Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
caldera caldera 9.20 vulnerabilities and exploits
(subscribe to this query)
10
CVSSv2
CVE-2014-2935
costview3/xmlrpc_server/xmlrpc.php in CostView in Caldera 9.20 allows remote malicious users to execute arbitrary commands via shell metacharacters in a methodCall element in a PHP XMLRPC request.
Caldera Caldera 9.20
7.5
CVSSv2
CVE-2014-2934
Multiple SQL injection vulnerabilities in Caldera 9.20 allow remote malicious users to execute arbitrary SQL commands via the tr parameter to (1) costview2/jobs.php or (2) costview2/printers.php.
Caldera Caldera 9.20
2 EDB exploits
7.5
CVSSv2
CVE-2014-2936
The directory manager in Caldera 9.20 allows remote malicious users to conduct variable-injection attacks in the global scope via (1) the maindir_hotfolder parameter to dirmng/index.php, or an unspecified parameter to (2) PPD/index.php, (3) dirmng/docmd.php, or (4) dirmng/param.p...
Caldera Caldera 9.20
5
CVSSv2
CVE-2014-2933
Directory traversal vulnerability in dirmng/index.php in Caldera 9.20 allows remote malicious users to access arbitrary directories via a crafted pathname.
Caldera Caldera 9.20
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
cross-site scripting
CVE-2024-5158
XML external entity
CVE-2024-4262
CVE-2024-2036
CVE-2024-4985
CVE-2024-21791
remote attackers
CVE-2023-43208
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started