Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
pgp vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2016-20021
In Gentoo Portage prior to 3.0.47, there is missing PGP validation of executed code: the standalone emerge-webrsync downloads a .gpgsig file but does not perform signature verification. Unless emerge-webrsync is used, Portage is not vulnerable.
Gentoo Portage
NA
CVE-2024-23734
Cross Site Request Forgery vulnerability in in the upload functionality of the User Profile pages in savignano S/Notify prior to 2.0.1 for Bitbucket allow malicious users to replace S/MIME certificate or PGP keys for arbitrary users via crafted link.
4.3
CVSSv2
CVE-2007-3635
Multiple unspecified vulnerabilities in the G/PGP (GPG) Plugin prior to 2.1 for Squirrelmail might allow "local authenticated users" to inject certain commands via unspecified vectors. NOTE: this might overlap CVE-2005-1924, CVE-2006-4169, or CVE-2007-3634.
Squirrelmail Squirrelmail 1.4.10a
Squirrelmail Gpg Plugin 2.0
4.3
CVSSv2
CVE-2014-3431
Symantec PGP Desktop 10.x, and Encryption Desktop Professional 10.3.x prior to 10.3.2 MP2, on OS X uses world-writable permissions for temporary files, which allows local users to bypass intended restrictions on file reading, modification, creation, and permission changes via uns...
Symantec Pgp Desktop 10.0.0
Symantec Pgp Desktop 10.0.1
Symantec Pgp Desktop 10.2.1
Symantec Pgp Desktop 10.2.2
Symantec Encryption Desktop 10.3.0
Symantec Encryption Desktop 10.3.1
Symantec Pgp Desktop 10.1.0
Symantec Pgp Desktop 10.1.1
Symantec Pgp Desktop 10.0.2
Symantec Pgp Desktop 10.0.3
Symantec Encryption Desktop 10.3.2
Symantec Pgp Desktop 10.1.2
Symantec Pgp Desktop 10.2.0
5.5
CVSSv2
CVE-2006-4169
Multiple directory traversal vulnerabilities in the G/PGP (GPG) Plugin 2.0, and 2.1dev prior to 20070614, for Squirrelmail allow remote authenticated users to include and execute arbitrary local files via a .. (dot dot) in the help parameter to (1) gpg_help.php or (2) gpg_help_ba...
Squirrelmail Gpg Plugin 2.0
Squirrelmail Gpg Plugin 2.1 Dev
6.8
CVSSv2
CVE-2016-3180
Tor Browser Launcher (aka torbrowser-launcher) prior to 0.2.4, during the initial run, allows man-in-the-middle malicious users to bypass the PGP signature verification and execute arbitrary code via a Trojan horse tar file and a signature file with the valid tarball and signatur...
Tor Browser Launcher Project Tor Browser Launcher 0.2.3
4
CVSSv2
CVE-2015-8542
An issue exists in Open-Xchange Guard prior to 2.2.0-rev8. The "getprivkeybyid" API call is used to download a PGP Private Key for a specific user after providing authentication credentials. Clients provide the "id" and "cid" parameter to specify the...
Open-xchange Ox Guard
9
CVSSv2
CVE-2017-7413
In Horde_Crypt prior to 2.7.6, as used in Horde Groupware Webmail Edition up to and including 5.2.17, OS Command Injection can occur if the attacker is an authenticated Horde Webmail user, has PGP features enabled in their preferences, and attempts to encrypt an email addressed t...
Horde Groupware
7.5
CVSSv2
CVE-2007-3778
The G/PGP (GPG) Plugin 2.0, and 2.1dev prior to 20060912, for Squirrelmail allows remote malicious users to execute arbitrary commands via shell metacharacters in the messageSignedText parameter to the gpg_check_sign_pgp_mime function in gpg_hook_functions.php. NOTE: a parameter ...
Squirrelmail Gpg Plugin 2.1 Dev
Squirrelmail Gpg Plugin 2.0
4
CVSSv2
CVE-2021-21440
Generated Support Bundles contains private S/MIME and PGP keys if containing folder is not hidden. This issue affects: OTRS AG ((OTRS)) Community Edition 6.0.x version 6.0.1 and later versions. OTRS AG OTRS 7.0.x version 7.0.27 and prior versions; 8.0.x version 8.0.14 and prior v...
Otrs Otrs
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-4463
CVE-2024-3400
deserialization
CVE-2024-21788
CVE-2023-42433
CVE-2024-21841
CVE-2024-22095
local file inclusion
memory leak
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
2
3
4
5
6
7
8
9
10
NEXT »