Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
gollum vulnerabilities and exploits
(subscribe to this query)
6.5
CVSSv2
CVE-2014-9489
The gollum-grit_adapter Ruby gem dependency in gollum prior to 3.1.1 and the gollum-lib gem dependency in gollum-lib prior to 4.0.1 when the string "master" is in any of the wiki documents, allows remote authenticated users to execute arbitrary code via the -O or --open...
Gollum Project Grit Adapter
Gollum Project Gollum-lib
Gollum Project Gollum
NA
CVE-2020-35305
Cross site scripting (XSS) in gollum 5.0 to 5.1.2 via the filename parameter to the 'New Page' dialog.
Gollum Project Gollum
4.3
CVSSv2
CVE-2015-7314
The Precious module in gollum prior to 4.0.1 allows remote malicious users to read arbitrary files by leveraging the lack of a certain temporary-file check.
Gollum Project Gollum
5
CVSSv2
CVE-2001-0784
Directory traversal vulnerability in Icecast 1.3.10 and previous versions allows remote malicious users to read arbitrary files via a modified .. (dot dot) attack using encoded URL characters.
Icecast Icecast 1.3.7
Icecast Icecast 1.3.8 Beta2
Icecast Icecast
1 EDB exploit
5
CVSSv2
CVE-2001-1083
Icecast 1.3.7, and other versions prior to 1.3.11 with HTTP server file streaming support enabled allows remote malicious users to cause a denial of service (crash) via a URL that ends in . (dot), / (forward slash), or \ (backward slash).
Icecast Icecast 1.3.7
Icecast Icecast 1.3.8 Beta2
Icecast Icecast 1.0.0
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-29895
blind SQL injection
CVE-2024-5064
CVE-2023-52677
CVE-2023-52682
CVE-2024-30051
CVE-2024-35849
remote attackers
remote
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started