Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
devscripts vulnerabilities and exploits
(subscribe to this query)
8.8
CVSSv3
CVE-2013-7325
An issue exists in uscan in devscripts prior to 2.13.19, which could let a remote malicious user execute arbitrary code via a crafted tarball.
Debian Devscripts
Debian Debian Linux 7.0
Debian Debian Linux 8.0
Debian Debian Linux 9.0
Debian Debian Linux 10.0
Debian Debian Linux 11.0
9.8
CVSSv3
CVE-2018-13043
scripts/grep-excuses.pl in Debian devscripts up to and including 2.18.3 allows code execution through unsafe YAML loading because YAML::Syck is used without a configuration that prevents unintended blessing.
Debian Devscripts
Canonical Ubuntu Linux 17.10
Canonical Ubuntu Linux 18.04
7.8
CVSSv3
CVE-2015-5704
scripts/licensecheck.pl in devscripts prior to 2.15.7 allows local users to execute arbitrary shell commands.
Devscripts Devel Team Devscripts
Fedoraproject Fedora 21
Fedoraproject Fedora 22
7.5
CVSSv3
CVE-2015-5705
Argument injection vulnerability in devscripts prior to 2.15.7 allows remote malicious users to write to arbitrary files via a crafted symlink and crafted filename.
Devscripts Devel Team Devscripts
Fedoraproject Fedora 21
Fedoraproject Fedora 22
7.8
CVSSv3
CVE-2016-1238
(1) cpan/Archive-Tar/bin/ptar, (2) cpan/Archive-Tar/bin/ptardiff, (3) cpan/Archive-Tar/bin/ptargrep, (4) cpan/CPAN/scripts/cpan, (5) cpan/Digest-SHA/shasum, (6) cpan/Encode/bin/enc2xs, (7) cpan/Encode/bin/encguess, (8) cpan/Encode/bin/piconv, (9) cpan/Encode/bin/ucmlint, (10) cpa...
Debian Debian Linux 8.0
Fedoraproject Fedora 24
Fedoraproject Fedora 23
Perl Perl 5.003 92
Perl Perl 5.21.1
Perl Perl 5.9.3
Perl Perl 5.14.1
Perl Perl 5.8.0
Perl Perl 5.003 97
Perl Perl 5.6.0
Perl Perl 5.17.11
Perl Perl 5.24.1
Perl Perl 5.16.0
Perl Perl 5.19.6
Perl Perl 5.22.3
Perl Perl 5.17.4
Perl Perl 5.003 03
Perl Perl 5.18.4
Perl Perl 5.18.2
Perl Perl 5.8.4
Perl Perl 5.15.6
Perl Perl 5.004 04
4 Github repositories
NA
CVE-2014-1833
Directory traversal vulnerability in uupdate in devscripts 2.14.1 allows remote malicious users to modify arbitrary files via a crafted .orig.tar file, related to a symlink.
Devscripts Devel Team Devscripts 2.14.1
NA
CVE-2013-6888
Uscan in devscripts prior to 2.13.9 allows remote malicious users to execute arbitrary code via a crafted tarball.
Devscripts Devel Team Devscripts 2.13.7
Devscripts Devel Team Devscripts 2.13.5
Devscripts Devel Team Devscripts
Devscripts Devel Team Devscripts 2.13.2
Devscripts Devel Team Devscripts 2.13.4
Devscripts Devel Team Devscripts 2.13.1
Devscripts Devel Team Devscripts 2.13.0
Devscripts Devel Team Devscripts 2.13.6
Devscripts Devel Team Devscripts 2.13.3
NA
CVE-2013-7085
Uscan in devscripts 2.13.5, when USCAN_EXCLUSION is enabled, allows remote malicious users to delete arbitrary files via a whitespace character in a filename.
Devscripts Devel Team Devscripts 2.13.5
NA
CVE-2013-7050
The get_main_source_dir function in scripts/uscan.pl in devscripts prior to 2.13.8, when using USCAN_EXCLUSION, allows remote malicious users to execute arbitrary commands via shell metacharacters in a directory name.
Devscripts Devel Team Devscripts 2.13.5
Devscripts Devel Team Devscripts 2.13.2
Devscripts Devel Team Devscripts
Devscripts Devel Team Devscripts 2.13.4
Devscripts Devel Team Devscripts 2.13.1
Devscripts Devel Team Devscripts 2.13.0
Devscripts Devel Team Devscripts 2.13.6
Devscripts Devel Team Devscripts 2.13.3
NA
CVE-2012-2240
scripts/dscverify.pl in devscripts prior to 2.12.3 allows remote malicious users to execute arbitrary commands via unspecified vectors related to "arguments to external commands."
Devscripts Devel Team Devscripts 2.10.15
Devscripts Devel Team Devscripts 2.10.18
Devscripts Devel Team Devscripts 2.10.7
Devscripts Devel Team Devscripts 2.10.10
Devscripts Devel Team Devscripts 2.11.0
Devscripts Devel Team Devscripts 2.10.0
Devscripts Devel Team Devscripts 2.10.1
Devscripts Devel Team Devscripts 2.10.56
Devscripts Devel Team Devscripts 2.10.50
Devscripts Devel Team Devscripts 2.10.45
Devscripts Devel Team Devscripts 2.10.40
Devscripts Devel Team Devscripts 2.10.47
Devscripts Devel Team Devscripts 2.10.42
Devscripts Devel Team Devscripts 2.10.34
Devscripts Devel Team Devscripts 2.10.35
Devscripts Devel Team Devscripts 2.10.26
Devscripts Devel Team Devscripts 2.10.27
Devscripts Devel Team Devscripts 2.12.1
Devscripts Devel Team Devscripts 2.11.9
Devscripts Devel Team Devscripts 2.9.26
Devscripts Devel Team Devscripts 2.9.21
Devscripts Devel Team Devscripts 2.8.14
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-49223
CVE-2024-0044
information disclosure
CVE-2024-35753
HTML injection
CVE-2024-21306
CVE-2024-35733
SQL injection
CVE-2024-35732
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »