Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
fedoraproject fedora 33 vulnerabilities and exploits
(subscribe to this query)
356
VMScore
CVE-2020-25700
In moodle, some database module web services allowed students to add entries within groups they did not belong to. Versions affected: 3.9 to 3.9.2, 3.8 to 3.8.5, 3.7 to 3.7.8, 3.5 to 3.5.14 and previous versions unsupported versions. This is fixed in moodle 3.8.6, 3.7.9, 3.5.15, ...
Moodle Moodle
Fedoraproject Fedora 32
Fedoraproject Fedora 33
445
VMScore
CVE-2020-25701
If the upload course tool in Moodle was used to delete an enrollment method which did not exist or was not already enabled, the tool would erroneously enable that enrollment method. This could lead to unintended users gaining access to the course. Versions affected: 3.9 to 3.9.2,...
Moodle Moodle
Fedoraproject Fedora 32
Fedoraproject Fedora 33
383
VMScore
CVE-2020-25702
In Moodle, it was possible to include JavaScript when re-naming content bank items. Versions affected: 3.9 to 3.9.2. This is fixed in moodle 3.9.3 and 3.10.
Moodle Moodle
Fedoraproject Fedora 32
Fedoraproject Fedora 33
356
VMScore
CVE-2021-30156
An issue exists in MediaWiki prior to 1.31.12 and 1.32.x up to and including 1.35.x prior to 1.35.2. Special:Contributions can leak that a "hidden" user exists.
Mediawiki Mediawiki
Fedoraproject Fedora 33
Fedoraproject Fedora 34
383
VMScore
CVE-2021-32613
In radare2 up to and including 5.3.0 there is a double free vulnerability in the pyc parse via a crafted file which can lead to DoS.
Radare Radare2
Fedoraproject Fedora 33
Fedoraproject Fedora 34
383
VMScore
CVE-2021-32617
Exiv2 is a command-line utility and C++ library for reading, writing, deleting, and modifying the metadata of image files. An inefficient algorithm (quadratic complexity) was found in Exiv2 versions v0.27.3 and previous versions. The inefficient algorithm is triggered when Exiv2 ...
Exiv2 Exiv2
Fedoraproject Fedora 33
Fedoraproject Fedora 34
828
VMScore
CVE-2021-32708
Flysystem is an open source file storage library for PHP. The whitespace normalisation using in 1.x and 2.x removes any unicode whitespace. Under certain specific conditions this could potentially allow a malicious user to execute code remotely. The conditions are: A user is allo...
Thephpleague Flysystem
Fedoraproject Fedora 33
Fedoraproject Fedora 34
1 Github repository
516
VMScore
CVE-2021-32786
mod_auth_openidc is an authentication/authorization module for the Apache 2.x HTTP server that functions as an OpenID Connect Relying Party, authenticating users against an OpenID Connect Provider. In versions before 2.4.9, `oidc_validate_redirect_url()` does not parse URLs the s...
Openidc Mod Auth Openidc
Fedoraproject Fedora 33
Fedoraproject Fedora 34
383
VMScore
CVE-2021-32791
mod_auth_openidc is an authentication/authorization module for the Apache 2.x HTTP server that functions as an OpenID Connect Relying Party, authenticating users against an OpenID Connect Provider. In mod_auth_openidc before version 2.4.9, the AES GCM encryption in mod_auth_openi...
Openidc Mod Auth Openidc
Fedoraproject Fedora 33
Fedoraproject Fedora 34
383
VMScore
CVE-2021-32792
mod_auth_openidc is an authentication/authorization module for the Apache 2.x HTTP server that functions as an OpenID Connect Relying Party, authenticating users against an OpenID Connect Provider. In mod_auth_openidc before version 2.4.9, there is an XSS vulnerability in when us...
Openidc Mod Auth Openidc
Fedoraproject Fedora 33
Fedoraproject Fedora 34
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-30310
CVE-2024-21683
CVE-2024-22187
chrome
deserialization
XPath injection
CVE-2024-27842
denial of service
CVE-2024-24851
google
CVE-2024-35400
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
3
4
5
6
7
8
9
10
NEXT »