Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
file file 4.5 vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2014-2380
Schneider Electric Wonderware Information Server (WIS) Portal 4.0 SP1 up to and including 5.5 uses weak encryption, which allows remote malicious users to obtain sensitive information by reading a credential file.
Invensys Wonderware Information Server 4.5
Invensys Wonderware Information Server 4.0
Invensys Wonderware Information Server 5.5
Invensys Wonderware Information Server 5.0
NA
CVE-2014-3735
ir41_32.ax 4.51.16.3 for Intel Indeo Video 4.5 allows remote malicious users to cause a denial of service (crash) via a crafted .avi file.
Intel Indeo Video 4.5
NA
CVE-2013-1850
Multiple incomplete blacklist vulnerabilities in (1) import.php and (2) ajax/uploadimport.php in apps/contacts/ in ownCloud prior to 4.0.13 and 4.5.x prior to 4.5.8 allow remote authenticated users to execute arbitrary PHP code by uploading a .htaccess file.
Owncloud Owncloud 4.5.1
Owncloud Owncloud 4.5.7
Owncloud Owncloud 4.5.0
Owncloud Owncloud 4.5.2
Owncloud Owncloud 4.5.4
Owncloud Owncloud 4.5.3
Owncloud Owncloud 4.5.5
Owncloud Owncloud 4.5.6
Owncloud Owncloud 4.0.3
Owncloud Owncloud 4.0.0
Owncloud Owncloud 4.0.11
Owncloud Owncloud 3.0.3
Owncloud Owncloud 4.0.10
Owncloud Owncloud
Owncloud Owncloud 4.0.8
Owncloud Owncloud 4.0.1
Owncloud Owncloud 4.0.6
Owncloud Owncloud 4.0.5
Owncloud Owncloud 4.0.2
Owncloud Owncloud 3.0.0
Owncloud Owncloud 3.0.2
Owncloud Owncloud 4.0.9
NA
CVE-2013-0298
Multiple cross-site scripting (XSS) vulnerabilities in ownCloud 4.5.x prior to 4.5.7 allow remote malicious users to inject arbitrary web script or HTML via (1) a crafted iCalendar file to the calendar application, the (2) dir or (3) file parameter to apps/files_pdfviewer/viewer....
Owncloud Owncloud 4.5.1
Owncloud Owncloud 4.5.0
Owncloud Owncloud 4.5.2
Owncloud Owncloud 4.5.4
Owncloud Owncloud 4.5.3
Owncloud Owncloud 4.5.5
Owncloud Owncloud 4.5.6
NA
CVE-2013-1967
Cross-site scripting (XSS) vulnerability in flashmediaelement.swf in MediaElement.js prior to 2.11.2, as used in ownCloud Server 5.0.x prior to 5.0.5 and 4.5.x prior to 4.5.10, allows remote malicious users to inject arbitrary web script or HTML via the file parameter.
Mediaelementjs Mediaelement.js 2.1.8
Owncloud Owncloud 5.0.2
Mediaelementjs Mediaelement.js 2.9.3
Mediaelementjs Mediaelement.js 2.4.0
Mediaelementjs Mediaelement.js 2.1.0
Mediaelementjs Mediaelement.js 2.10.1
Mediaelementjs Mediaelement.js 2.0.3
Mediaelementjs Mediaelement.js 2.6.5
Mediaelementjs Mediaelement.js 1.0.6
Mediaelementjs Mediaelement.js 1.1.2
Mediaelementjs Mediaelement.js 2.9.5
Mediaelementjs Mediaelement.js 2.1.2
Owncloud Owncloud 5.0.3
Mediaelementjs Mediaelement.js 2.9.1
Mediaelementjs Mediaelement.js 2.10.2
Mediaelementjs Mediaelement.js 2.2.2
Owncloud Owncloud 4.5.1
Mediaelementjs Mediaelement.js 2.9.0
Mediaelementjs Mediaelement.js 2.9.2
Mediaelementjs Mediaelement.js 2.2.4
Mediaelementjs Mediaelement.js 1.0.5
Mediaelementjs Mediaelement.js 2.1.5
NA
CVE-2011-4327
ssh-keysign.c in ssh-keysign in OpenSSH prior to 5.8p2 on certain platforms executes ssh-rand-helper with unintended open file descriptors, which allows local users to obtain sensitive key information via the ptrace system call.
Openbsd Openssh 5.4
Openbsd Openssh 2
Openbsd Openssh 3.8
Openbsd Openssh 3.8.1p1
Openbsd Openssh 4.3p2
Openbsd Openssh 3.2.2
Openbsd Openssh 3.1
Openbsd Openssh 5.5
Openbsd Openssh 3.0.2p1
Openbsd Openssh 1.5.8
Openbsd Openssh 5.3
Openbsd Openssh 4.1
Openbsd Openssh 3.8.1
Openbsd Openssh 2.1.1
Openbsd Openssh 3.7.1p2
Openbsd Openssh 4.8
Openbsd Openssh 4.9
Openbsd Openssh 3.2.3p1
Openbsd Openssh 3.1p1
Openbsd Openssh 2.5.1
Openbsd Openssh 2.9.9p2
Openbsd Openssh 3.6.1p2
NA
CVE-2013-4898
Unrestricted file upload vulnerability in the user profile page feature in the Timeline Plugin 4.2.5p9 for SocialEngine allows remote authenticated users to execute arbitrary code by uploading a file with an executable extension, then accessing it via a direct request to the file...
Webhive Timeline 4.2.5
1 EDB exploit
1 Github repository
NA
CVE-2014-1202
The WSDL/WADL import functionality in SoapUI prior to 4.6.4 allows remote malicious users to execute arbitrary Java code via a crafted request parameter in a WSDL file.
Eviware Soapui 3.6.1
Eviware Soapui 2.5.1
Smartbear Soapui 4.0
Smartbear Soapui 4.5.1
Smartbear Soapui 4.6.1
Smartbear Soapui
Smartbear Soapui 4.5
Smartbear Soapui 4.6.0
Smartbear Soapui 4.0.1
Eviware Soapui 3.6
Eviware Soapui 3.0.1
Eviware Soapui 3.5
Eviware Soapui 3.5.1
Smartbear Soapui 4.5.2
Smartbear Soapui 4.6.2
1 EDB exploit
NA
CVE-2013-6173
Multiple cross-site request forgery (CSRF) vulnerabilities in EMC Document Sciences xPression 4.1 SP1 before Patch 47, 4.2 before Patch 26, and 4.5 before Patch 05, as used in Documentum Edition, Enterprise Edition Publish Engine, and Enterprise Edition Compuset Engine, allow rem...
Emc Document Sciences Xpression 4.1
Emc Document Sciences Xpression 4.2
Emc Document Sciences Xpression 4.5
NA
CVE-2013-6174
Multiple open redirect vulnerabilities in xAdmin in EMC Document Sciences xPression 4.1 SP1 before Patch 47, 4.2 before Patch 26, and 4.5 before Patch 05, as used in Documentum Edition, Enterprise Edition Publish Engine, and Enterprise Edition Compuset Engine, allow remote malici...
Emc Document Sciences Xpression 4.1
Emc Document Sciences Xpression 4.2
Emc Document Sciences Xpression 4.5
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
type confusion
CVE-2023-38506
CVE-2024-37198
CVE-2023-45197
CVE-2024-38621
CVE-2024-30103
elevation of privilege
CVE-2024-0044
IMAP
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »