Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
subversion vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2011-1783
The mod_dav_svn module for the Apache HTTP Server, as distributed in Apache Subversion 1.5.x and 1.6.x prior to 1.6.17, when the SVNPathAuthz short_circuit option is enabled, allows remote malicious users to cause a denial of service (infinite loop and memory consumption) in oppo...
Apache Subversion
Canonical Ubuntu Linux 10.04
Canonical Ubuntu Linux 10.10
Canonical Ubuntu Linux 11.04
Debian Debian Linux 5.0
Debian Debian Linux 6.0
Fedoraproject Fedora 14
Fedoraproject Fedora 15
Apple Mac Os X
5.8
CVSSv2
CVE-2002-2312
Opera 6.0.1 allows remote malicious users to upload arbitrary file contents when users press a key corresponding to the JavaScript (1) event.ctrlKey or (2) event.shiftKey onkeydown event contained in a webpage.
Opera Software Opera 6.0.1
1 EDB exploit
NA
CVE-2024-28158
A cross-site request forgery (CSRF) vulnerability in Jenkins Subversion Partial Release Manager Plugin 1.0.1 and previous versions allows malicious users to trigger a build.
5
CVSSv2
CVE-2019-10849
Computrols CBAS 18.0.0 allows unprotected Subversion (SVN) directory / source code disclosure.
Computrols Computrols Building Automation Software
1 EDB exploit
NA
CVE-2024-28159
A missing permission check in Jenkins Subversion Partial Release Manager Plugin 1.0.1 and previous versions allows attackers with Item/Read permission to trigger a build.
4.3
CVSSv2
CVE-2008-1290
ViewVC prior to 1.0.5 includes "all-forbidden" files within search results that list CVS or Subversion (SVN) commits, which allows remote malicious users to obtain sensitive information.
Viewvc Viewvc 1.0.2
Viewvc Viewvc 1.0.3
6.8
CVSSv2
CVE-2004-0179
Multiple format string vulnerabilities in (1) neon 0.24.4 and previous versions, and other products that use neon including (2) Cadaver, (3) Subversion, and (4) OpenOffice, allow remote malicious WebDAV servers to execute arbitrary code.
Webdav Neon
Debian Debian Linux 3.0
1 EDB exploit
NA
CVE-2022-42969
The py library up to and including 1.11.0 for Python allows remote malicious users to conduct a ReDoS (Regular expression Denial of Service) attack via a Subversion repository with crafted info data, because the InfoSvnCommand argument is mishandled.
Pytest Py
1 Github repository
8.5
CVSSv2
CVE-2007-6350
scponly 4.6 and previous versions allows remote authenticated users to bypass intended restrictions and execute code by invoking dangerous subcommands including (1) unison, (2) rsync, (3) svn, and (4) svnserve, as originally demonstrated by creating a Subversion (SVN) repository ...
Scponly Scponly
Scponly Scponly 4.5
Scponly Scponly 4.4
Scponly Scponly 4.3
Scponly Scponly 4.2
4.6
CVSSv2
CVE-2006-1564
Untrusted search path vulnerability in libapache2-svn 1.3.0-4 for Subversion in Debian GNU/Linux includes RPATH values under the /tmp/svn directory for the (1) mod_authz_svn.so and (2) mod_dav_svn.so modules, which might allow local users to gain privileges by installing maliciou...
Debian Debian Linux 3.1
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2022-38028
CVE-2024-32406
CVE-2024-25624
IMAP
CVE-2024-2310
CVE-2024-0874
CVE-2024-20359
XXE
remote code execution
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »