Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
fedoraproject fedora 20 vulnerabilities and exploits
(subscribe to this query)
605
VMScore
CVE-2014-4668
The cherokee_validator_ldap_check function in validator_ldap.c in Cherokee 1.2.103 and previous versions, when LDAP is used, does not properly consider unauthenticated-bind semantics, which allows remote malicious users to bypass authentication via an empty password.
Fedoraproject Fedora 22
Fedoraproject Fedora 20
Fedoraproject Fedora 21
Mageia Project Mageia 4
Cherokee-project Cherokee 1.2.99
Cherokee-project Cherokee 1.2.2
Cherokee-project Cherokee
Cherokee-project Cherokee 1.2.101
Cherokee-project Cherokee 1.2.98
Cherokee-project Cherokee 1.2.102
605
VMScore
CVE-2014-0010
Multiple cross-site request forgery (CSRF) vulnerabilities in user/profile/index.php in Moodle up to and including 2.2.11, 2.3.x prior to 2.3.11, 2.4.x prior to 2.4.8, 2.5.x prior to 2.5.4, and 2.6.x prior to 2.6.1 allow remote malicious users to hijack the authentication of admi...
Moodle Moodle 2.4.3
Moodle Moodle 2.4.1
Moodle Moodle 2.4.2
Moodle Moodle 2.4.6
Moodle Moodle 2.4.4
Moodle Moodle 2.4.7
Moodle Moodle 2.4.5
Moodle Moodle 2.4.0
Fedoraproject Fedora 20
Fedoraproject Fedora 19
Moodle Moodle 2.6.0
Moodle Moodle 2.5.1
Moodle Moodle 2.5.3
Moodle Moodle 2.5.2
Moodle Moodle 2.5.0
Moodle Moodle 2.3.8
Moodle Moodle 2.0.2
Moodle Moodle 2.3.4
Moodle Moodle 2.2.2
Moodle Moodle 2.3.1
Moodle Moodle 2.0.1
Moodle Moodle
578
VMScore
CVE-2014-8630
Bugzilla prior to 4.0.16, 4.1.x and 4.2.x prior to 4.2.12, 4.3.x and 4.4.x prior to 4.4.7, and 5.x prior to 5.0rc1 allows remote authenticated users to execute arbitrary commands by leveraging the editcomponents privilege and triggering crafted input to a two-argument Perl open c...
Mozilla Bugzilla 4.1.1
Mozilla Bugzilla 4.3.1
Mozilla Bugzilla 4.3.2
Mozilla Bugzilla 4.2
Mozilla Bugzilla 4.2.5
Mozilla Bugzilla 4.2.1
Mozilla Bugzilla 4.2.8
Mozilla Bugzilla 4.4
Mozilla Bugzilla 4.3
Mozilla Bugzilla 4.2.9
Mozilla Bugzilla 4.4.1
Mozilla Bugzilla 4.4.6
Mozilla Bugzilla 4.1
Mozilla Bugzilla 4.2.4
Mozilla Bugzilla 4.4.5
Mozilla Bugzilla 4.2.11
Mozilla Bugzilla 4.5
Mozilla Bugzilla 4.2.7
Mozilla Bugzilla 4.5.6
Mozilla Bugzilla
Mozilla Bugzilla 4.5.3
Mozilla Bugzilla 4.2.10
578
VMScore
CVE-2014-2328
lib/graph_export.php in Cacti 0.8.7g, 0.8.8b, and previous versions allows remote authenticated users to execute arbitrary commands via shell metacharacters in unspecified vectors.
Cacti Cacti
Fedoraproject Fedora 20
Fedoraproject Fedora 19
Opensuse Opensuse 13.1
Opensuse Opensuse 13.2
Debian Debian Linux 7.0
552
VMScore
CVE-2020-14372
A flaw was found in grub2 in versions before 2.06, where it incorrectly enables the usage of the ACPI command when Secure Boot is enabled. This flaw allows an attacker with privileged access to craft a Secondary System Description Table (SSDT) containing code to overwrite the Lin...
Gnu Grub2
Redhat Enterprise Linux Server Aus 7.2
Redhat Enterprise Linux Workstation 7.0
Redhat Enterprise Linux 7.0
Redhat Enterprise Linux Server Aus 7.3
Redhat Enterprise Linux Server Aus 7.4
Redhat Enterprise Linux Server Tus 7.4
Redhat Enterprise Linux Server Tus 7.6
Redhat Enterprise Linux Server Eus 7.6
Redhat Enterprise Linux Server Aus 7.6
Redhat Enterprise Linux 8.0
Redhat Enterprise Linux Server Eus 7.7
Redhat Enterprise Linux Server Aus 7.7
Redhat Enterprise Linux Server Tus 7.7
Redhat Enterprise Linux Server Eus 8.1
Redhat Enterprise Linux Server Tus 8.2
Redhat Enterprise Linux Server Aus 8.2
Fedoraproject Fedora 33
Fedoraproject Fedora 34
Netapp Cloud Backup -
Netapp Ontap Select Deploy Administration Utility -
1 Github repository
543
VMScore
CVE-2014-7154
Race condition in HVMOP_track_dirty_vram in Xen 4.0.0 up to and including 4.4.x does not ensure possession of the guarding lock for dirty video RAM tracking, which allows certain local guest domains to cause a denial of service via unspecified vectors.
Fedoraproject Fedora 20
Fedoraproject Fedora 19
Debian Debian Linux 7.0
Xen Xen 4.1.5
Xen Xen 4.2.2
Xen Xen 4.2.3
Xen Xen 4.3.0
Xen Xen 4.1.2
Xen Xen 4.4.0
Xen Xen 4.1.1
Xen Xen 4.2.0
Xen Xen 4.1.0
Xen Xen 4.4.1
Xen Xen 4.1.3
Xen Xen 4.1.6.1
Xen Xen 4.1.4
Xen Xen 4.3.1
Xen Xen 4.2.1
Opensuse Opensuse 12.3
Opensuse Opensuse 13.1
516
VMScore
CVE-2015-0556
Open-source ARJ archiver 3.10.22 allows remote malicious users to conduct directory traversal attacks via a symlink attack in an ARJ archive.
Arj Software Arj Archiver
Fedoraproject Fedora 22
Fedoraproject Fedora 20
Fedoraproject Fedora 21
516
VMScore
CVE-2015-0557
Open-source ARJ archiver 3.10.22 does not properly remove leading slashes from paths, which allows remote malicious users to conduct absolute path traversal attacks and write to arbitrary files via multiple leading slashes in a path in an ARJ archive.
Arj Software Arj Archiver
Fedoraproject Fedora 22
Fedoraproject Fedora 20
Fedoraproject Fedora 21
516
VMScore
CVE-2015-1051
Open redirect vulnerability in the Context UI module in the Context module 7.x-3.x prior to 7.x-3.6 for Drupal allows remote malicious users to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the destination parameter.
Context Project Context 7.x-3.1
Context Project Context 7.x-3.5
Context Project Context 7.x-3.4
Context Project Context 7.x-3.2
Context Project Context 7.x-3.0
Context Project Context 7.x-3.3
Fedoraproject Fedora 20
Fedoraproject Fedora 21
516
VMScore
CVE-2014-7155
The x86_emulate function in arch/x86/x86_emulate/x86_emulate.c in Xen 4.4.x and previous versions does not properly check supervisor mode permissions, which allows local HVM users to cause a denial of service (guest crash) or gain guest kernel mode privileges via vectors involvin...
Xen Xen 3.2.0
Xen Xen 4.1.5
Xen Xen 3.2.1
Xen Xen 4.2.2
Xen Xen 4.2.3
Xen Xen 3.0.4
Xen Xen 3.4.0
Xen Xen 4.3.0
Xen Xen 4.0.4
Xen Xen 4.0.2
Xen Xen 3.3.2
Xen Xen 4.1.2
Xen Xen 3.2.2
Xen Xen 3.4.4
Xen Xen 4.0.0
Xen Xen 4.4.0
Xen Xen 4.1.1
Xen Xen 4.2.0
Xen Xen 4.1.0
Xen Xen 3.4.3
Xen Xen 3.0.3
Xen Xen 4.1.3
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-23692
malicious code
XML injection
CVE-2024-28020
CVE-2024-35252
CVE-2024-5833
CVE-2024-30066
injection
CVE-2024-23282
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
3
4
5
6
7
8
9
10
NEXT »