Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
python vulnerabilities and exploits
(subscribe to this query)
9.3
CVSSv2
CVE-2009-3850
Blender 2.34, 2.35a, 2.40, and 2.49b allows remote malicious users to execute arbitrary code via a .blend file that contains Python statements in the onLoad action of a ScriptLink SDNA.
Blender Blender 2.49b
Blender Blender 2.35a
Blender Blender 2.34
Blender Blender 2.40
1 EDB exploit
9.3
CVSSv2
CVE-2009-1667
Stack-based buffer overflow in Mini-stream CastRipper 2.50.70 allows remote malicious users to execute arbitrary code via a long entry in a .m3u file, a different vector than CVE-2009-5137.
Mini-stream Castripper 2.50.70
4 EDB exploits
9.3
CVSSv2
CVE-2009-0367
The Python AI module in Wesnoth 1.4.x and 1.5 prior to 1.5.11 allows remote malicious users to escape the sandbox and execute arbitrary code by using a whitelisted module that imports an unsafe module, then using a hierarchical module name to access the unsafe module through the ...
Wesnoth Wesnoth 1.4
Wesnoth Wesnoth 1.4.7
Wesnoth Wesnoth 1.5.0
Wesnoth Wesnoth 1.5.1
Wesnoth Wesnoth 1.5.8
Wesnoth Wesnoth 1.5.9
Wesnoth Wesnoth 1.4.6
Wesnoth Wesnoth 1.4.5
Wesnoth Wesnoth 1.5.2
Wesnoth Wesnoth 1.5.3
Wesnoth Wesnoth 1.5.10
Wesnoth Wesnoth 1.4.4
Wesnoth Wesnoth 1.4.3
Wesnoth Wesnoth 1.5.4
Wesnoth Wesnoth 1.5.5
Wesnoth Wesnoth 1.4.2
Wesnoth Wesnoth 1.4.1
Wesnoth Wesnoth 1.5.6
Wesnoth Wesnoth 1.5.7
1 EDB exploit
9.3
CVSSv2
CVE-2009-0075
Microsoft Internet Explorer 7 does not properly handle errors during attempted access to deleted objects, which allows remote malicious users to execute arbitrary code via a crafted HTML document, related to CFunctionPointer and the appending of document objects, aka "Uninit...
Microsoft Internet Explorer 7
5 EDB exploits
1 Github repository
9.3
CVSSv2
CVE-2009-0076
Microsoft Internet Explorer 7, when XHTML strict mode is used, allows remote malicious users to execute arbitrary code via the zoom style directive in conjunction with unspecified other directives in a malformed Cascading Style Sheets (CSS) stylesheet in a crafted HTML document, ...
Microsoft Internet Explorer 7
3 EDB exploits
9.3
CVSSv2
CVE-2008-5735
Stack-based buffer overflow in skin.c in CoolPlayer 2.17 up to and including 2.19 allows remote malicious users to execute arbitrary code via a large PlaylistSkin value in a skin file.
Coolplayer Coolplayer 2.19
Coolplayer Coolplayer 2.17
Coolplayer Coolplayer 2.18
2 EDB exploits
9.3
CVSSv2
CVE-2008-1887
Python 2.5.2 and previous versions allows context-dependent malicious users to execute arbitrary code via multiple vectors that cause a negative size value to be provided to the PyString_FromStringAndSize function, which allocates less memory than expected when assert() is disabl...
Python Python
Canonical Ubuntu Linux 7.04
Canonical Ubuntu Linux 7.10
Canonical Ubuntu Linux 8.04
Canonical Ubuntu Linux 6.06
Debian Debian Linux 4.0
9.3
CVSSv2
CVE-2007-1253
Eval injection vulnerability in the (a) kmz_ImportWithMesh.py Script for Blender 0.1.9h, as used in (b) Blender prior to 2.43, allows user-assisted remote malicious users to execute arbitrary Python code by importing a crafted (1) KML or (2) KMZ file.
Blender Blender 2.37a
Blender Blender 2.36
Blender Blender 2.25
Blender Blender
9
CVSSv2
CVE-2022-32552
Pure Storage FlashArray products running Purity//FA 6.2.0 - 6.2.3, 6.1.0 - 6.1.12, 6.0.0 - 6.0.8, 5.3.0 - 5.3.17, 5.2.x and prior Purity//FA releases, and Pure Storage FlashBlade products running Purity//FB 3.3.0, 3.2.0 - 3.2.4, 3.1.0 - 3.1.12, 3.0.x and prior Purity//FB releases...
Purestorage Purity\\/\\/fa
Purestorage Purity\\/\\/fb
9
CVSSv2
CVE-2021-42561
An issue exists in CALDERA 2.8.1. When activated, the Human plugin passes the unsanitized name parameter to a python "os.system" function. This allows malicious users to use shell metacharacters (e.g., backticks "``" or dollar parenthesis "$()" ) in ...
Mitre Caldera
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4367
CVE-2024-35977
CVE-2023-49335
man-in-the-middle
CVE-2024-4947
CVE-2024-31714
memory leak
SQL
CVE-2024-35994
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
2
3
4
5
6
7
8
9
10
NEXT »