Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
joxean koret vulnerabilities and exploits
(subscribe to this query)
5.1
CVSSv2
CVE-2005-2966
The Python SVG import plugin (diasvg_import.py) for DIA 0.94 and previous versions allows user-assisted malicious users to execute arbitrary commands via a crafted SVG file.
Dia Dia 0.91
Dia Dia 0.92.2
Dia Dia 0.93
Dia Dia
5.1
CVSSv2
CVE-2005-3737
Buffer overflow in the SVG importer (style.cpp) of inkscape 0.41 up to and including 0.42.2 might allow remote malicious users to execute arbitrary code via a SVG file with long CSS style property values.
Inkscape Inkscape 0.42.2
Inkscape Inkscape 0.41
Inkscape Inkscape 0.42
Inkscape Inkscape 0.42.1
1 EDB exploit
2.1
CVSSv2
CVE-2005-3885
The ps2epsi extension shell script (ps2epsi.sh) in Inkscape prior to 0.41 allows local users to overwrite arbitrary files via a symlink attack on the tmpepsifile.epsi temporary file.
Inkscape Inkscape 0.41
5
CVSSv2
CVE-2008-2595
Unspecified vulnerability in the Oracle Internet Directory component in Oracle Application Server 9.0.4.3, 10.1.2.3, and 10.1.4.2 has unknown impact and remote attack vectors. NOTE: the previous information was obtained from the Oracle July 2008 CPU. Oracle has not commented on r...
Oracle Database 10g 10.1.2.3
Oracle Database 10g 10.1.4.2
Oracle Database 9i 9.0.4.3
1 EDB exploit
4
CVSSv2
CVE-2006-5789
War FTP Daemon (WarFTPd) 1.82.00-RC11 allows remote authenticated users to cause a denial of service via a large number of "%s" format strings in (1) CWD, (2) CDUP, (3) DELE, (4) NLST, (5) LIST, (6) SIZE, and possibly other commands. NOTE: it is possible that vector 1 i...
Jgaa Warftpd 1.82.00 Rc11
1 EDB exploit
5.8
CVSSv2
CVE-2006-5826
Buffer overflow in Texas Imperial Software WFTPD Pro Server 3.23.1.1 allows remote authenticated users to execute arbitrary code or cause a denial of service (application crash) via crafted APPE commands that contain "/" (slash) or "\" (backslash) characters.
Texas Imperial Software Wftpd 3.23.1.1
1 EDB exploit
7.5
CVSSv2
CVE-2004-1693
PHP remote file inclusion vulnerability in Function.php in Mambo 4.5 (1.0.9) allows remote malicious users to execute arbitrary PHP code by modifying the mosConfig_absolute_path parameter to reference a URL on a remote web server that contains the code.
Mambo Mambo 4.5 1.0.9
1 EDB exploit
4.3
CVSSv2
CVE-2004-2162
Multiple cross-site scripting (XSS) vulnerabilities in TUTOS 1.1 allow remote malicious users to inject arbitrary web script or HTML via (1) the search field of the Address Module or (2) the t parameter to app_new.php.
Tutos Tutos 1.1 2004-04-14
1 EDB exploit
4.3
CVSSv2
CVE-2004-1692
Cross-site scripting (XSS) vulnerability in index.php in Mambo 4.5 (1.0.9) allows remote malicious users to inject arbitrary web script or HTML via the (1) Itemid, (2) mosmsg, or (3) limit parameters.
Mambo Mambo Open Source 4.5 1.0.9
1 EDB exploit
4.6
CVSSv2
CVE-2006-1240
Buffer overflow in inet_server.cpp in (1) fb_inet_server and (2) fbserver in Firebird 1.5.2.4731 allows local users to gain privileges via a long value of the -p argument.
Firebirdsql Firebird 1.5.2
Firebirdsql Firebird 1.5
Firebirdsql Firebird 1.5.1
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
validation
CVE-2012-1823
malicious code
CVE-2024-5770
CVE-2023-45866
CVE-2024-35687
local users
CVE-2024-31246
CVE-2024-35730
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »