Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
debian debian linux 1.2 vulnerabilities and exploits
(subscribe to this query)
670
VMScore
CVE-2022-28346
An issue exists in Django 2.2 prior to 2.2.28, 3.2 prior to 3.2.13, and 4.0 prior to 4.0.4. QuerySet.annotate(), aggregate(), and extra() methods are subject to SQL injection in column aliases via a crafted dictionary (with dictionary expansion) as the passed **kwargs.
Djangoproject Django
Debian Debian Linux 9.0
Debian Debian Linux 11.0
7 Github repositories
668
VMScore
CVE-2022-28347
A SQL injection issue exists in QuerySet.explain() in Django 2.2 prior to 2.2.28, 3.2 prior to 3.2.13, and 4.0 prior to 4.0.4. This occurs by passing a crafted dictionary (with dictionary expansion) as the **options argument, and placing the injection payload in an option name.
Djangoproject Django
Debian Debian Linux 11.0
2 Github repositories
668
VMScore
CVE-2020-27153
In BlueZ prior to 5.55, a double free was found in the gatttool disconnect_cb() routine from shared/att.c. A remote attacker could potentially cause a denial of service or code execution, during service discovery, due to a redundant disconnect MGMT event.
Bluez Bluez
Debian Debian Linux 9.0
Debian Debian Linux 10.0
Opensuse Leap 15.1
Opensuse Leap 15.2
668
VMScore
CVE-2017-12865
Stack-based buffer overflow in "dnsproxy.c" in connman 1.34 and previous versions allows remote malicious users to cause a denial of service (crash) or execute arbitrary code via a crafted response query string passed to the "name" variable.
Intel Connman
Debian Debian Linux 8.0
668
VMScore
CVE-2016-8863
Heap-based buffer overflow in the create_url_list function in gena/gena_device.c in Portable UPnP SDK (aka libupnp) prior to 1.6.21 allows remote malicious users to cause a denial of service (crash) or possibly execute arbitrary code via a valid URI followed by an invalid one in ...
Libupnp Project Libupnp
Debian Debian Linux 8.0
1 Github repository
668
VMScore
CVE-2013-7439
Multiple off-by-one errors in the (1) MakeBigReq and (2) SetReqLen macros in include/X11/Xlibint.h in X11R6.x and libX11 prior to 1.6.0 allow remote malicious users to have unspecified impact via a crafted request, which triggers a buffer overflow.
X.org Libx11 1.3.2
X.org Libx11 1.0.2
X.org Libx11 1.4.1
X.org Libx11 1.1.99.1
X.org Libx11 1.2
X.org Libx11 1.3.4
X.org Libx11 1.1
X.org Libx11 1.3.3
X.org Libx11 1.1.99.2
X.org Libx11 1.3.1
X.org Libx11 1.0.1
X.org Libx11 1.2.2
X.org Libx11 1.1.5
X.org Libx11 1.4.0
X.org Libx11 1.5.0
X.org Libx11 1.5.99.901
X.org Libx11 1.3
X.org Libx11 1.3.99.902
X.org Libx11 1.3.99.903
X.org Libx11 1.1.4
X.org Libx11 1.4.4
X.org Libx11 1.1.6
668
VMScore
CVE-2014-9089
Multiple SQL injection vulnerabilities in view_all_bug_page.php in MantisBT prior to 1.2.18 allow remote malicious users to execute arbitrary SQL commands via the (1) sort or (2) dir parameter to view_all_set.php.
Debian Debian Linux 1.2
Mantisbt Mantisbt
668
VMScore
CVE-2013-4365
Heap-based buffer overflow in the fcgid_header_bucket_read function in fcgid_bucket.c in the mod_fcgid module prior to 2.3.9 for the Apache HTTP Server allows remote malicious users to have an unspecified impact via unknown vectors.
Apache Mod Fcgid
Debian Debian Linux 7.0
Debian Debian Linux 6.0
Opensuse Opensuse 12.3
Suse Linux Enterprise Software Development Kit 11
Opensuse Opensuse 11.4
Opensuse Opensuse 12.2
Suse Cloud 2.0
Suse Cloud 1.0
668
VMScore
CVE-2005-0005
Heap-based buffer overflow in psd.c for ImageMagick 6.1.0, 6.1.7, and possibly earlier versions allows remote malicious users to execute arbitrary code via a .PSD image file with a large number of layers.
Imagemagick Imagemagick 5.4.3
Imagemagick Imagemagick 6.1.7
Imagemagick Imagemagick 6.0.2
Imagemagick Imagemagick 6.0.8
Sgi Propack 3.0
Imagemagick Imagemagick 6.1
Imagemagick Imagemagick 6.0.3
Imagemagick Imagemagick 6.0
Imagemagick Imagemagick 6.2
Graphicsmagick Graphicsmagick 1.1
Graphicsmagick Graphicsmagick 1.1.3
Imagemagick Imagemagick 6.0.7
Imagemagick Imagemagick 6.0.1
Graphicsmagick Graphicsmagick 1.0
Imagemagick Imagemagick 6.1.4
Imagemagick Imagemagick 6.1.2
Imagemagick Imagemagick 5.4.7
Graphicsmagick Graphicsmagick 1.1.4
Imagemagick Imagemagick 6.0.2.5
Imagemagick Imagemagick 6.0.4
Imagemagick Imagemagick 6.1.6
Imagemagick Imagemagick 6.0.5
668
VMScore
CVE-2003-0962
Heap-based buffer overflow in rsync prior to 2.5.7, when running in server mode, allows remote malicious users to execute arbitrary code and possibly escape the chroot jail.
Redhat Rsync 2.4.6-2
Andrew Tridgell Rsync 2.5.1
Engardelinux Secure Community 1.0.1
Redhat Rsync 2.5.5-1
Andrew Tridgell Rsync 2.5.5
Redhat Rsync 2.4.6-5
Engardelinux Secure Linux 1.2
Engardelinux Secure Linux 1.1
Andrew Tridgell Rsync 2.3.1
Andrew Tridgell Rsync 2.5.2
Andrew Tridgell Rsync 2.4.0
Redhat Rsync 2.5.4-2
Andrew Tridgell Rsync 2.4.6
Andrew Tridgell Rsync 2.4.8
Redhat Rsync 2.5.5-4
Andrew Tridgell Rsync 2.5.4
Andrew Tridgell Rsync 2.4.5
Engardelinux Secure Community 2.0
Andrew Tridgell Rsync 2.5.3
Andrew Tridgell Rsync 2.3.2
Engardelinux Secure Linux 1.5
Andrew Tridgell Rsync 2.4.4
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
buffer overflow
type confusion
server-side request forgery
CVE-2024-38440
CVE-2024-27801
CVE-2024-5868
CVE-2024-0582
CVE-2024-37643
CVE-2024-3105
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »