Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cvs vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2005-4048
Heap-based buffer overflow in the avcodec_default_get_buffer function (utils.c) in FFmpeg libavcodec 0.4.9-pre1 and previous versions, as used in products such as (1) mplayer, (2) xine-lib, (3) Xmovie, and (4) GStreamer, allows remote malicious users to execute arbitrary commands...
Ffmpeg Ffmpeg 0.4.8
Ffmpeg Ffmpeg 0.4.9
Ffmpeg Ffmpeg 0.4.6
Ffmpeg Ffmpeg 0.4.7
Ffmpeg Ffmpeg Cvs
NA
CVE-2005-3877
Multiple SQL injection vulnerabilities in Simple Document Management System (SDMS) 2.0-CVS and previous versions allow remote malicious users to execute arbitrary SQL commands via the (1) folder_id parameter in list.php and (2) mid parameter in a view action to messages.php.
Cafuego Simple Document Management System 1.1.5
Cafuego Simple Document Management System
Cafuego Simple Document Management System 1.1.4
Cafuego Simple Document Management System 1.1.6
2 EDB exploits
NA
CVE-2005-2972
Multiple stack-based buffer overflows in the RTF import feature in AbiWord prior to 2.2.11 allow user-assisted malicious users to execute arbitrary code via an RTF file with long identifiers, which are not properly handled in the (1) ParseLevelText, (2) getCharsInsideBrace, (3) H...
Abisource Community Abiword
NA
CVE-2005-2964
Stack-based buffer overflow in AbiWord prior to 2.2.10 allows malicious users to execute arbitrary code via the RTF import mechanism.
Abisource Community Abiword
NA
CVE-2005-2693
cvsbug in CVS 1.12.12 and previous versions creates temporary files insecurely, which allows local users to overwrite arbitrary files and execute arbitrary code via a symlink attack.
Cvs Cvs 1.12.12
NA
CVE-2005-1121
Format string vulnerability in the my_xlog function in lib.c for Oops! Proxy Server 1.5.23 and previous versions, as called by the auth functions in the passwd_mysql and passwd_pgsql modules, may allow malicious users to execute arbitrary code via a URL.
Igor Khasilev Oops Proxy Server 1.4.22
Igor Khasilev Oops Proxy Server 1.5.19
Igor Khasilev Oops Proxy Server 1.5.53
Gentoo Linux
NA
CVE-2004-1342
CVS 1.12 and previous versions on Debian GNU/Linux, when using the repouid patch, allows remote malicious users to bypass authentication via the pserver access method.
Cvs Cvs 1.11.1
Cvs Cvs 1.11.10
Cvs Cvs 1.11.4
Cvs Cvs 1.11.6
Cvs Cvs 1.11.14
Cvs Cvs 1.11.15
Cvs Cvs 1.11.16
Cvs Cvs 1.11.2
Cvs Cvs 1.10
Cvs Cvs 1.10.6
Cvs Cvs 1.10.7
Cvs Cvs 1.10.8
Cvs Cvs 1.12
Cvs Cvs 1.11
Cvs Cvs 1.11.1 P1
Cvs Cvs 1.11.11
Cvs Cvs 1.11.3
Cvs Cvs 1.11.5
NA
CVE-2005-0753
Buffer overflow in CVS prior to 1.11.20 allows remote malicious users to execute arbitrary code.
Cvs Cvs 1.10
Cvs Cvs 1.11.11
Cvs Cvs 1.11.14
Cvs Cvs 1.11.6
Cvs Cvs 1.10.6
Cvs Cvs 1.10.7
Cvs Cvs 1.11.15
Cvs Cvs 1.11.16
Cvs Cvs 1.11.1
Cvs Cvs 1.11.1 P1
Cvs Cvs 1.11.10
Cvs Cvs 1.11.4
Cvs Cvs 1.11.5
Cvs Cvs 1.10.8
Cvs Cvs 1.11
Cvs Cvs 1.11.2
Cvs Cvs 1.11.3
1 Github repository
NA
CVE-2004-1036
Cross-site scripting (XSS) vulnerability in the decoding of encoded text in certain headers in mime.php for SquirrelMail 1.4.3a and previous versions, and 1.5.1-cvs prior to 23rd October 2004, allows remote malicious users to execute arbitrary web script or HTML.
Squirrelmail Squirrelmail 1.2.11
Squirrelmail Squirrelmail 1.2.2
Squirrelmail Squirrelmail 1.2.9
Squirrelmail Squirrelmail 1.4
Squirrelmail Squirrelmail 1.2.1
Squirrelmail Squirrelmail 1.2.10
Squirrelmail Squirrelmail 1.2.7
Squirrelmail Squirrelmail 1.2.8
Squirrelmail Squirrelmail 1.5 Dev
Squirrelmail Squirrelmail 1.0.5
Squirrelmail Squirrelmail 1.2
Squirrelmail Squirrelmail 1.2.5
Squirrelmail Squirrelmail 1.2.6
Squirrelmail Squirrelmail 1.4.3 Rc1
Squirrelmail Squirrelmail 1.4.3a
Squirrelmail Squirrelmail 1.0.4
Squirrelmail Squirrelmail 1.2.3
Squirrelmail Squirrelmail 1.2.4
Squirrelmail Squirrelmail 1.4.1
Squirrelmail Squirrelmail 1.4.2
Squirrelmail Squirrelmail 1.4.3
Gentoo Linux
NA
CVE-2004-0915
Multiple unknown vulnerabilities in viewcvs prior to 0.9.2, when exporting a repository as a tar archive, does not properly implement the hide_cvsroot and forbidden settings, which could allow remote malicious users to gain sensitive information.
Viewcvs Viewcvs 0.9.2
Debian Debian Linux 3.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-49223
CVE-2024-0044
information disclosure
CVE-2024-35753
HTML injection
CVE-2024-21306
CVE-2024-35733
SQL injection
CVE-2024-35732
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
2
3
4
5
6
7
8
9
10
NEXT »