Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
gollum vulnerabilities and exploits
(subscribe to this query)
8.8
CVSSv3
CVE-2014-9489
The gollum-grit_adapter Ruby gem dependency in gollum prior to 3.1.1 and the gollum-lib gem dependency in gollum-lib prior to 4.0.1 when the string "master" is in any of the wiki documents, allows remote authenticated users to execute arbitrary code via the -O or --open...
Gollum Project Grit Adapter
Gollum Project Gollum-lib
Gollum Project Gollum
NA
CVE-2015-7314
The Precious module in gollum prior to 4.0.1 allows remote malicious users to read arbitrary files by leveraging the lack of a certain temporary-file check.
Gollum Project Gollum
6.1
CVSSv3
CVE-2020-35305
Cross site scripting (XSS) in gollum 5.0 to 5.1.2 via the filename parameter to the 'New Page' dialog.
Gollum Project Gollum
NA
CVE-2001-0784
Directory traversal vulnerability in Icecast 1.3.10 and previous versions allows remote malicious users to read arbitrary files via a modified .. (dot dot) attack using encoded URL characters.
Icecast Icecast 1.3.7
Icecast Icecast 1.3.8 Beta2
Icecast Icecast
1 EDB exploit
NA
CVE-2001-1083
Icecast 1.3.7, and other versions prior to 1.3.11 with HTTP server file streaming support enabled allows remote malicious users to cause a denial of service (crash) via a URL that ends in . (dot), / (forward slash), or \ (backward slash).
Icecast Icecast 1.3.7
Icecast Icecast 1.3.8 Beta2
Icecast Icecast 1.0.0
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
blind SQL injection
SSRF
buffer overflow
CVE-2023-28952
CVE-2023-41822
CVE-2024-27956
CVE-2023-7028
CVE-2024-34447
CVE-2024-34460
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started