Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cvs vulnerabilities and exploits
(subscribe to this query)
5.8
CVSSv2
CVE-2007-4099
Tor prior to 0.1.2.15 can select a guard node beyond the first listed never-before-connected-to guard node, which allows remote attackers with control of certain guard nodes to obtain sensitive information and possibly leverage further attacks.
Tor Tor 0.1.0.10
Tor Tor 0.1.1.20
Tor Tor 0.1.1.23
Tor Tor 0.1.0.11
Tor Tor 0.1.0.12
Tor Tor 0.1.1.3 Alpha
Tor Tor 0.1.1.4 Alpha
Tor Tor 0.1.0.13
Tor Tor 0.1.0.14
Tor Tor 0.1.0.18
Tor Tor 0.1.1.5 Alpha
Tor Tor 0.1.2.1 Alpha-cvs
Tor Tor 0.1.1.1 Alpha
Tor Tor 0.1.1.2 Alpha
Tor Tor 0.1.2.14
5
CVSSv2
CVE-2000-0338
Concurrent Versions Software (CVS) uses predictable temporary file names for locking, which allows local users to cause a denial of service by creating the lock directory before it is created for use by a legitimate CVS user.
Concurrent Versions Software Project Concurrent Versions Software -
1 EDB exploit
5
CVSSv2
CVE-2007-3165
Tor prior to 0.1.2.14 can construct circuits in which an entry guard is in the same family as the exit node, which might compromise the anonymity of traffic sources and destinations by exposing traffic to inappropriate remote observers.
Tor Tor 0.0.9.2
Tor Tor 0.0.9.3
Tor Tor 0.1.0.11
Tor Tor 0.1.0.12
Tor Tor 0.1.1.3 Alpha
Tor Tor 0.1.1.4 Alpha
Tor Tor 0.0.9.1
Tor Tor 0.0.9.10
Tor Tor 0.0.9.8
Tor Tor 0.0.9.9
Tor Tor 0.1.0.10
Tor Tor 0.1.1.20
Tor Tor 0.1.1.23
Tor Tor 0.0.9.4
Tor Tor 0.0.9.5
Tor Tor 0.1.0.13
Tor Tor 0.1.0.14
Tor Tor 0.1.1.5 Alpha
Tor Tor 0.1.2.1 Alpha-cvs
Tor Tor 0.0.9
Tor Tor 0.0.9.6
Tor Tor 0.0.9.7
5
CVSSv2
CVE-2002-0092
CVS prior to 1.10.8 does not properly initialize a global variable, which allows remote malicious users to cause a denial of service (server crash) via the diff capability.
Cvs Cvs
6.5
CVSSv2
CVE-2021-43806
Tuleap is a Libre and Open Source tool for end to end traceability of application and system developments. In affected versions Tuleap does not sanitize properly user settings when constructing the SQL query to browse and search commits in the CVS repositories. A authenticated ma...
Enalean Tuleap
6.8
CVSSv2
CVE-2015-9402
The users-ultra plugin prior to 1.5.59 for WordPress has uultra-form-cvs-form-conf arbitrary file upload.
Usersultra Users Ultra Membership
7.2
CVSSv2
CVE-2000-0670
The cvsweb CGI script in CVSWeb 1.80 allows remote attackers with write access to a CVS repository to execute arbitrary commands via shell metacharacters.
Cvsweb Developer Cvsweb 1.80
1 EDB exploit
4.3
CVSSv2
CVE-2008-1290
ViewVC prior to 1.0.5 includes "all-forbidden" files within search results that list CVS or Subversion (SVN) commits, which allows remote malicious users to obtain sensitive information.
Viewvc Viewvc 1.0.2
Viewvc Viewvc 1.0.3
5
CVSSv2
CVE-2004-1543
Directory traversal vulnerability in viewimg.php in KorWeblog 1.6.2-cvs and previous versions allows remote malicious users to list arbitrary directories via a .. (dot dot) in the path parameter.
Korweblog Korweblog 1.6.2cvs
1 EDB exploit
6.5
CVSSv2
CVE-2006-3633
OSSP shiela 1.1.5 and previous versions allows remote authenticated users to execute arbitrary commands on the CVS server via shell metacharacters in a filename that is committed.
Ossp Shiela 0.9.2
Ossp Shiela 1.0.0
Ossp Shiela 1.1.2
Ossp Shiela 1.1.3
Ossp Shiela 1.0.1
Ossp Shiela 1.0.2
Ossp Shiela 1.1.4
Ossp Shiela 0.9.1
Ossp Shiela 0.9.0
Ossp Shiela 1.1.0
Ossp Shiela 1.1.1
Ossp Shiela
Ossp Shiela 1.0.3
Ossp Shiela 1.0.4
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2022-48700
CVE-2022-48689
CVE-2024-27956
CVE-2023-6363
SQL
NULL pointer dereference
CVE-2023-41830
CVE-2015-2051
arbitrary
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »