Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
fedoraproject fedora 18 vulnerabilities and exploits
(subscribe to this query)
5
CVSSv2
CVE-2013-1895
The py-bcrypt module prior to 0.3 for Python does not properly handle concurrent memory access, which allows malicious users to bypass authentication via multiple authentication requests, which trigger the password hash to be overwritten.
Python Py-bcrypt
Fedoraproject Fedora 17
Fedoraproject Fedora 18
1 Github repository
4.3
CVSSv2
CVE-2013-4752
Symfony 2.0.X prior to 2.0.24, 2.1.X prior to 2.1.12, 2.2.X prior to 2.2.5, and 2.3.X prior to 2.3.3 have an issue in the HttpFoundation component. The Host header can be manipulated by an attacker when the framework is generating an absolute URL. A remote attacker could exploit ...
Sensiolabs Symfony
Fedoraproject Fedora 18
Fedoraproject Fedora 19
7.2
CVSSv2
CVE-2013-4161
gksu-polkit-0.0.3-6.fc18 was reported as fixing the issue in CVE-2012-5617 but the patch was improperly applied and it did not fixed the security issue.
Gksu-polkit Project Gksu-polkit 0.0.3
Fedoraproject Fedora 18
Fedoraproject Fedora 19
5
CVSSv2
CVE-2013-4357
The eglibc package prior to 2.14 incorrectly handled the getaddrinfo() function. An attacker could use this issue to cause a denial of service.
Eglibc Eglibc
Novell Suse Linux Enterprise Server 11.0
Debian Debian Linux 6.0
Debian Debian Linux 7.0
Canonical Ubuntu Linux 10.04
Canonical Ubuntu Linux 12.04
Canonical Ubuntu Linux 14.04
Fedoraproject Fedora 18
Fedoraproject Fedora 19
2.1
CVSSv2
CVE-2012-5474
The file /etc/openstack-dashboard/local_settings within Red Hat OpenStack Platform 2.0 and RHOS Essex Release (python-django-horizon package prior to 2012.1.1) is world readable and exposes the secret key value.
Redhat Openstack 2.0
Openstack Horizon
Debian Debian Linux 8.0
Debian Debian Linux 9.0
Debian Debian Linux 10.0
Fedoraproject Fedora 18
7.8
CVSSv2
CVE-2012-5645
A denial of service flaw was found in the way the server component of Freeciv prior to 2.3.4 processed certain packets. A remote attacker could send a specially-crafted packet that, when processed would lead to memory exhaustion or excessive CPU consumption.
Freeciv Freeciv
Fedoraproject Fedora 16
Fedoraproject Fedora 17
Fedoraproject Fedora 18
4.3
CVSSv2
CVE-2013-4158
smokeping prior to 2.6.9 has XSS (incomplete fix for CVE-2012-0790)
Smokeping Smokeping
Debian Debian Linux 8.0
Debian Debian Linux 9.0
Debian Debian Linux 10.0
Fedoraproject Fedora 18
Fedoraproject Fedora 19
4.3
CVSSv2
CVE-2012-1114
A Cross-Site Scripting (XSS) vulnerability exists in LDAP Account Manager (LAM) Pro 3.6 in the filter parameter to cmd.php in an export and exporter_id action. and the filteruid parameter to list.php.
Ldap-account-manager Ldap Account Manager 3.6
Debian Debian Linux 8.0
Debian Debian Linux 9.0
Fedoraproject Fedora 16
Fedoraproject Fedora 17
Fedoraproject Fedora 18
4.3
CVSSv2
CVE-2012-1115
A Cross-Site Scripting (XSS) vulnerability exists in LDAP Account Manager (LAM) Pro 3.6 in the export, add_value_form, and dn parameters to cmd.php.
Ldap-account-manager Ldap Account Manager 3.6
Debian Debian Linux 8.0
Debian Debian Linux 9.0
Fedoraproject Fedora 16
Fedoraproject Fedora 17
Fedoraproject Fedora 18
4
CVSSv2
CVE-2013-4411
Review Board: URL processing gives unauthorized users access to review lists
Reviewboard Reviewboard
Fedoraproject Fedora 18
Fedoraproject Fedora 19
Fedoraproject Fedora 20
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-22460
CVE-2024-4646
CVE-2024-29212
IMAP
CVE-2023-36672
CVE-2024-34547
command injection
CVE-2024-4651
stored XSS
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »