environment Eric Integrated Development Environment 3.6.1
Eric Integrated Development Environment Eric Integrated Development Environment 3.6.2
Eric Integrated Development Environment Eric Integrated Development Environment 3.7.0
Eric Integrated Development Environment Eric Integrated Development Environment 3.5.0
Eric Integrated Development Environment Eric Integrated Development Environment 3.4.2
Eric Integrated Development Environment Eric Integrated Development Environment 3.5.1
Eric Integrated Development Environment Eric Integrated Development Environment 3.7.1
9.4
CVSSv2
CVE-2013-5654
Vulnerability in YingZhi Python Programming Language v1.9 allows arbitrary anonymous uploads to the phone's storage
Yingzhipython Project Yingzhipython 1.9
9.3
CVSSv2
CVE-2022-21668
pipenv is a Python development workflow tool. Starting with version 2018.10.9 and prior to version 2022.1.8, a flaw in pipenv's parsing of requirements files allows an malicious user to insert a specially crafted string inside a comment anywhere within a requirements.txt fil...
Pypa Pipenv
Fedoraproject Fedora 34
Fedoraproject Fedora 35
Fedoraproject Fedora 36
3 Github repositories
9.3
CVSSv2
CVE-2020-15271
In lookatme (python/pypi package) versions before 2.3.0, the package automatically loaded the built-in "terminal" and "file_loader" extensions. Users that use lookatme to render untrusted markdown may have malicious shell commands automatically run on their sy...
Lookatme Project Lookatme
9.3
CVSSv2
CVE-2020-16977
<p>A remote code execution vulnerability exists in Visual Studio Code when the Python extension loads a Jupyter notebook file. An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the current user. If the current user is logged...
Microsoft Visual Studio Code -
1 Github repository
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-38002
CVE-2006-4304
CVE-2024-4336
CVE-2024-33437
CVE-2024-4340
CVE-2024-27956
privilege
insecure direct object reference
XSS
item search icon">CVE-2024-25938
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »