Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
python vulnerabilities and exploits
(subscribe to this query)
10
CVSSv2
CVE-2009-0544
Buffer overflow in the PyCrypto ARC2 module 2.0.1 allows remote malicious users to cause a denial of service and possibly execute arbitrary code via a large ARC2 key length.
Pycrypto Arc2 2.0.1
1 EDB exploit
10
CVSSv2
CVE-2008-5031
Multiple integer overflows in Python 2.2.3 up to and including 2.5.1, and 2.6, allow context-dependent malicious users to have an unknown impact via a large integer value in the tabsize argument to the expandtabs method, as implemented by (1) the string_expandtabs function in Obj...
Python Python 2.4.6
Python Python 2.5.1
Python Python 2.2.3
Python Python 2.3.7
10
CVSSv2
CVE-2008-4250
The Server service in Microsoft Windows 2000 SP4, XP SP2 and SP3, Server 2003 SP1 and SP2, Vista Gold and SP1, Server 2008, and 7 Pre-Beta allows remote malicious users to execute arbitrary code via a crafted RPC request that triggers the overflow during path canonicalization, as...
Microsoft Windows 2000 -
Microsoft Windows Server 2003 -
Microsoft Windows Server 2008 -
Microsoft Windows Vista -
Microsoft Windows Xp -
6 EDB exploits
1 Nmap script
12 Github repositories
1 Article
10
CVSSv2
CVE-2007-1567
Stack-based buffer overflow in War FTP Daemon 1.65, and possibly earlier, allows remote malicious users to cause a denial of service or execute arbitrary code via unspecified vectors, as demonstrated by warftp_165.tar by Immunity. NOTE: this might be the same issue as CVE-1999-02...
War Ftp Daemon War Ftp Daemon
3 EDB exploits
2 Github repositories
10
CVSSv2
CVE-2006-4691
Stack-based buffer overflow in the NetpManageIPCConnect function in the Workstation service (wkssvc.dll) in Microsoft Windows 2000 SP4 and XP SP2 allows remote malicious users to execute arbitrary code via NetrJoinDomain2 RPC messages with a long hostname.
Microsoft Windows 2000
Microsoft Windows Xp
4 EDB exploits
10
CVSSv2
CVE-2005-3068
Unspecified vulnerability in Eric Integrated Development Environment (eric3) prior to 3.7.2 has unknown impact and attack vectors related to a "potential security exploit."
Eric Integrated Development Environment Eric Integrated Development Environment 3.6.0
Eric Integrated Development Environment Eric Integrated Development Environment 3.6.1
Eric Integrated Development Environment Eric Integrated Development Environment 3.6.2
Eric Integrated Development Environment Eric Integrated Development Environment 3.7.0
Eric Integrated Development Environment Eric Integrated Development Environment 3.5.0
Eric Integrated Development Environment Eric Integrated Development Environment 3.4.2
Eric Integrated Development Environment Eric Integrated Development Environment 3.5.1
Eric Integrated Development Environment Eric Integrated Development Environment 3.7.1
9.4
CVSSv2
CVE-2013-5654
Vulnerability in YingZhi Python Programming Language v1.9 allows arbitrary anonymous uploads to the phone's storage
Yingzhipython Project Yingzhipython 1.9
9.3
CVSSv2
CVE-2022-21668
pipenv is a Python development workflow tool. Starting with version 2018.10.9 and prior to version 2022.1.8, a flaw in pipenv's parsing of requirements files allows an malicious user to insert a specially crafted string inside a comment anywhere within a requirements.txt fil...
Pypa Pipenv
Fedoraproject Fedora 34
Fedoraproject Fedora 35
Fedoraproject Fedora 36
3 Github repositories
9.3
CVSSv2
CVE-2021-44228
Apache Log4j2 2.0-beta9 up to and including 2.15.0 (excluding security releases 2.12.2, 2.12.3, and 2.3.1) JNDI features used in configuration, log messages, and parameters do not protect against attacker controlled LDAP and other JNDI related endpoints. An attacker who can contr...
Apache Log4j 2.0
Apache Log4j
Siemens Sppa-t3000 Ses3000 Firmware
Siemens Logo\\! Soft Comfort
Siemens Spectrum Power 4 4.70
Siemens Spectrum Power 4
Siemens Siveillance Control Pro
Siemens Energyip Prepay 3.7
Siemens Energyip Prepay 3.8
Siemens Siveillance Identity 1.6
Siemens Siveillance Identity 1.5
Siemens Siveillance Command
Siemens Sipass Integrated 2.85
Siemens Sipass Integrated 2.80
Siemens Head-end System Universal Device Integration System
Siemens Gma-manager
Siemens Energyip 8.5
Siemens Energyip 8.6
Siemens Energyip 8.7
Siemens Energyip 9.0
Siemens Energy Engage 3.1
Siemens E-car Operation Center
2 Metasploit modules
1180 Github repositories
28 Articles
9.3
CVSSv2
CVE-2020-15271
In lookatme (python/pypi package) versions before 2.3.0, the package automatically loaded the built-in "terminal" and "file_loader" extensions. Users that use lookatme to render untrusted markdown may have malicious shell commands automatically run on their sy...
Lookatme Project Lookatme
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-40673
CVE-2024-36674
CVE-2024-27348
unspecified
CVE-2024-24919
CVE-2024-4870
malicious code
CVE-2024-2019
hard-coded
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »