Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
file file 4.4 vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2006-4828
PHP remote file inclusion vulnerability in zipndownload.php in PhotoPost 4.0 up to and including 4.6 allows remote malicious users to execute arbitrary PHP code via a URL in the PP_PATH parameter.
Photopost Photopost Php Pro 4.0
Photopost Photopost Php Pro 4.1
Photopost Photopost Php Pro 4.2
Photopost Photopost Php Pro 4.3
Photopost Photopost Php Pro 4.6
Photopost Photopost Php Pro 4.4
Photopost Photopost Php Pro 4.5
1 EDB exploit
7.5
CVSSv2
CVE-2005-0764
Buffer overflow in command.C for rxvt-unicode prior to 5.3 allows remote malicious users to execute arbitrary code via a crafted file containing long escape sequences.
Marc Lehmann Rxvt-unicode 3.7
Marc Lehmann Rxvt-unicode 3.9
Marc Lehmann Rxvt-unicode 4.6
Marc Lehmann Rxvt-unicode 4.8
Marc Lehmann Rxvt-unicode 3.4
Marc Lehmann Rxvt-unicode 3.5
Marc Lehmann Rxvt-unicode 4.9
Marc Lehmann Rxvt-unicode 5.0
Marc Lehmann Rxvt-unicode 5.1
Marc Lehmann Rxvt-unicode 5.2
Marc Lehmann Rxvt-unicode 4.0
Marc Lehmann Rxvt-unicode 4.1
Marc Lehmann Rxvt-unicode 4.2
Marc Lehmann Rxvt-unicode 4.3
Marc Lehmann Rxvt-unicode 4.4
Marc Lehmann Rxvt-unicode 3.6
Marc Lehmann Rxvt-unicode 3.8
Marc Lehmann Rxvt-unicode 4.5
Marc Lehmann Rxvt-unicode 4.7
7.5
CVSSv2
CVE-2004-2373
The Buddy icon file for AOL Instant Messenger (AIM) 4.3 up to and including 5.5 is created in a predictable location, which may allow remote malicious users to use a shell: URI to exploit other vulnerabilities that involve predictable locations.
Aol Instant Messenger 4.8.2616
Aol Instant Messenger 4.8.2646
Aol Instant Messenger 4.7
Aol Instant Messenger 4.7.2480
Aol Instant Messenger 5.5
Aol Instant Messenger 5.5.3415 Beta
Aol Instant Messenger 4.4
Aol Instant Messenger 4.5
Aol Instant Messenger 4.6
Aol Instant Messenger 5.1.3036
Aol Instant Messenger 5.2.3292
Aol Instant Messenger 4.3
Aol Instant Messenger 4.3.2229
Aol Instant Messenger 4.8.2790
Aol Instant Messenger 5.0.2938
1 EDB exploit
7.5
CVSSv2
CVE-2003-0243
Happycgi.com Happymall 4.3 and 4.4 allows remote malicious users to execute arbitrary commands via shell metacharacters in the file parameter for the (1) normal_html.cgi or (2) member_html.cgi scripts.
Happycgi Happymall 4.4
Happycgi Happymall 4.3
2 EDB exploits
7.5
CVSSv2
CVE-2002-0592
AOL Instant Messenger (AIM) allows remote malicious users to steal files that are being transferred to other clients by connecting to port 4443 (Direct Connection) or port 5190 (file transfer) before the intended user.
Aol Instant Messenger 3.0.1415
Aol Instant Messenger 3.0.1470
Aol Instant Messenger 4.1
Aol Instant Messenger 4.1.2010
Aol Instant Messenger 2.0.912
Aol Instant Messenger 3.0 N
Aol Instant Messenger 3.5.1635
Aol Instant Messenger 4.2
Aol Instant Messenger 4.2.1193
Aol Instant Messenger 4.7.2480
Aol Instant Messenger 4.8.2616
Aol Instant Messenger 4.8.2646
Aol Instant Messenger 4.6
Aol Instant Messenger 4.7
Aol Instant Messenger 2.5.1366
Aol Instant Messenger 2.5.1598
Aol Instant Messenger 3.5.1856
Aol Instant Messenger 4.0
Aol Instant Messenger 4.4
Aol Instant Messenger 4.5
Aol Instant Messenger 2.0.996
Aol Instant Messenger 2.0 N
7.5
CVSSv2
CVE-2002-0206
index.php in Francisco Burzi PHP-Nuke 5.3.1 and previous versions, and possibly other versions prior to 5.5, allows remote malicious users to execute arbitrary PHP code by specifying a URL to the malicious code in the file parameter.
Francisco Burzi Php-nuke 1.0
Francisco Burzi Php-nuke 5.0.1
Francisco Burzi Php-nuke 5.1
Francisco Burzi Php-nuke 4.3
Francisco Burzi Php-nuke 4.4
Francisco Burzi Php-nuke 5.3.1
Francisco Burzi Php-nuke 4.4.1a
Francisco Burzi Php-nuke 5.0
Francisco Burzi Php-nuke 2.5
Francisco Burzi Php-nuke 3.0
Francisco Burzi Php-nuke 4.0
Francisco Burzi Php-nuke 5.2
Francisco Burzi Php-nuke 5.2a
1 EDB exploit
7.2
CVSSv2
CVE-2020-27777
A flaw was found in the way RTAS handled memory accesses in userspace to kernel communication. On a locked down (usually due to Secure Boot) guest system running on top of PowerVM or KVM hypervisors (pseries platform) a root like local user could use this flaw to further increase...
Linux Linux Kernel
Redhat Enterprise Linux 7.0
Redhat Enterprise Linux 6.0
Redhat Enterprise Linux 5.0
Redhat Enterprise Linux 8.0
Redhat Openshift Container Platform 4.5
Redhat Openshift Container Platform 4.6
Redhat Openshift Container Platform 4.4
7.2
CVSSv2
CVE-2016-9192
A vulnerability in Cisco AnyConnect Secure Mobility Client for Windows could allow an authenticated, local malicious user to install and execute an arbitrary executable file with privileges equivalent to the Microsoft Windows operating system SYSTEM account. More Information: CSC...
Cisco Anyconnect Secure Mobility Client 3.1\\(60\\)
Cisco Anyconnect Secure Mobility Client 4.0\\(64\\)
Cisco Anyconnect Secure Mobility Client 4.0.00048
Cisco Anyconnect Secure Mobility Client 3.1.05187
Cisco Anyconnect Secure Mobility Client 3.1.06073
Cisco Anyconnect Secure Mobility Client 4.0.00051
Cisco Anyconnect Secure Mobility Client 4.0\\(48\\)
Cisco Anyconnect Secure Mobility Client 4.3.00748
Cisco Anyconnect Secure Mobility Client 4.1\\(8\\)
Cisco Anyconnect Secure Mobility Client 4.3.01095
Cisco Anyconnect Secure Mobility Client 4.2.04039
Cisco Anyconnect Secure Mobility Client 3.1.07021
Cisco Anyconnect Secure Mobility Client 4.0\\(2049\\)
Cisco Anyconnect Secure Mobility Client 3.1.05182
Cisco Anyconnect Secure Mobility Client 3.1.02043
Cisco Anyconnect Secure Mobility Client 4.1.0
Cisco Anyconnect Secure Mobility Client 4.0.0
Cisco Anyconnect Secure Mobility Client 4.2.0
Cisco Anyconnect Secure Mobility Client 3.1.0
Cisco Anyconnect Secure Mobility Client 4.3.0
1 Github repository
7.2
CVSSv2
CVE-2016-4557
The replace_map_fd_with_map_ptr function in kernel/bpf/verifier.c in the Linux kernel prior to 4.5.5 does not properly maintain an fd data structure, which allows local users to gain privileges or cause a denial of service (use-after-free) via crafted BPF instructions that refere...
Linux Linux Kernel
2 EDB exploits
4 Github repositories
7.2
CVSSv2
CVE-2016-0848
Race condition in Download Manager in Android 4.x prior to 4.4.4, 5.0.x prior to 5.0.2, 5.1.x prior to 5.1.1, and 6.x prior to 2016-04-01 allows malicious users to bypass private-storage file-access restrictions via a crafted application that changes a symlink target, as demonstr...
Google Android 4.4.3
Google Android 4.4.2
Google Android 4.4.1
Google Android 4.4
Google Android 4.3.1
Google Android 5.1
Google Android 5.0
Google Android 4.2.2
Google Android 4.2
Google Android 4.0.2
Google Android 4.0
Google Android 6.0.1
Google Android 6.0
Google Android 4.1.2
Google Android 4.1
Google Android 4.0.4
Google Android 4.0.3
Google Android 5.1.0
Google Android 5.0.1
Google Android 4.3
Google Android 4.2.1
Google Android 4.0.1
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
SSRF
CVE-2023-52162
CVE-2024-23670
CVE-2024-5404
man-in-the-middle
CVE-2024-5214
CVE-2024-4358
CVE-2024-20696
hard-coded
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »