Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
fedoraproject fedora 23 vulnerabilities and exploits
(subscribe to this query)
445
VMScore
CVE-2016-9108
Integer overflow in the js_regcomp function in regexp.c in Artifex Software, Inc. MuJS before commit b6de34ac6d8bb7dd5461c57940acfbd3ee7fd93e allows malicious users to cause a denial of service (application crash) via a crafted regular expression.
Fedoraproject Fedora 25
Fedoraproject Fedora 24
Fedoraproject Fedora 23
Artifex Mujs
445
VMScore
CVE-2016-4414
The onReadyRead function in core/coreauthhandler.cpp in Quassel prior to 0.12.4 allows remote malicious users to cause a denial of service (NULL pointer dereference and crash) via invalid handshake data.
Opensuse Leap 42.1
Opensuse Opensuse 13.2
Quassel-irc Quassel
Fedoraproject Fedora 22
Fedoraproject Fedora 24
Fedoraproject Fedora 23
445
VMScore
CVE-2016-1234
Stack-based buffer overflow in the glob implementation in GNU C Library (aka glibc) prior to 2.24, when GLOB_ALTDIRFUNC is used, allows context-dependent malicious users to cause a denial of service (crash) via a long name.
Gnu Glibc
Opensuse Leap 42.1
Opensuse Opensuse 13.2
Fedoraproject Fedora 23
445
VMScore
CVE-2016-3071
Libreswan 3.16 might allow remote malicious users to cause a denial of service (daemon restart) via an IKEv2 aes_xcbc transform.
Libreswan Libreswan 3.16
Fedoraproject Fedora 24
Fedoraproject Fedora 23
445
VMScore
CVE-2016-2145
The am_read_post_data function in mod_auth_mellon prior to 0.11.1 does not check if the ap_get_client_block function returns an error, which allows remote malicious users to cause a denial of service (segmentation fault and process crash) via a crafted POST data.
Fedoraproject Fedora 23
Uninett Mod Auth Mellon
445
VMScore
CVE-2016-2146
The am_read_post_data function in mod_auth_mellon prior to 0.11.1 does not limit the amount of data read, which allows remote malicious users to cause a denial of service (worker process crash, web server deadlock, or memory consumption) via a large amount of POST data.
Fedoraproject Fedora 23
Uninett Mod Auth Mellon
445
VMScore
CVE-2016-2086
Node.js 0.10.x prior to 0.10.42, 0.12.x prior to 0.12.10, 4.x prior to 4.3.0, and 5.x prior to 5.6.0 allow remote malicious users to conduct HTTP request smuggling attacks via a crafted Content-Length HTTP header.
Nodejs Node.js 0.10.9
Nodejs Node.js 0.10.11
Nodejs Node.js 4.0.0
Nodejs Node.js 0.10.21
Nodejs Node.js 0.10.4
Nodejs Node.js 0.12.4
Nodejs Node.js 0.10.41
Nodejs Node.js 0.10.20
Nodejs Node.js 0.10.18
Nodejs Node.js 0.10.39
Nodejs Node.js 0.10.29
Nodejs Node.js 5.2.0
Nodejs Node.js 0.10.31
Nodejs Node.js 0.10.2
Nodejs Node.js 5.5.0
Nodejs Node.js 0.10.30
Nodejs Node.js 0.12.7
Nodejs Node.js 0.10.25
Nodejs Node.js 0.10.14
Nodejs Node.js 4.1.1
Nodejs Node.js 4.2.3
Nodejs Node.js 5.4.0
1 Article
445
VMScore
CVE-2016-2041
libraries/common.inc.php in phpMyAdmin 4.0.x prior to 4.0.10.13, 4.4.x prior to 4.4.15.3, and 4.5.x prior to 4.5.4 does not use a constant-time algorithm for comparing CSRF tokens, which makes it easier for remote malicious users to bypass intended access restrictions by measurin...
Fedoraproject Fedora 22
Fedoraproject Fedora 23
Phpmyadmin Phpmyadmin 4.0.0
Phpmyadmin Phpmyadmin 4.4.13.1
Phpmyadmin Phpmyadmin 4.4.6
Phpmyadmin Phpmyadmin 4.4.2
Phpmyadmin Phpmyadmin 4.4.1.1
Phpmyadmin Phpmyadmin 4.4.15
Phpmyadmin Phpmyadmin 4.4.6.1
Phpmyadmin Phpmyadmin 4.0.10.10
Phpmyadmin Phpmyadmin 4.4.0
Phpmyadmin Phpmyadmin 4.4.1
Phpmyadmin Phpmyadmin 4.4.11
Phpmyadmin Phpmyadmin 4.4.9
Phpmyadmin Phpmyadmin 4.0.10
Phpmyadmin Phpmyadmin 4.5.1
Phpmyadmin Phpmyadmin 4.0.10.4
Phpmyadmin Phpmyadmin 4.5.0.2
Phpmyadmin Phpmyadmin 4.4.8
Phpmyadmin Phpmyadmin 4.0.10.1
Phpmyadmin Phpmyadmin 4.5.2
Phpmyadmin Phpmyadmin 4.5.0
445
VMScore
CVE-2016-2044
libraries/sql-parser/autoload.php in the SQL parser in phpMyAdmin 4.5.x prior to 4.5.4 allows remote malicious users to obtain sensitive information via a crafted request, which reveals the full path in an error message.
Fedoraproject Fedora 22
Fedoraproject Fedora 23
Phpmyadmin Phpmyadmin 4.5.1
Phpmyadmin Phpmyadmin 4.5.0.2
Phpmyadmin Phpmyadmin 4.5.2
Phpmyadmin Phpmyadmin 4.5.0
Phpmyadmin Phpmyadmin 4.5.3
Phpmyadmin Phpmyadmin 4.5.0.1
445
VMScore
CVE-2016-2039
libraries/session.inc.php in phpMyAdmin 4.0.x prior to 4.0.10.13, 4.4.x prior to 4.4.15.3, and 4.5.x prior to 4.5.4 does not properly generate CSRF token values, which allows remote malicious users to bypass intended access restrictions by predicting a value.
Opensuse Leap 42.1
Opensuse Opensuse 13.1
Opensuse Opensuse 13.2
Phpmyadmin Phpmyadmin 4.0.0
Phpmyadmin Phpmyadmin 4.4.13.1
Phpmyadmin Phpmyadmin 4.4.6
Phpmyadmin Phpmyadmin 4.4.2
Phpmyadmin Phpmyadmin 4.4.1.1
Phpmyadmin Phpmyadmin 4.4.15
Phpmyadmin Phpmyadmin 4.4.6.1
Phpmyadmin Phpmyadmin 4.0.10.10
Phpmyadmin Phpmyadmin 4.4.0
Phpmyadmin Phpmyadmin 4.4.1
Phpmyadmin Phpmyadmin 4.4.11
Phpmyadmin Phpmyadmin 4.4.9
Phpmyadmin Phpmyadmin 4.0.10
Phpmyadmin Phpmyadmin 4.5.1
Phpmyadmin Phpmyadmin 4.0.10.4
Phpmyadmin Phpmyadmin 4.5.0.2
Phpmyadmin Phpmyadmin 4.4.8
Phpmyadmin Phpmyadmin 4.0.10.1
Phpmyadmin Phpmyadmin 4.5.2
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
TCP
CVE-2024-4577
CVE-2024-2695
CVE-2024-31870
injection
CVE-2024-3813
arbitrary code
CVE-2024-27801
CVE-2024-30120
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
3
4
5
6
7
8
9
10
NEXT »