Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
curl curl 7.1 vulnerabilities and exploits
(subscribe to this query)
8.8
CVSSv3
CVE-2021-22966
Privilege escalation from Editor to Admin using Groups in Concrete CMS versions 8.5.6 and below. If a group is granted "view" permissions on the bulkupdate page, then users in that group can escalate to being an administrator with a specially crafted curl. Fixed by addi...
Concretecms Concrete Cms
NA
CVE-2014-0139
cURL and libcurl 7.1 prior to 7.36.0, when using the OpenSSL, axtls, qsossl or gskit libraries for TLS, recognize a wildcard IP address in the subject's Common Name (CN) field of an X.509 certificate, which might allow man-in-the-middle malicious users to spoof arbitrary SSL...
Haxx Curl 7.21.3
Haxx Curl 7.15.1
Haxx Curl 7.24.0
Haxx Libcurl 7.19.0
Haxx Libcurl 7.19.6
Haxx Curl 7.16.1
Haxx Curl 7.13.0
Haxx Curl 7.35.0
Haxx Curl 7.18.0
Haxx Libcurl 7.21.2
Haxx Curl 7.14.1
Haxx Curl 7.21.5
Haxx Curl 7.21.1
Haxx Curl 7.12.1
Haxx Curl 7.32.0
Haxx Curl 7.16.2
Haxx Libcurl 7.11.2
Haxx Curl 7.17.1
Haxx Curl 7.19.1
Haxx Libcurl 7.17.1
Haxx Libcurl 7.19.4
Haxx Libcurl 7.30.0
NA
CVE-2009-0037
The redirect implementation in curl and libcurl 5.11 up to and including 7.19.3, when CURLOPT_FOLLOWLOCATION is enabled, accepts arbitrary Location values, which might allow remote HTTP servers to (1) trigger arbitrary requests to intranet servers, (2) read or overwrite arbitrary...
Curl Curl 7.10.7
Curl Curl 7.10.3
Curl Curl 7.3
Curl Curl 7.1
Curl Curl 6.4
Curl Curl 5.11
Curl Curl 7.14.1
Curl Curl 7.9.1
Curl Libcurl 7.14
Curl Curl 6.1beta
Curl Curl 7.16.3
Curl Libcurl 7.14.1
Curl Curl 7.9.2
Curl Curl 7.14
Curl Curl 7.4
Curl Curl 7.9.3
Curl Curl 6.3
Curl Libcurl 7.12.2
Curl Curl 6.5.1
Curl Curl 7.4.1
Curl Curl 7.10.4
Curl Curl 7.15.3
1 EDB exploit
1 Github repository
NA
CVE-2000-0973
Buffer overflow in curl earlier than 6.0-1.1, and curl-ssl earlier than 6.0-1.2, allows remote malicious users to execute arbitrary commands by forcing a long error message to be generated.
Daniel Stenberg Curl 7.1
Daniel Stenberg Curl 6.3
Daniel Stenberg Curl 6.5.2
Daniel Stenberg Curl 6.5
Daniel Stenberg Curl 6.1beta
Daniel Stenberg Curl 6.5.1
Daniel Stenberg Curl 7.2.1
Daniel Stenberg Curl 7.2
Daniel Stenberg Curl 7.3
Daniel Stenberg Curl 6.0
Daniel Stenberg Curl 6.4
Daniel Stenberg Curl 6.1
Daniel Stenberg Curl 7.1.1
Daniel Stenberg Curl 7.4
2 EDB exploits
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-0044
client side
CVE-2021-47601
deserialization
CVE-2024-34994
encryption
CVE-2021-47609
CVE-2024-37079
CVE-2024-38608
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started