Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
paul vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2010-0424
The edit_cmd function in crontab.c in (1) cronie prior to 1.4.4 and (2) Vixie cron (vixie-cron) allows local users to change the modification times of arbitrary files, and consequently cause a denial of service, via a symlink attack on a temporary file in the /tmp directory.
Fedorahosted Cronie
Paul Vixie Vixie Cron
NA
CVE-2010-2616
SQL injection vulnerability in bible.php in PHP Bible Search, probably 0.99, allows remote malicious users to execute arbitrary SQL commands via the chapter parameter.
Paul Mcenery Php Bible Search 0.99
1 EDB exploit
NA
CVE-2006-6272
Cross-site scripting (XSS) vulnerability in sp_index.php in Simple PHP Gallery 1.1 allows remote malicious users to inject arbitrary web script or HTML via the dir parameter.
Paul Griffin Simple Php Gallery 1.1
1 EDB exploit
NA
CVE-2006-6273
sp_index.php in Simple PHP Gallery 1.1 allows remote malicious users to obtain sensitive information via an invalid dir parameter, which reveals the path in an error message.
Paul Griffin Simple Php Gallery 1.1
NA
CVE-2006-5093
PHP remote file inclusion vulnerability in index.php in Tagmin Control Center in TagIt! Tagboard 2.1.B Build 2 allows remote malicious users to execute arbitrary PHP code via a URL in the page parameter.
Paul Schudar Tagmin Control Center 2.1.b Build 2
1 EDB exploit
NA
CVE-2000-0006
strace allows local users to read arbitrary files via memory mapped file names.
Paul Kranenburg Strace
Linux Linux Kernel 2.3.20
NA
CVE-2001-0474
Utah-glx in Mesa prior to 3.3-14 on Mandrake Linux 7.2 allows local users to overwrite arbitrary files via a symlink attack on the /tmp/glxmemory file.
Brian Paul Mesa
Mandrakesoft Mandrake Linux 7.2
NA
CVE-2006-5909
generaloptions.php in Paul Tarjan Stanford Conference And Research Forum (SCARF) prior to 20070227 does not require the admin privilege, which allows remote malicious users to reconfigure the application or its user accounts.
Paul Tarjan Stanford Conference And Research Forum Beta
NA
CVE-2005-1038
crontab in Vixie cron 4.1, when running with the -e option, allows local users to read the cron files of other users by changing the file being edited to a symlink. NOTE: there is insufficient information to know whether this is a duplicate of CVE-2001-0235.
Paul Vixie Vixie Cron 4.1
Redhat Enterprise Linux 4.0
NA
CVE-1999-0297
Buffer overflow in Vixie Cron library up to version 3.0 allows local users to obtain root access via a long environmental variable.
Paul Vixie Vixie Cron 3.0
Netbsd Netbsd 2.0.4
Redhat Linux
Bsdi Bsd Os 2.1
Freebsd Freebsd 2.1.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
authentication bypass
CVE-2024-30051
remote
CVE-2024-27954
CVE-2023-51483
CVE-2023-47782
SSRF
CVE-2024-24715
CVE-2023-52424
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »