Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
botan vulnerabilities and exploits
(subscribe to this query)
435
VMScore
CVE-2006-1496
Multiple cross-site scripting (XSS) vulnerabilities in index.php in ViHor Design allow remote malicious users to inject arbitrary web script or HTML via (1) a remote URL in the page parameter, which is processed by an fopen call, or (2) HTML or script in the page parameter, which...
Vihor Vihordesign
1 EDB exploit
435
VMScore
CVE-2006-1482
Cross-site scripting (XSS) vulnerability in index.php in ConfTool 1.1 allows remote malicious users to inject arbitrary web script or HTML via the page parameter.
Conftool Conftool 1.1
1 EDB exploit
383
VMScore
CVE-2018-20187
A side-channel issue exists in Botan prior to 2.9.0. An attacker capable of precisely measuring the time taken for ECC key generation may be able to derive information about the high bits of the secret key, as the function to derive the public point from the secret scalar uses an...
Botan Project Botan
265
VMScore
CVE-2006-1878
Cross-site scripting (XSS) vulnerability in index.php in phpFaber TopSites allows remote malicious users to inject arbitrary web script or HTML via the page parameter.
Phpfaber Topsites 3
1 EDB exploit
265
VMScore
CVE-2006-1906
Cross-site scripting (XSS) vulnerability in index.php in jjgan852 phpLister 0.4.1 allows remote malicious users to inject arbitrary web script or HTML via the page parameter.
Jjgan852 Phplister 0.4.1
1 EDB exploit
265
VMScore
CVE-2006-1835
Cross-site scripting (XSS) vulnerability in yearcal.php in Calendarix allows remote malicious users to inject arbitrary web script or HTML via the ycyear parameter.
Vincent Hor Calendarix 0.6.2005-08-30
Vincent Hor Calendarix Advanced 1.5.2005-05-01
1 EDB exploit
231
VMScore
CVE-2021-40529
The ElGamal implementation in Botan up to and including 2.18.1, as used in Thunderbird and other products, allows plaintext recovery because, during interaction between two cryptographic libraries, a certain dangerous combination of the prime defined by the receiver's public...
Botan Project Botan
Fedoraproject Fedora 34
Fedoraproject Fedora 35
Mozilla Thunderbird
187
VMScore
CVE-2017-14737
A cryptographic cache-based side channel in the RSA implementation in Botan prior to 1.10.17, and 1.11.x and 2.x prior to 2.3.0, allows a local malicious user to recover information about RSA secret keys, as demonstrated by CacheD. This occurs because an array is indexed with bit...
Botan Project Botan 1.11.6
Botan Project Botan 1.11.7
Botan Project Botan 1.11.8
Botan Project Botan 1.11.9
Botan Project Botan 1.11.23
Botan Project Botan 1.11.24
Botan Project Botan 1.11.25
Botan Project Botan 1.11.26
Botan Project Botan
Botan Project Botan 1.11.0
Botan Project Botan 1.11.1
Botan Project Botan 1.11.15
Botan Project Botan 1.11.16
Botan Project Botan 1.11.17
Botan Project Botan 1.11.18
Botan Project Botan 2.0.0
Botan Project Botan 2.0.1
Botan Project Botan 2.1.0
Botan Project Botan 2.2.0
Botan Project Botan 1.11.3
Botan Project Botan 1.11.5
Botan Project Botan 1.11.10
187
VMScore
CVE-2016-8871
In Botan 1.11.29 up to and including 1.11.32, RSA decryption with certain padding options had a detectable timing channel which could given sufficient queries be used to recover plaintext, aka an "OAEP side channel" attack.
Botan Project Botan 1.11.32
Botan Project Botan 1.11.30
Botan Project Botan 1.11.31
Botan Project Botan 1.11.29
169
VMScore
CVE-2018-12435
Botan 2.5.0 up to and including 2.6.0 prior to 2.7.0 allows a memory-cache side-channel attack on ECDSA signatures, aka the Return Of the Hidden Number Problem or ROHNP, related to dsa/dsa.cpp, ec_group/ec_group.cpp, and ecdsa/ecdsa.cpp. To discover an ECDSA key, the attacker nee...
Botan Project Botan
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
authentication bypass
CVE-2024-30051
remote
CVE-2024-27954
CVE-2023-51483
CVE-2023-47782
SSRF
CVE-2024-24715
CVE-2023-52424
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
NEXT »