Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
aegir vulnerabilities and exploits
(subscribe to this query)
5
CVSSv2
CVE-2020-11059
In AEgir greater than or equal to 21.7.0 and less than 21.10.1, aegir publish and aegir build may leak secrets from environment variables in the browser bundle published to npm. This has been fixed in 21.10.1.
Aegir Project Aegir
5
CVSSv2
CVE-2017-16225
aegir is a module to help automate JavaScript project management. Version 12.0.0 through and including 12.0.7 bundled and published to npm the user (that performed a aegir-release) GitHub token.
Aegir Project Aegir
5.8
CVSSv2
CVE-2012-2707
The Hostmaster (Aegir) module 6.x-1.x prior to 6.x-1.9 for Drupal does not properly exit when users do not have access to package/task nodes, which allows remote malicious users to bypass intended access restrictions and edit unauthorized nodes.
Antoine Beaupre Hostmaster 6.x-1.4
Antoine Beaupre Hostmaster 6.x-1.5
Antoine Beaupre Hostmaster 6.x-1.2
Antoine Beaupre Hostmaster 6.x-1.x
Antoine Beaupre Hostmaster 6.x-1.3
Antoine Beaupre Hostmaster 6.x-1.8
Antoine Beaupre Hostmaster 6.x-1.6
Antoine Beaupre Hostmaster 6.x-1.7
2.1
CVSSv2
CVE-2012-2708
Cross-site scripting (XSS) vulnerability in the _hosting_task_log_table function in modules/hosting/task/hosting_task.module in the Hostmaster (Aegir) module 6.x-1.x prior to 6.x-1.9 for Drupal allows remote authenticated users with certain permissions to inject arbitrary web scr...
Antoine Beaupre Hostmaster 6.x-1.2
Antoine Beaupre Hostmaster 6.x-1.8
Antoine Beaupre Hostmaster 6.x-1.6
Antoine Beaupre Hostmaster 6.x-1.7
Antoine Beaupre Hostmaster 6.x-1.4
Antoine Beaupre Hostmaster 6.x-1.5
Antoine Beaupre Hostmaster 6.x-1.x
Antoine Beaupre Hostmaster 6.x-1.3
7.5
CVSSv2
CVE-2015-5501
The Hostmaster (Aegir) module 6.x-2.x prior to 6.x-2.4 and 7.x-3.x prior to 7.x-3.0-beta2 for Drupal allows remote malicious users to execute arbitrary PHP code via a crafted file in the directory used to write Apache vhost files for hosted sites in a multi-site environment.
Aegirproject Hostmaster 6.x-2.1
Aegirproject Hostmaster 6.x-2.2
Aegirproject Hostmaster 6.x-2.3
Aegirproject Hostmaster 6.x-3.0
Aegirproject Hostmaster 6.x-2.0
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27322
cross-site request forgery
unauthorized
CVE-2024-33925
reflected XSS
CVE-2023-51580
CVE-2023-51579
CVE-2015-2051
CVE-2023-51609
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started