Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
buildbot buildbot vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2009-2967
Multiple cross-site scripting (XSS) vulnerabilities in Buildbot 0.7.6 up to and including 0.7.11p2 allow remote malicious users to inject arbitrary web script or HTML via unspecified vectors, different vulnerabilities than CVE-2009-2959.
Buildbot Buildbot 0.7.11
Buildbot Buildbot 0.7.10p1
Buildbot Buildbot 0.7.6
Buildbot Buildbot 0.7.10
Buildbot Buildbot 0.7.11p2
Buildbot Buildbot 0.7.11p1
Buildbot Buildbot 0.7.7
Buildbot Buildbot 0.7.8
Buildbot Buildbot 0.7.9
NA
CVE-2009-2959
Cross-site scripting (XSS) vulnerability in the waterfall web status view (status/web/waterfall.py) in Buildbot 0.7.6 up to and including 0.7.11p1 allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors.
Buildbot Buildbot 0.7.11p1
Buildbot Buildbot 0.7.10p1
Buildbot Buildbot 0.7.8
Buildbot Buildbot 0.7.10
Buildbot Buildbot 0.7.6
Buildbot Buildbot 0.7.7
Buildbot Buildbot 0.7.9
Buildbot Buildbot 0.7.11
6.1
CVSSv3
CVE-2019-7313
www/resource.py in Buildbot prior to 1.8.1 allows CRLF injection in the Location header of /auth/login and /auth/logout via the redirect parameter. This affects other web sites in the same domain.
Buildbot Buildbot
9.8
CVSSv3
CVE-2019-12300
Buildbot prior to 1.8.2 and 2.x prior to 2.3.1 accepts a user-submitted authorization token from OAuth and uses it to authenticate a user. If an attacker has a token allowing them to read the user details of a victim, they can login as the victim.
Buildbot Buildbot
NA
CVE-2009-3241
Unspecified vulnerability in the OpcUa (OPC UA) dissector in Wireshark 0.99.6 up to and including 1.0.8 and 1.2.0 up to and including 1.2.1 allows remote malicious users to cause a denial of service (memory and CPU consumption) via malformed OPCUA Service CallRequest packets.
Wireshark Wireshark 0.99.7
Wireshark Wireshark 1.0
Wireshark Wireshark 1.2
Wireshark Wireshark 1.2.1
Wireshark Wireshark 1.0.4
Wireshark Wireshark 1.0.3
Wireshark Wireshark 1.0.6
Wireshark Wireshark 0.99.9
Wireshark Wireshark 1.2.0
Wireshark Wireshark 1.0.0
Wireshark Wireshark 1.0.1
Wireshark Wireshark 1.0.2
Wireshark Wireshark 1.0.5
Wireshark Wireshark 0.99.8
Wireshark Wireshark 1.0.7
Wireshark Wireshark 1.0.8
Wireshark Wireshark 0.99.6
Wireshark Wireshark 0.99.6a
1 EDB exploit
NA
CVE-2009-3242
Unspecified vulnerability in packet.c in the GSM A RR dissector in Wireshark 1.2.0 and 1.2.1 allows remote malicious users to cause a denial of service (application crash) via unknown vectors related to "an uninitialized dissector handle," which triggers an assertion fa...
Wireshark Wireshark 1.2.0
Wireshark Wireshark 1.2.1
1 EDB exploit
NA
CVE-2009-3243
Unspecified vulnerability in the TLS dissector in Wireshark 1.2.0 and 1.2.1, when running on Windows, allows remote malicious users to cause a denial of service (application crash) via unknown vectors related to TLS 1.2 conversations.
Wireshark Wireshark 1.2.0
Wireshark Wireshark 1.2.1
1 EDB exploit
NA
CVE-2011-1143
epan/dissectors/packet-ntlmssp.c in the NTLMSSP dissector in Wireshark prior to 1.4.4 allows remote malicious users to cause a denial of service (NULL pointer dereference and application crash) via a crafted .pcap file.
Wireshark Wireshark 0.99.3
Wireshark Wireshark 0.99.4
Wireshark Wireshark 1.0.10
Wireshark Wireshark 1.2.13
Wireshark Wireshark 1.0.8
Wireshark Wireshark 1.2.3
Wireshark Wireshark 1.4.2
Wireshark Wireshark 1.2.7
Wireshark Wireshark 1.0.2
Wireshark Wireshark 1.0.3
Wireshark Wireshark 1.0.4
Wireshark Wireshark
Wireshark Wireshark 0.99.5
Wireshark Wireshark 0.99.6
Wireshark Wireshark 1.2.5
Wireshark Wireshark 1.2.1
Wireshark Wireshark 1.2.0
Wireshark Wireshark 1.2.4
Wireshark Wireshark 1.4.1
Wireshark Wireshark 1.2.12
Wireshark Wireshark 1.2.6
Wireshark Wireshark 1.0.15
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
privilege escalation
CVE-2024-20696
CVE-2024-29829
CVE-2024-33999
CVE-2024-35646
physical
CVE-2024-24919
CVE-2024-31030
local users
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started