Vulmon Recent Vulnerabilities Product List Research Posts Trends Blog Docs About Contact

fedoraproject fedora 18 vulnerabilities and exploits

(subscribe to this query)
3.6
CVSSv2

CVE-2013-0159

The fedora-business-cards package prior to 1-0.1.beta1.fc17 on Fedora 17 and prior to 1-0.1.beta1.fc18 on Fedora 18 allows local users to cause a denial of service or write to arbitrary files via a symlink attack on /tmp/fedora-business-cards-buffer.svg.
Fedoraproject Fedora 17Fedoraproject Fedora 18
2.1
CVSSv2

CVE-2013-1888

pip prior to 1.3 allows local users to overwrite arbitrary files via a symlink attack on a file in the /tmp/pip-build temporary directory.
Pypa PipFedoraproject Fedora 17Fedoraproject Fedora 18Fedoraproject Fedora 19
7.8
CVSSv2

CVE-2012-5645

A denial of service flaw was found in the way the server component of Freeciv prior to 2.3.4 processed certain packets. A remote attacker could send a specially-crafted packet that, when processed would lead to memory exhaustion or excessive CPU consumption.
Freeciv FreecivFedoraproject Fedora 16Fedoraproject Fedora 17Fedoraproject Fedora 18
4.3
CVSSv2

CVE-2012-3354

doku.php in DokuWiki, as used in Fedora 16, 17, and 18, when certain PHP error levels are set, allows remote malicious users to obtain sensitive information via the prefix parameter, which reveals the installation path in an error message.
Dokuwiki Dokuwiki -Fedoraproject Fedora 16Fedoraproject Fedora 17Fedoraproject Fedora 18
5
CVSSv2

CVE-2013-4410

ReviewBoard: has an access-control problem in REST API
Reviewboard ReviewboardFedoraproject Fedora 18Fedoraproject Fedora 19Fedoraproject Fedora 20
4.3
CVSSv2

CVE-2013-4752

Symfony 2.0.X prior to 2.0.24, 2.1.X prior to 2.1.12, 2.2.X prior to 2.2.5, and 2.3.X prior to 2.3.3 have an issue in the HttpFoundation component. The Host header can be manipulated by an attacker when the framework is generating an absolute URL. A remote attacker could exploit ...
Sensiolabs SymfonyFedoraproject Fedora 18Fedoraproject Fedora 19
4
CVSSv2

CVE-2013-1930

MantisBT 1.2.12 prior to 1.2.15 allows authenticated users to by the workflow restriction and close issues.
Mantisbt MantisbtFedoraproject Fedora 17Fedoraproject Fedora 18
5
CVSSv2

CVE-2012-4524

xlockmore prior to 5.43 'dclock' security bypass vulnerability
Xlockmore XlockmoreSillycycle XlockmoreFedoraproject Fedora 16Fedoraproject Fedora 17Fedoraproject Fedora 18
4.6
CVSSv2

CVE-2012-4480

mom creates world-writable pid files in /var/run
Mom MomOvirt MomFedoraproject Fedora 17Fedoraproject Fedora 18
4.3
CVSSv2

CVE-2013-0294

packet.py in pyrad prior to 2.1 uses weak random numbers to generate RADIUS authenticators and hash passwords, which makes it easier for remote malicious users to obtain sensitive information via a brute force attack.
Pyrad PyradPyrad Project PyradFedoraproject Fedora 18Fedoraproject Fedora 19Fedoraproject Fedora 20
Preferred Score:
CVSSv2
CVSSv2
CVSSv3
CVSSv4
EPSS
VMScore
Recommendations:
loftoceanCVE-2025-49234CVE-2025-48145spareCVE-2025-49854CVE-2023-33538injectioninjectmichal jaworskitemplate injectionCVE-2025-45878CVE-2025-43200slim seo
Home
/
Search Results
Vulmon Logo Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Product List Vendor List Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook