Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
caldera vulnerabilities and exploits
(subscribe to this query)
3.5
CVSSv2
CVE-2021-24896
The Caldera Forms WordPress plugin prior to 1.9.5 does not sanitise and escape the Form Name before outputting it in attributes, which could allow high privilege users to perform Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed.
Calderaforms Caldera Forms
5
CVSSv2
CVE-2001-0851
Linux kernel 2.0, 2.2 and 2.4 with syncookies enabled allows remote malicious users to bypass firewall rules by brute force guessing the cookie.
Caldera Openlinux Server 3.1
Caldera Openlinux Workstation 3.1
Caldera Openlinux Eserver 2.3.1
Linux Linux Kernel 2.0
Suse Suse Linux 7.2
Suse Suse Linux 7.3
Linux Linux Kernel 2.2.0
Linux Linux Kernel 2.4.0
Suse Suse Linux 6.3
Suse Suse Linux 6.4
Caldera Openlinux 2.3
Caldera Openlinux Edesktop 2.4
Suse Suse Linux 7.0
Suse Suse Linux 7.1
7.2
CVSSv2
CVE-2002-0911
Caldera Volution Manager 1.1 stores the Directory Administrator password in cleartext in the slapd.conf file, which could allow local users to gain privileges.
Caldera Volution Manager 1.1
7.5
CVSSv2
CVE-1999-0439
Buffer overflow in procmail before version 3.12 allows remote or local malicious users to execute commands via expansions in the procmailrc configuration file.
Procmail Procmail
Caldera Openlinux
7.5
CVSSv2
CVE-2007-0759
Multiple SQL injection vulnerabilities in EasyMoblog 0.5.1 allow remote malicious users to execute arbitrary SQL commands via the (1) i or (2) post_id parameter to add_comment.php, which triggers an injection in libraries.inc.php; or (3) the i parameter to list_comments.php, whic...
Umberto Caldera Easymoblog 0.5.1
1 EDB exploit
NA
CVE-2023-2330
The Caldera Forms Google Sheets Connector WordPress plugin prior to 1.3 does not have CSRF check when updating its Access Code, which could allow malicious users to make logged in admin change the access code to an arbitrary one via a CSRF attack
Gsheetconnector Caldera Forms Google Sheets Connector
7.2
CVSSv2
CVE-2000-0218
Buffer overflow in Linux mount and umount allows local users to gain root privileges via a long relative pathname.
Caldera Openlinux 2.3
Suse Suse Linux
1 EDB exploit
7.2
CVSSv2
CVE-2000-0530
The KApplication class in the KDE 1.1.2 configuration file management capability allows local users to overwrite arbitrary files.
Caldera Openlinux 2.4
Kde Kde 1.1.2
3 EDB exploits
2.6
CVSSv2
CVE-2000-0892
Some telnet clients allow remote telnet servers to request environment variables from the client that may contain sensitive information, or remote web servers to obtain the information via a telnet: URL.
U Win U Win
Caldera Openlinux
1.2
CVSSv2
CVE-2001-0139
inn 2.2.3 allows local users to overwrite arbitrary files via a symlink attack in some configurations.
Caldera Openlinux Desktop 2.3
Immunix Immunix 7.0 Beta
Caldera Openlinux Edesktop 2.4
Mandrakesoft Mandrake Linux 6.0
Mandrakesoft Mandrake Linux 6.1
Debian Debian Linux 2.2
Mandrakesoft Mandrake Linux 7.2
Redhat Linux 7.0
Caldera Openlinux Eserver 2.3
Mandrakesoft Mandrake Linux 7.0
Mandrakesoft Mandrake Linux 7.1
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-29895
blind SQL injection
CVE-2024-5064
CVE-2023-52677
CVE-2023-52682
CVE-2024-30051
CVE-2024-35849
remote attackers
remote
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
2
3
4
5
6
7
8
9
10
NEXT »