Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
file vulnerabilities and exploits
(subscribe to this query)
6.1
CVSSv3
CVE-2018-3726
crud-file-server node module prior to 0.8.0 suffers from a Cross-Site Scripting vulnerability to a lack of validation of file names.
Crud-file-server Project Crud-file-server
6.5
CVSSv3
CVE-2020-23706
A heap-based buffer overflow vulnerability in the function ok_jpg_decode_block_subsequent_scan() ok_jpg.c:1102 of ok-file-formats through 2020-06-26 allows malicious users to cause a Denial of Service (DOS) via a crafted jpeg file.
Ok-file-formats Project Ok-file-formats
8.8
CVSSv3
CVE-2019-16790
In Tiny File Manager prior to 2.3.9, there is a remote code execution via Upload from URL and Edit/Rename files. Only authenticated users are impacted.
Tiny File Manager Project Tiny File Manager
7.8
CVSSv3
CVE-2021-32263
ok-file-formats through 2021-04-29 has a heap-based buffer overflow in the ok_csv_circular_buffer_read function in ok_csv.c.
Ok-file-formats Project Ok-file-formats
9.8
CVSSv3
CVE-2017-8297
A path traversal vulnerability exists in simple-file-manager prior to 2017-04-26, affecting index.php (the sole "Simple PHP File Manager" component).
Simple-file-manager Project Simple-file-manager
7
CVSSv3
CVE-2016-0263
IBM Spectrum Scale 4.1 prior to 4.1.1.5 and 4.2 prior to 4.2.0.2 and General Parallel File System 3.5 prior to 3.5.0.30 allow local users to gain privileges or cause a denial of service via a crafted mmapplypolicy command.
Ibm General Parallel File System Storage Server 3.5.0.7
Ibm General Parallel File System Storage Server 3.5.0.12
Ibm General Parallel File System Storage Server 3.5.0.5
Ibm General Parallel File System Storage Server 3.5.0.22
Ibm General Parallel File System Storage Server 3.5.0.3
Ibm General Parallel File System Storage Server 3.5.0.21
Ibm General Parallel File System Storage Server 3.5.0.9
Ibm General Parallel File System Storage Server 3.5.0.15
Ibm General Parallel File System Storage Server 3.5.0.2
Ibm General Parallel File System Storage Server 3.5.0.11
Ibm General Parallel File System Storage Server 3.5.0.27
Ibm General Parallel File System Storage Server 3.5.0.4
Ibm General Parallel File System Storage Server 3.5.0.24
Ibm General Parallel File System Storage Server 3.5.0.26
Ibm General Parallel File System Storage Server 3.5.0.14
Ibm General Parallel File System Storage Server 3.5.0.8
Ibm General Parallel File System Storage Server 3.5.0.29
Ibm General Parallel File System Storage Server 3.5.0.28
Ibm General Parallel File System Storage Server 3.5.0.17
Ibm General Parallel File System Storage Server 3.5.0.18
Ibm General Parallel File System Storage Server 3.5.0.19
Ibm General Parallel File System Storage Server 3.5.0.20
NA
CVE-2004-0741
LionMax Software WWW File Share Pro 2.60 allows remote malicious users to cause a denial of service (crash or hang) via a long URL, possibly triggering a buffer overflow.
Lionmax Software Www File Share Pro 2.41
Lionmax Software Www File Share Pro 2.46
Lionmax Software Www File Share Pro 2.42
Lionmax Software Www File Share Pro 2.40
Lionmax Software Www File Share Pro 2.6
9.9
CVSSv3
CVE-2018-18810
The Administrator Service component of TIBCO Software Inc.'s TIBCO Managed File Transfer Command Center, and TIBCO Managed File Transfer Internet Server contains vulnerabilities where an authenticated user with specific privileges can gain access to credentials to other syst...
Tibco Managed File Transfer Internet Server 8.1.0
Tibco Managed File Transfer Command Center
Tibco Managed File Transfer Command Center 8.1.0
Tibco Managed File Transfer Internet Server
NA
CVE-2009-4809
Directory traversal vulnerability in thumbnail.ghp in Easy File Sharing (EFS) Web Server 4.8 allows remote malicious users to read arbitrary files via a .. (dot dot) in the vfolder parameter.
Sharing-file Easy File Sharing Web Server 4.8
NA
CVE-2007-2799
Integer overflow in the "file" program 4.20, when running on 32-bit systems, as used in products including The Sleuth Kit, might allow user-assisted malicious users to execute arbitrary code via a large file that triggers an overflow that bypasses an assert() statement....
File File 4.2
Sleuth Kit The Sleuth Kith
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
TCP
CVE-2024-4577
CVE-2024-2695
CVE-2024-31870
injection
CVE-2024-3813
arbitrary code
CVE-2024-27801
CVE-2024-30120
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
4
5
6
7
8
9
10
NEXT »