Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
open enterprise server vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2006-2658
Directory traversal vulnerability in the xsp component in mod_mono in Mono/C# web server, as used in SUSE Open-Enterprise-Server 1 and SUSE Linux 9.2 up to and including 10.0, allows remote malicious users to read arbitrary files via a .. (dot dot) sequence in an HTTP request.
Mono Xsp
Suse Suse Open Enterprise Server 1
Suse Suse Linux 10.0
Suse Suse Linux 9.3
Suse Suse Linux 9.2
Suse Suse Linux 10.1
NA
CVE-2012-1262
Cross-site scripting (XSS) vulnerability in cgi-bin/mt/mt-wizard.cgi in Movable Type prior to 4.38, 5.0x prior to 5.07, and 5.1x prior to 5.13, when the product is incompletely installed, allows remote malicious users to inject arbitrary web script or HTML via the dbuser paramete...
Movabletype Movable Type Open Source 5.04
Movabletype Movable Type Open Source 5.031
Movabletype Movable Type Open Source 4.34
Movabletype Movable Type Open Source 4.33
Movabletype Movable Type Open Source 4.2
Movabletype Movable Type Open Source 4.1
Movabletype Movable Type Open Source 5.12
Movabletype Movable Type Open Source 5.11
Movabletype Movable Type Open Source 5.03
Movabletype Movable Type Open Source 5.02
Movabletype Movable Type Open Source 4.32
Movabletype Movable Type Open Source 4.31
Movabletype Movable Type Open Source 4.3
Movabletype Movable Type Open Source 4.0
Movabletype Movable Type Open Source 5.05
Movabletype Movable Type Open Source 5.1
Movabletype Movable Type Open Source 4.36
Movabletype Movable Type Open Source 4.35
Movabletype Movable Type Open Source 4.25
Movabletype Movable Type Open Source 4.23
Movabletype Movable Type Open Source 5.06
Movabletype Movable Type Open Source 5.051
NA
CVE-1999-0007
Information from SSL-encrypted sessions via PKCS #1.
C2net Stonghold Web Server 2.0.1
C2net Stonghold Web Server 2.2
C2net Stonghold Web Server 2.3
Hp Open Market Secure Webserver 2.1
Microsoft Exchange Server 5.5
Microsoft Internet Information Server 3.0
Microsoft Internet Information Server 4.0
Microsoft Site Server 3.0
Netscape Certificate Server 1.0
Netscape Collabra Server 3.5.2
Netscape Directory Server 1.3
Netscape Directory Server 3.1
Netscape Directory Server 3.12
Netscape Enterprise Server 2.0
Netscape Enterprise Server 3.0.1b
Netscape Enterprise Server 3.5.1
Netscape Fasttrack Server 3.01b
Netscape Messaging Server 3.54
Netscape Proxy Server 3.5.1
Ssleay Ssleay 0.6.6
Ssleay Ssleay 0.8.1
Ssleay Ssleay 0.9
NA
CVE-2008-5021
nsFrameManager in Firefox 3.x prior to 3.0.4, Firefox 2.x prior to 2.0.0.18, Thunderbird 2.x prior to 2.0.0.18, and SeaMonkey 1.x prior to 1.1.13 allows remote malicious users to cause a denial of service (crash) and possibly execute arbitrary code by modifying properties of a fi...
Mozilla Firefox
Mozilla Seamonkey
Mozilla Thunderbird
Debian Debian Linux 4.0
Canonical Ubuntu Linux 6.06
Canonical Ubuntu Linux 7.10
Canonical Ubuntu Linux 8.04
Canonical Ubuntu Linux 8.10
Fedoraproject Fedora 9
Fedoraproject Fedora 8
Opensuse Opensuse 10.2
Suse Linux Enterprise Server 9
Novell Linux Desktop 9
Opensuse Opensuse 11.0
Opensuse Opensuse 10.3
Suse Linux Enterprise Software Development Kit 10
Suse Linux Enterprise Debuginfo 10
Suse Linux Enterprise Server 10
Suse Linux Enterprise Desktop 10
Novell Open Enterprise Server -
NA
CVE-2007-2654
xfs_fsr in xfsdump creates a .fsr temporary directory with insecure permissions, which allows local users to read or overwrite arbitrary files on xfs filesystems.
Suse Suse Linux 9.0
Suse Suse Linux 8
Suse Suse Linux 1.0
Suse Suse Linux Openexchange Server 4.0
Suse Suse Linux School Server Gold
Suse Suse Linux Standard Server 8.0
Xfsdump Xfsdump 2.2.38
Suse Suse Open Enterprise Server 9
Suse Opensuse 10.2
7.5
CVSSv3
CVE-2020-6851
OpenJPEG up to and including 2.3.1 has a heap-based buffer overflow in opj_t1_clbl_decode_processor in openjp2/t1.c because of lack of opj_j2k_update_image_dimensions validation.
Uclouvain Openjpeg
Fedoraproject Fedora 30
Fedoraproject Fedora 31
Debian Debian Linux 8.0
Debian Debian Linux 9.0
Debian Debian Linux 10.0
Redhat Enterprise Linux Desktop 7.0
Redhat Enterprise Linux Workstation 7.0
Redhat Enterprise Linux Server 7.0
Redhat Enterprise Linux 8.0
Redhat Enterprise Linux Server Aus 7.7
Redhat Enterprise Linux Server Tus 7.7
Redhat Enterprise Linux Eus 7.7
Redhat Enterprise Linux Eus 8.1
Redhat Enterprise Linux Eus 8.2
Redhat Enterprise Linux Server Tus 8.2
Redhat Enterprise Linux Server Aus 8.2
Redhat Enterprise Linux Server Tus 8.4
Redhat Enterprise Linux Eus 8.4
Redhat Enterprise Linux Server Aus 8.4
Oracle Outside In Technology 8.5.4
Oracle Outside In Technology 8.5.5
NA
CVE-2011-1163
The osf_partition function in fs/partitions/osf.c in the Linux kernel prior to 2.6.38 does not properly handle an invalid number of partitions, which might allow local users to obtain potentially sensitive information from kernel heap memory via vectors related to partition-table...
Linux Linux Kernel
Suse Linux Enterprise Server 10
Redhat Enterprise Linux Server 5.0
Redhat Enterprise Linux Workstation 5.0
Redhat Enterprise Linux Desktop 6.0
Redhat Enterprise Linux Server 6.0
Redhat Enterprise Linux Workstation 6.0
Redhat Enterprise Linux Desktop 5.0
Redhat Enterprise Linux Server Aus 5.6
Redhat Enterprise Linux Eus 5.6
6.1
CVSSv3
CVE-2011-1776
The is_gpt_valid function in fs/partitions/efi.c in the Linux kernel prior to 2.6.39 does not check the size of an Extensible Firmware Interface (EFI) GUID Partition Table (GPT) entry, which allows physically proximate malicious users to cause a denial of service (heap-based buff...
Linux Linux Kernel
Redhat Enterprise Linux Server 5.0
Redhat Enterprise Linux Workstation 5.0
Redhat Enterprise Linux Desktop 5.0
Redhat Enterprise Linux Server Aus 5.6
Redhat Enterprise Linux Server Eus 5.6
5.3
CVSSv3
CVE-2022-39211
Nextcloud server is an open source personal cloud platform. In affected versions it was found that locally running webservices can be found and requested erroneously. It is recommended that the Nextcloud Server is upgraded to 23.0.8 or 24.0.4. It is recommended that the Nextcloud...
Nextcloud Nextcloud Server
Nextcloud Nextcloud Enterprise Server
8.1
CVSSv3
CVE-2019-3878
A vulnerability was found in mod_auth_mellon before v0.14.2. If Apache is configured as a reverse proxy and mod_auth_mellon is configured to only let through authenticated users (with the require valid-user directive), adding special HTTP headers that are normally used to start t...
Mod Auth Mellon Project Mod Auth Mellon
Fedoraproject Fedora 29
Fedoraproject Fedora 30
Redhat Enterprise Linux Desktop 7.0
Redhat Enterprise Linux Workstation 7.0
Redhat Enterprise Linux 7.0
Redhat Enterprise Linux Server 7.0
Redhat Enterprise Linux Server Tus 7.6
Redhat Enterprise Linux Server Eus 7.6
Redhat Enterprise Linux Server Aus 7.6
Canonical Ubuntu Linux 18.04
Canonical Ubuntu Linux 18.10
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-32976
CVE-2024-33557
CVE-2024-36801
CVE-2024-35654
authentication bypass
CVE-2024-24919
CSRF
code execution
CVE-2024-27348
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »