Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
caldera vulnerabilities and exploits
(subscribe to this query)
4.6
CVSSv2
CVE-2001-1576
Buffer overflow in cron in Caldera UnixWare 7 allows local users to execute arbitrary code via a command line argument.
Caldera Unixware 7
4.6
CVSSv2
CVE-2001-0858
Buffer overflow in pppattach and other linked PPP utilities in Caldera Open Unix 8.0 and UnixWare 7.1.0 and 7.1.1 allows local users to gain privileges.
Caldera Unixware 7.1.0
Caldera Unixware 7.1.1
Caldera Openunix 8.0
4.6
CVSSv2
CVE-1999-0735
KDE K-Mail allows local users to gain privileges via a symlink attack in temporary user directories.
Kde K-mail
1 EDB exploit
4.6
CVSSv2
CVE-1999-0731
The KDE klock program allows local users to unlock a session using malformed input.
Caldera Openlinux 1.3
Caldera Openlinux 2.2
4.6
CVSSv2
CVE-1999-1288
Samba 1.9.18 inadvertently includes a prototype application, wsmbconf, which is installed with incorrect permissions including the setgid bit, which allows local users to read and write files and possibly gain privileges via bugs in the program.
Samba Samba 1.9.18
Caldera Openlinux 1.1
Caldera Openlinux 1.2
Caldera Openlinux 1.3
Redhat Linux
Turbolinux Turbolinux
Caldera Openlinux 1.0
4.6
CVSSv2
CVE-1999-0234
Bash treats any character with a value of 255 as a command separator.
Yggdrasil Linux
Sgi Irix
Caldera Openlinux
Redhat Linux 3.0.3
Suse Suse Linux 4.2
4.3
CVSSv2
CVE-2022-0879
The Caldera Forms WordPress plugin prior to 1.9.7 does not validate and escape the cf-api parameter before outputting it back in the response, leading to a Reflected Cross-Site Scripting
Calderaforms Caldera Forms
4.3
CVSSv2
CVE-2021-42558
An issue exists in CALDERA 2.8.1. It contains multiple reflected, stored, and self XSS vulnerabilities that may be exploited by authenticated and unauthenticated attackers.
Mitre Caldera
3.6
CVSSv2
CVE-2000-0667
Vulnerability in gpm in Caldera Linux allows local users to delete arbitrary files or conduct a denial of service.
Conectiva Linux 5.0
Conectiva Linux 4.0
Conectiva Linux 4.0es
Conectiva Linux 4.1
Conectiva Linux 4.2
Conectiva Linux 5.1
3.5
CVSSv2
CVE-2021-24896
The Caldera Forms WordPress plugin prior to 1.9.5 does not sanitise and escape the Form Name before outputting it in attributes, which could allow high privilege users to perform Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed.
Calderaforms Caldera Forms
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
authentication bypass
CVE-2024-30043
camera
CVE-2023-40404
CVE-2024-2793
client side
CVE-2024-4469
CVE-2024-3565
CVE-2024-29825
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
4
5
6
7
8
9
10
NEXT »