Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
monkey vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2002-2154
Directory traversal vulnerability in Monkey HTTP Daemon 0.1.4 allows remote malicious users to read arbitrary files via .. (dot dot) sequences.
Monkey-project Monkey 0.1.4
1 EDB exploit
NA
CVE-2013-3724
The mk_request_header_process function in mk_request.c in Monkey 1.1.1 allows remote malicious users to cause a denial of service (thread crash and service outage) via a '\0' character in an HTTP request.
Monkey-project Monkey 1.1.1
1 EDB exploit
NA
CVE-2007-2105
Directory traversal vulnerability in admin/index.php in Monkey CMS 0.0.3 allows remote malicious users to include and execute arbitrary local files via a .. (dot dot) in the admin_skin parameter.
Monkey Cms Monkey Cms 0.0.3
9.8
CVSSv3
CVE-2023-28413
Directory traversal vulnerability in Snow Monkey Forms versions v5.0.6 and previous versions allows a remote unauthenticated malicious user to obtain sensitive information, alter the website, or cause a denial-of-service (DoS) condition.
Snow Monkey Forms Project Snow Monkey Forms
5.3
CVSSv3
CVE-2020-2323
Jenkins Chaos Monkey Plugin 0.4 and previous versions does not perform permission checks in an HTTP endpoint, allowing attackers with Overall/Read permission to access the Chaos Monkey page and to see the history of actions.
Netflix Chaos Monkey
7.5
CVSSv3
CVE-2020-2322
Jenkins Chaos Monkey Plugin 0.3 and previous versions does not perform permission checks in several HTTP endpoints, allowing attackers with Overall/Read permission to generate load and to generate memory leaks.
Netflix Chaos Monkey
NA
CVE-2009-0415
Untrusted search path vulnerability in trickle 1.07 allows local users to execute arbitrary code via a Trojan horse trickle-overload.so in the current working directory, which is referenced in the LD_PRELOAD path.
Monkey Trickle 1.07
6.1
CVSSv3
CVE-2017-7266
Netflix Security Monkey prior to 0.8.0 has an Open Redirect. The logout functionality accepted the "next" parameter which then redirects to any domain irrespective of the Host header.
Netflix Security Monkey
9.1
CVSSv3
CVE-2023-32623
Directory traversal vulnerability in Snow Monkey Forms v5.1.1 and previous versions allows a remote unauthenticated malicious user to delete arbitrary files on the server.
2inc Snow Monkey Forms
NA
CVE-2006-6113
Monkey Boards 0.3.5 allows remote malicious users to obtain sensitive information via direct requests to (1) include/admin_auth.inc.php and (2) include/engine/class.compiler.php, which reveals the full path in an error message. NOTE: this issue is only an exposure if the administ...
James Greenwood Monkey Boards 0.3.5
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
encryption
CVE-2024-4331
CVE-2024-26925
arbitrary code
CVE-2006-4304
CVE-2024-25458
CVE-2024-27077
reflected XSS
CVE-2024-4059
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
NEXT »