Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
arbitrary code vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2023-38146
Windows Themes Remote Code Execution Vulnerability
Microsoft Windows 11 22h2
Microsoft Windows 11 21h2
5 Github repositories
10
CVSSv2
CVE-2020-5847
Unraid up to and including 6.8.0 allows Remote Code Execution.
Unraid Unraid
1 Github repository
5
CVSSv2
CVE-2020-5849
Unraid 6.8.0 allows authentication bypass.
Unraid Unraid 6.8.0
1 Github repository
6.5
CVSSv2
CVE-2013-7325
An issue exists in uscan in devscripts prior to 2.13.19, which could let a remote malicious user execute arbitrary code via a crafted tarball.
Debian Devscripts
Debian Debian Linux 7.0
Debian Debian Linux 8.0
Debian Debian Linux 9.0
Debian Debian Linux 10.0
Debian Debian Linux 11.0
9
CVSSv2
CVE-2014-7884
Multiple unspecified vulnerabilities in HP ArcSight Logger prior to 6.0P1 have unknown impact and remote authenticated attack vectors.
Hp Arcsight Logger 6.0
1 EDB exploit
7.5
CVSSv2
CVE-2001-0400
nph-maillist.pl allows remote malicious users to execute arbitrary commands via shell metacharacters ("`") in the email address.
Matt Tourtillott Nph-maillist 3.0
Matt Tourtillott Nph-maillist 3.5
1 EDB exploit
6.8
CVSSv2
CVE-2008-1585
Apple QuickTime prior to 7.5 uses the url.dll!FileProtocolHandler handler for unrecognized URIs in qt:next attributes within SMIL text in video files, which sends these URIs to explorer.exe and thereby allows remote malicious users to execute arbitrary programs, as originally dem...
Apple Quicktime
NA
CVE-2023-31873
Gin 0.7.4 allows execution of arbitrary code when a crafted file is opened, e.g., via require('child_process').
Gin Project Gin 0.7.4
6.8
CVSSv2
CVE-2011-2657
Directory traversal vulnerability in the LaunchProcess function in the LaunchHelp.HelpLauncher.1 ActiveX control in LaunchHelp.dll in AdminStudio in Novell ZENworks Configuration Management (ZCM) 10.2, 10.3, and 11 SP1 allows remote malicious users to execute arbitrary commands v...
Novell Zenworks Configuration Management 10.2
Novell Zenworks Configuration Management 10.3
Novell Zenworks Configuration Management 11
1 EDB exploit
6.8
CVSSv2
CVE-2013-7050
The get_main_source_dir function in scripts/uscan.pl in devscripts prior to 2.13.8, when using USCAN_EXCLUSION, allows remote malicious users to execute arbitrary commands via shell metacharacters in a directory name.
Devscripts Devel Team Devscripts 2.13.5
Devscripts Devel Team Devscripts 2.13.2
Devscripts Devel Team Devscripts
Devscripts Devel Team Devscripts 2.13.4
Devscripts Devel Team Devscripts 2.13.1
Devscripts Devel Team Devscripts 2.13.0
Devscripts Devel Team Devscripts 2.13.6
Devscripts Devel Team Devscripts 2.13.3
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-34377
CVE-2024-20859
CVE-2023-49606
inject
arbitrary
CVE-2024-33788
CVE-2024-30973
IDOR
CVE-2024-33907
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
5
6
7
8
9
10
NEXT »