Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
file file 4.7 vulnerabilities and exploits
(subscribe to this query)
2.6
CVSSv2
CVE-2006-2832
Cross-site scripting (XSS) vulnerability in the upload module (upload.module) in Drupal 4.6.x prior to 4.6.8 and 4.7.x prior to 4.7.2 allows remote malicious users to inject arbitrary web script or HTML via the uploaded filename.
Drupal Drupal 4.6.5
Drupal Drupal 4.6.6
Drupal Drupal 4.6.3
Drupal Drupal 4.6.4
Drupal Drupal 4.6
Drupal Drupal 4.6.0
Drupal Drupal 4.6.7
Drupal Drupal 4.7.0
Drupal Drupal 4.6.1
Drupal Drupal 4.6.2
Drupal Drupal 4.7.1
2.1
CVSSv2
CVE-2019-1142
An elevation of privilege vulnerability exists when the .NET Framework common language runtime (CLR) allows file creation in arbitrary locations, aka '.NET Framework Elevation of Privilege Vulnerability'.
Microsoft .net Framework 3.5
Microsoft .net Framework 4.7.2
Microsoft .net Framework 4.6.1
Microsoft .net Framework 4.7
Microsoft .net Framework 4.7.1
Microsoft .net Framework 4.6
Microsoft .net Framework 4.6.2
Microsoft .net Framework 4.8
Microsoft .net Framework 4.5.2
1 Article
2.1
CVSSv2
CVE-2011-4327
ssh-keysign.c in ssh-keysign in OpenSSH prior to 5.8p2 on certain platforms executes ssh-rand-helper with unintended open file descriptors, which allows local users to obtain sensitive key information via the ptrace system call.
Openbsd Openssh 5.4
Openbsd Openssh 5.3
Openbsd Openssh 5.2
Openbsd Openssh 5.1
Openbsd Openssh 4.1p1
Openbsd Openssh 4.1
Openbsd Openssh 4.0p1
Openbsd Openssh 4.0
Openbsd Openssh 3.6.1
Openbsd Openssh 3.6
Openbsd Openssh 3.5p1
Openbsd Openssh 3.5
Openbsd Openssh 3.0.1p1
Openbsd Openssh 3.0.1
Openbsd Openssh 3.0
Openbsd Openssh 2.9p2
Openbsd Openssh 1.5.8
Openbsd Openssh 1.5.7
Openbsd Openssh 1.5
Openbsd Openssh 1.3
Openbsd Openssh 4.6
Openbsd Openssh 4.5
2.1
CVSSv2
CVE-2010-2603
RIM BlackBerry Desktop Software 4.7 up to and including 6.0 for PC, and 1.0 for Mac, uses a weak password to encrypt a database backup file, which makes it easier for local users to decrypt the file via a brute force attack.
Rim Blackberry Desktop Software 5.0.1
Rim Blackberry Desktop Software 6.0
Rim Blackberry Desktop Software 4.7
Rim Blackberry Desktop Software 5.0
Rim Blackberry Desktop Software 1.0
1.9
CVSSv2
CVE-2020-15250
In JUnit4 from version 4.7 and prior to 4.13.1, the test rule TemporaryFolder contains a local information disclosure vulnerability. On Unix like systems, the system's temporary directory is shared between all users on that system. Because of this, when files and directories...
Junit Junit4
Debian Debian Linux 9.0
Apache Pluto
Oracle Communications Cloud Native Core Policy 1.14.0
6 Github repositories
NA
CVE-2022-47375
A vulnerability has been identified in SIMATIC PC-Station Plus (All versions), SIMATIC S7-400 CPU 412-2 PN V7 (All versions), SIMATIC S7-400 CPU 414-3 PN/DP V7 (All versions), SIMATIC S7-400 CPU 414F-3 PN/DP V7 (All versions), SIMATIC S7-400 CPU 416-3 PN/DP V7 (All versions), SIM...
Siemens 6es7412-2ek07-0ab0 Firmware
Siemens 6es7414-3em07-0ab0 Firmware
Siemens 6es7414-3fm07-0ab0 Firmware
Siemens 6es7416-3es07-0ab0 Firmware
Siemens 6es7416-3fs07-0ab0 Firmware
Siemens 6ag1414-3em07-7ab0 Firmware
Siemens 6ag1416-3es07-7ab0 Firmware
Siemens Sinamics S120 Firmware -
Siemens Sinamics S120 Firmware 4.7
Siemens Sinamics S120 Firmware 4.8
Siemens Sinamics S120 Firmware 4.9
Siemens Sinamics S120 Firmware 5.0
Siemens Sinamics S120 Firmware 5.1
Siemens Sinamics S120 Firmware 5.2
Siemens Simatic Pc-station Plus Firmware
NA
CVE-2023-43089
Dell Rugged Control Center, version before 4.7, contains insufficient protection for the Policy folder. A local malicious standard user could potentially exploit this vulnerability to modify the content of the policy file, leading to unauthorized access to resources.
Dell Rugged Control Center
NA
CVE-2023-36049
.NET, .NET Framework, and Visual Studio Elevation of Privilege Vulnerability
Microsoft .net Framework 2.0
Microsoft .net Framework 3.0
Microsoft .net Framework 3.5
Microsoft .net Framework 4.6.2
Microsoft .net Framework 4.7
Microsoft .net Framework 4.7.1
Microsoft .net Framework 4.7.2
Microsoft .net Framework 4.8
Microsoft .net Framework 4.8.1
Microsoft .net Framework 3.5.1
Microsoft .net 8.0.0
Microsoft .net
Microsoft Visual Studio 2022
NA
CVE-2022-2864
The demon image annotation plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 4.7. This is due to missing nonce validation in the ~/includes/settings.php file. This makes it possible for unauthenticated malicious users to modify the...
Superwhite Demon Image Annotation
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-40673
CVE-2024-36674
CVE-2024-27348
unspecified
CVE-2024-24919
CVE-2024-4870
malicious code
CVE-2024-2019
hard-coded
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
3
4
5
6
7
8