Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
file project vulnerabilities and exploits
(subscribe to this query)
8
CVSSv3
CVE-2021-24936
The WP Extra File Types WordPress plugin prior to 0.5.1 does not have CSRF check when saving its settings, nor sanitise and escape some of them, which could allow malicious users to make a logged in admin change them and perform Cross-Site Scripting attacks
Wp Extra File Types Project Wp Extra File Types
7.8
CVSSv3
CVE-2021-44334
David Brackeen ok-file-formats 97f78ca is vulnerable to Buffer Overflow. When the function of the ok-file-formats project is used, a heap-buffer-overflow occurs in function ok_jpg_convert_YCbCr_to_RGB() in "/ok_jpg.c:513" .
Ok-file-formats Project Ok-file-formats 2021-03-06
7.8
CVSSv3
CVE-2021-44342
David Brackeen ok-file-formats 203defd is vulnerable to Buffer Overflow via function ok_png_transform_scanline() in "/ok_png.c:494".
Ok-file-formats Project Ok-file-formats 2021-06-05
7.8
CVSSv3
CVE-2021-43463
An Unquoted Service Path vulnerability exists in Ext2Fsd v0.68 via a specially crafted file in the Ext2Srv Service executable service path.
Ext2 File System Driver Project Ext2 File System Driver 0.68
7.8
CVSSv3
CVE-2021-41413
ok-file-formats master 2021-9-12 is affected by a buffer overflow in ok_jpg_convert_data_unit_grayscale and ok_jpg_convert_YCbCr_to_RGB.
Ok-file-formats Project Ok-file-formats 2021-9-12
9.8
CVSSv3
CVE-2020-27955
Git LFS 2.12.0 allows Remote Code Execution.
Git Large File Storage Project Git Large File Storage 2.12.0
21 Github repositories
5.4
CVSSv3
CVE-2021-46824
Cross Site Scripting (XSS) vulnerability in sourcecodester School File Management System 1.0 via the Lastname parameter to the Update Account form in student_profile.php.
School File Management System Project School File Management System 1.0
9.8
CVSSv3
CVE-2023-2643
A vulnerability classified as critical was found in SourceCodester File Tracker Manager System 1.0. This vulnerability affects unknown code of the file register/update_password.php of the component POST Parameter Handler. The manipulation of the argument new_password leads to sql...
File Tracker Manager System Project File Tracker Manager System 1.0
5.3
CVSSv3
CVE-2018-16549
HScripts PHP File Browser Script v1.0 allows Directory Traversal via the index.php path parameter.
Php File Browser Script Project Php File Browser Script 1.0
7.8
CVSSv3
CVE-2021-44335
David Brackeen ok-file-formats 203defd is vulnerable to Buffer Overflow. When the function of the ok-file-formats project is used, a heap-buffer-overflow occurs in function ok_png_transform_scanline() in "/ok_png.c:533".
Ok-file-formats Project Ok-file-formats 2021-06-05
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
path traversal
CVE-2024-33545
CVE-2024-35725
CVE-2024-32704
overflow
file upload
CVE-2024-0230
CVE-2024-32705
CVE-2024-23692
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
2
3
4
5
6
7
8
9
10
NEXT »