Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
joxean koret vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2005-2966
The Python SVG import plugin (diasvg_import.py) for DIA 0.94 and previous versions allows user-assisted malicious users to execute arbitrary commands via a crafted SVG file.
Dia Dia 0.91
Dia Dia 0.92.2
Dia Dia 0.93
Dia Dia
NA
CVE-2005-3737
Buffer overflow in the SVG importer (style.cpp) of inkscape 0.41 up to and including 0.42.2 might allow remote malicious users to execute arbitrary code via a SVG file with long CSS style property values.
Inkscape Inkscape 0.42.2
Inkscape Inkscape 0.41
Inkscape Inkscape 0.42
Inkscape Inkscape 0.42.1
1 EDB exploit
NA
CVE-2005-3885
The ps2epsi extension shell script (ps2epsi.sh) in Inkscape prior to 0.41 allows local users to overwrite arbitrary files via a symlink attack on the tmpepsifile.epsi temporary file.
Inkscape Inkscape 0.41
NA
CVE-2008-2595
Unspecified vulnerability in the Oracle Internet Directory component in Oracle Application Server 9.0.4.3, 10.1.2.3, and 10.1.4.2 has unknown impact and remote attack vectors. NOTE: the previous information was obtained from the Oracle July 2008 CPU. Oracle has not commented on r...
Oracle Database 10g 10.1.2.3
Oracle Database 10g 10.1.4.2
Oracle Database 9i 9.0.4.3
1 EDB exploit
NA
CVE-2004-1467
Multiple cross-site scripting (XSS) vulnerabilities in eGroupWare 1.0.00.003 and previous versions allow remote malicious users to inject arbitrary web script or HTML via (1) date or search text field in the calendar module, (2) Field parameter, Filter parameter, QField parameter...
Egroupware Egroupware 1.0
Egroupware Egroupware 1.0.1
Egroupware Egroupware 1.0.3
1 EDB exploit
NA
CVE-2004-1693
PHP remote file inclusion vulnerability in Function.php in Mambo 4.5 (1.0.9) allows remote malicious users to execute arbitrary PHP code by modifying the mosConfig_absolute_path parameter to reference a URL on a remote web server that contains the code.
Mambo Mambo 4.5 1.0.9
1 EDB exploit
NA
CVE-2005-3302
Eval injection vulnerability in bvh_import.py in Blender 2.36 allows malicious users to execute arbitrary Python code via a hierarchy element in a .bvh file, which is supplied to an eval function call.
Blender Blender 2.36
Debian Debian Linux 3.1
1 EDB exploit
NA
CVE-2006-1240
Buffer overflow in inet_server.cpp in (1) fb_inet_server and (2) fbserver in Firebird 1.5.2.4731 allows local users to gain privileges via a long value of the -p argument.
Firebirdsql Firebird 1.5.2
Firebirdsql Firebird 1.5
Firebirdsql Firebird 1.5.1
1 EDB exploit
NA
CVE-2006-5789
War FTP Daemon (WarFTPd) 1.82.00-RC11 allows remote authenticated users to cause a denial of service via a large number of "%s" format strings in (1) CWD, (2) CDUP, (3) DELE, (4) NLST, (5) LIST, (6) SIZE, and possibly other commands. NOTE: it is possible that vector 1 i...
Jgaa Warftpd 1.82.00 Rc11
1 EDB exploit
NA
CVE-2006-5826
Buffer overflow in Texas Imperial Software WFTPD Pro Server 3.23.1.1 allows remote authenticated users to execute arbitrary code or cause a denial of service (application crash) via crafted APPE commands that contain "/" (slash) or "\" (backslash) characters.
Texas Imperial Software Wftpd 3.23.1.1
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
inject
CVE-2024-34001
CVE-2024-37018
LFI
CVE-2024-1275
CVE-2024-1086
CSRF
CVE-2024-31030
CVE-2024-24919
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »