Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
fedora vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv3
CVE-2012-1158
Moodle prior to 2.2.2 has a course information leak in gradebook where users are able to see hidden grade items in export
Moodle Moodle
Fedoraproject Fedora 15
Fedoraproject Fedora 16
Fedoraproject Fedora 17
4.3
CVSSv3
CVE-2012-1159
Moodle prior to 2.2.2: Overview report allows users to see hidden courses
Moodle Moodle
Fedoraproject Fedora 15
Fedoraproject Fedora 16
Fedoraproject Fedora 17
2.7
CVSSv3
CVE-2012-1160
Moodle prior to 2.2.2 has a permission issue in Forum Subscriptions where unenrolled users can subscribe/unsubscribe via mod/forum/index.php
Moodle Moodle
Fedoraproject Fedora 15
Fedoraproject Fedora 16
Fedoraproject Fedora 17
4.3
CVSSv3
CVE-2012-1161
Moodle prior to 2.2.2: Course information leak via hidden courses being displayed in tag search results
Moodle Moodle
Fedoraproject Fedora 15
Fedoraproject Fedora 16
Fedoraproject Fedora 17
5.3
CVSSv3
CVE-2012-1169
Moodle prior to 2.2.2 has Personal information disclosure, when administrative setting users name display is set to first name only full names are shown in page breadcrumbs.
Moodle Moodle
Fedoraproject Fedora 15
Fedoraproject Fedora 16
Fedoraproject Fedora 17
7.5
CVSSv3
CVE-2012-1170
Moodle prior to 2.2.2 has an external enrolment plugin context check issue where capability checks are not thorough
Moodle Moodle
Fedoraproject Fedora 15
Fedoraproject Fedora 16
Fedoraproject Fedora 17
6.1
CVSSv3
CVE-2021-23414
This affects the package video.js prior to 7.14.3. The src attribute of track tag allows to bypass HTML escaping and execute arbitrary code.
Videojs Video.js
Fedoraproject Fedora 35
Fedoraproject Fedora 36
Fedoraproject Fedora 37
8.6
CVSSv3
CVE-2022-21668
pipenv is a Python development workflow tool. Starting with version 2018.10.9 and prior to version 2022.1.8, a flaw in pipenv's parsing of requirements files allows an malicious user to insert a specially crafted string inside a comment anywhere within a requirements.txt fil...
Pypa Pipenv
Fedoraproject Fedora 34
Fedoraproject Fedora 35
Fedoraproject Fedora 36
3 Github repositories
5.9
CVSSv3
CVE-2021-40530
The ElGamal implementation in Crypto++ up to and including 8.5 allows plaintext recovery because, during interaction between two cryptographic libraries, a certain dangerous combination of the prime defined by the receiver's public key, the generator defined by the receiver&...
Cryptopp Crypto\\+\\+
Fedoraproject Fedora 33
Fedoraproject Fedora 34
Fedoraproject Fedora 35
9.8
CVSSv3
CVE-2018-20060
urllib3 before version 1.23 does not remove the Authorization HTTP header when following a cross-origin redirect (i.e., a redirect that differs in host, port, or scheme). This can allow for credentials in the Authorization header to be exposed to unintended hosts or transmitted i...
Python Urllib3
Fedoraproject Fedora 28
Fedoraproject Fedora 29
Fedoraproject Fedora 30
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-32886
insecure direct object reference
CVE-2024-34342
file inclusion
CVE-2024-34562
CVE-2024-34347
CVE-2024-26026
CVE-2024-4647
unprivileged
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
5
6
7
8
9
10
NEXT »