Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cvs vulnerabilities and exploits
(subscribe to this query)
685
VMScore
CVE-2003-0154
Cross-site scripting vulnerabilities (XSS) in bonsai Mozilla CVS query tool allow remote malicious users to execute arbitrary web script via (1) the file, root, or rev parameters to cvslog.cgi, (2) the file or root parameters to cvsblame.cgi, (3) various parameters to cvsquery.cg...
Mozilla Bonsai 1.3
1 EDB exploit
828
VMScore
CVE-2008-5398
Tor prior to 0.2.0.32 does not properly process the ClientDNSRejectInternalAddresses configuration option in situations where an exit relay issues a policy-based refusal of a stream, which allows remote exit relays to have an unknown impact by mapping an internal IP address to th...
Tor Tor 0.0.7.1
Tor Tor 0.0.7
Tor Tor 0.0.2 Pre27
Tor Tor 0.0.2 Pre26
Tor Tor 0.1.0.10
Tor Tor 0.0.9.8
Tor Tor 0.0.9.9
Tor Tor 0.0.9.1
Tor Tor 0.0.9.10
Tor Tor 0.0.2 Pre19
Tor Tor 0.0.2 Pre20
Tor Tor 0.1.1.7
Tor Tor 0.1.1.6 Alpha
Tor Tor 0.1.1.3
Tor Tor 0.1.1.26
Tor Tor 0.1.0.6
Tor Tor 0.1.0.5
Tor Tor 0.0.8.1
Tor Tor 0.0.8
Tor Tor 0.0.6
Tor Tor 0.0.5
Tor Tor 0.1.0.14
641
VMScore
CVE-2008-5397
Tor prior to 0.2.0.32 does not properly process the (1) User and (2) Group configuration options, which might allow local users to gain privileges by leveraging unintended supplementary group memberships of the Tor process.
Tor Tor 0.0.7.1
Tor Tor 0.0.7
Tor Tor 0.0.6.2
Tor Tor 0.0.2 Pre26
Tor Tor 0.0.2 Pre25
Tor Tor 0.0.9.8
Tor Tor 0.0.9.9
Tor Tor 0.0.9.10
Tor Tor 0.0.2 Pre21
Tor Tor 0.0.2 Pre20
Tor Tor 0.0.2 Pre13
Tor Tor 0.1.1.7
Tor Tor 0.1.1.6 Alpha
Tor Tor 0.1.1.26
Tor Tor 0.1.1.6
Tor Tor 0.1.0.5
Tor Tor 0.1.0.8
Tor Tor 0.1.0.15
Tor Tor 0.1.0.18
Tor Tor 0.1.1.2
Tor Tor 0.1.1.2 Alpha
Tor Tor 0.1.1.12
445
VMScore
CVE-2009-2426
The connection_edge_process_relay_cell_not_open function in src/or/relay.c in Tor 0.2.x prior to 0.2.0.35 and 0.1.x prior to 0.1.2.8-beta allows exit relays to have an unspecified impact by causing controllers to accept DNS responses that redirect to an internal IP address via un...
Tor Tor 0.1.0.15
Tor Tor 0.1.0.18
Tor Tor 0.1.0.9
Tor Tor 0.1.0.2
Tor Tor 0.1.1.10 Alpha
Tor Tor 0.1.1.11
Tor Tor 0.1.1.2
Tor Tor 0.1.1.2 Alpha
Tor Tor 0.1.1.7
Tor Tor 0.1.1.6 Alpha
Tor Tor 0.1.1.5
Tor Tor 0.1.1.4 Alpha
Tor Tor 0.1.2.4
Tor Tor 0.1.2.5
Tor Tor 0.2.0.15
Tor Tor 0.2.0.1
Tor Tor 0.2.0.2
Tor Tor 0.2.0.21
Tor Tor 0.2.0.20
Tor Tor 0.2.0.27
Tor Tor 0.2.0.4
Tor Tor 0.2.0.9
312
VMScore
CVE-2020-26256
Fast-csv is an npm package for parsing and formatting CSVs or any other delimited value file in node. In fast-cvs before version 4.3.6 there is a possible ReDoS vulnerability (Regular Expression Denial of Service) when using ignoreEmpty option when parsing. This has been patched ...
C2fo Fast-csv
890
VMScore
CVE-2003-0782
Multiple buffer overflows in ecartis prior to 1.0.0 allow malicious users to cause a denial of service and possibly execute arbitrary code.
Ecartis Ecartis 1.0.0
890
VMScore
CVE-2003-0781
Unknown vulnerability in ecartis prior to 1.0.0 does not properly validate user input, which allows malicious users to obtain mailing list passwords.
Ecartis Ecartis 1.0.0
445
VMScore
CVE-2005-1121
Format string vulnerability in the my_xlog function in lib.c for Oops! Proxy Server 1.5.23 and previous versions, as called by the auth functions in the passwd_mysql and passwd_pgsql modules, may allow malicious users to execute arbitrary code via a URL.
Igor Khasilev Oops Proxy Server 1.4.22
Igor Khasilev Oops Proxy Server 1.5.19
Igor Khasilev Oops Proxy Server 1.5.53
Gentoo Linux
383
VMScore
CVE-2017-5938
Cross-site scripting (XSS) vulnerability in the nav_path function in lib/viewvc.py in ViewVC prior to 1.0.14 and 1.1.x prior to 1.1.26 allows remote malicious users to inject arbitrary web script or HTML via the nav_data name.
Debian Debian Linux 8.0
Opensuse Leap 42.2
Opensuse Project Leap 42.1
Viewvc Viewvc
890
VMScore
CVE-2008-0599
The init_request_info function in sapi/cgi/cgi_main.c in PHP prior to 5.2.6 does not properly consider operator precedence when calculating the length of PATH_TRANSLATED, which might allow remote malicious users to execute arbitrary code via a crafted URI.
Php Php
Fedoraproject Fedora 9
Fedoraproject Fedora 8
Canonical Ubuntu Linux 7.04
Canonical Ubuntu Linux 7.10
Canonical Ubuntu Linux 8.04
Canonical Ubuntu Linux 6.06
Apple Mac Os X Server
Apple Mac Os X
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
NULL pointer dereference
CVE-2023-52689
CVE-2024-23803
client side
CVE-2023-52696
information disclosure
CVE-2024-35843
CVE-2024-27130
CVE-2023-52697
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
4
5
6
7
8
9
10
NEXT »