Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
mageia vulnerabilities and exploits
(subscribe to this query)
5
CVSSv2
CVE-2014-8763
DokuWiki prior to 2014-05-05b, when using Active Directory for LDAP authentication, allows remote malicious users to bypass authentication via a password starting with a null (\0) character and a valid user name, which triggers an unauthenticated bind.
Dokuwiki Dokuwiki
Mageia Project Mageia 4.0
Mageia Project Mageia 3.0
5
CVSSv2
CVE-2014-8764
DokuWiki 2014-05-05a and previous versions, when using Active Directory for LDAP authentication, allows remote malicious users to bypass authentication via a user name and password starting with a null (\0) character, which triggers an anonymous bind.
Mageia Project Mageia 4.0
Mageia Project Mageia 3.0
Dokuwiki Dokuwiki
2.1
CVSSv2
CVE-2014-3532
dbus 1.3.0 prior to 1.6.22 and 1.8.x prior to 1.8.6, when running on Linux 2.6.37-rc4 or later, allows local users to cause a denial of service (system-bus disconnect of other services or applications) by sending a message containing a file descriptor, then exceeding the maximum ...
Freedesktop Dbus
Opensuse Opensuse 12.3
Debian Debian Linux 7.0
Mageia Mageia 3.0
Mageia Mageia 4.0
Oracle Solaris 11.3
4.3
CVSSv2
CVE-2014-9253
The default file type whitelist configuration in conf/mime.conf in the Media Manager in DokuWiki prior to 2014-09-29b allows remote malicious users to execute arbitrary web script or HTML by uploading an SWF file, then accessing it via the media parameter to lib/exe/fetch.php.
Dokuwiki Dokuwiki
Mageia Mageia 4.0
5
CVSSv2
CVE-2014-7204
jscript.c in Exuberant Ctags 5.8 allows remote malicious users to cause a denial of service (infinite loop and CPU and disk consumption) via a crafted JavaScript file.
Canonical Ubuntu Linux 12.04
Canonical Ubuntu Linux 14.04
Debian Debian Linux 7.0
Debian Exuberant Ctags 5.8
Mageia Mageia 4.0
Mageia Mageia 3.0
7.5
CVSSv2
CVE-2013-4159
ctdb prior to 2.3 in OpenSUSE 12.3 and 13.1 does not create temporary files securely, which has unspecified impact related to "several temp file vulnerabilities" in (1) tcp/tcp_connect.c, (2) server/eventscript.c, (3) tools/ctdb_diagnostics, (4) config/gdb_backtrace, an...
Ctdb Project Ctdb 2.1
Opensuse Opensuse 12.3
Ctdb Project Ctdb
Ctdb Project Ctdb 2.0
Opensuse Opensuse 13.1
Mageia Mageia 3.0
Mageia Mageia 4.0
7.5
CVSSv2
CVE-2014-9087
Integer underflow in the ksba_oid_to_str function in Libksba prior to 1.3.2, as used in GnuPG, allows remote malicious users to cause a denial of service (crash) via a crafted OID in a (1) S/MIME message or (2) ECC based OpenPGP data, which triggers a buffer overflow.
Mageia Mageia 3.0
Mageia Mageia 4.0
Debian Debian Linux 8.0
Debian Debian Linux 7.0
Gnupg Libksba
Canonical Ubuntu Linux 14.10
Canonical Ubuntu Linux 12.04
Canonical Ubuntu Linux 14.04
Gnupg Gnupg 2.1.0
5
CVSSv2
CVE-2014-1829
Requests (aka python-requests) prior to 2.3.0 allows remote servers to obtain a netrc password by reading the Authorization header in a redirected request.
Debian Debian Linux 7.0
Python Requests
Canonical Ubuntu Linux 14.04
Mageia Mageia 4.0
6.8
CVSSv2
CVE-2014-3429
IPython Notebook 0.12 up to and including 1.x prior to 1.2 does not validate the origin of websocket requests, which allows remote malicious users to execute arbitrary code by leveraging knowledge of the kernel id and a crafted page.
Opensuse Opensuse 13.2
Opensuse Opensuse 13.1
Ipython Ipython Notebook 1.1.0
Ipython Ipython Notebook 0.12
Ipython Ipython Notebook 0.12.1
Ipython Ipython Notebook 0.13
Ipython Ipython Notebook 0.13.1
Ipython Ipython Notebook 0.13.2
Ipython Ipython Notebook 1.0.0
Mageia Mageia 4.0
Mageia Mageia 3.0
4.3
CVSSv2
CVE-2014-9039
wp-login.php in WordPress prior to 3.7.5, 3.8.x prior to 3.8.5, 3.9.x prior to 3.9.3, and 4.x prior to 4.0.1 might allow remote malicious users to reset passwords by leveraging access to an e-mail account that received a password-reset message.
Debian Debian Linux 7.0
Debian Debian Linux 8.0
Mageia Project Mageia 4
Mageia Project Mageia 3
Wordpress Wordpress 3.9.1
Wordpress Wordpress 3.9.2
Wordpress Wordpress 4.0
Wordpress Wordpress 3.8.1
Wordpress Wordpress 3.8.3
Wordpress Wordpress 3.9
Wordpress Wordpress
Wordpress Wordpress 3.8
Wordpress Wordpress 3.8.2
Wordpress Wordpress 3.8.4
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
camera
bypass
CVE-2024-3592
CVE-2024-37383
CVE-2024-24919
CVE-2024-27822
CVE-2024-36788
CVE-2024-36789
man-in-the-middle
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
NEXT »