Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
monkey vulnerabilities and exploits
(subscribe to this query)
5
CVSSv2
CVE-2002-2154
Directory traversal vulnerability in Monkey HTTP Daemon 0.1.4 allows remote malicious users to read arbitrary files via .. (dot dot) sequences.
Monkey-project Monkey 0.1.4
1 EDB exploit
6.9
CVSSv2
CVE-2012-5303
Monkey HTTP Daemon 0.9.3 might allow local users to overwrite arbitrary files via a symlink attack on a PID file, as demonstrated by a pathname different from the default /var/run/monkey.pid pathname.
Monkey-project Monkey 0.9.3
7.5
CVSSv2
CVE-2007-2105
Directory traversal vulnerability in admin/index.php in Monkey CMS 0.0.3 allows remote malicious users to include and execute arbitrary local files via a .. (dot dot) in the admin_skin parameter.
Monkey Cms Monkey Cms 0.0.3
NA
CVE-2023-28413
Directory traversal vulnerability in Snow Monkey Forms versions v5.0.6 and previous versions allows a remote unauthenticated malicious user to obtain sensitive information, alter the website, or cause a denial-of-service (DoS) condition.
Snow Monkey Forms Project Snow Monkey Forms
5
CVSSv2
CVE-2020-2323
Jenkins Chaos Monkey Plugin 0.4 and previous versions does not perform permission checks in an HTTP endpoint, allowing attackers with Overall/Read permission to access the Chaos Monkey page and to see the history of actions.
Netflix Chaos Monkey
3.7
CVSSv2
CVE-2009-0415
Untrusted search path vulnerability in trickle 1.07 allows local users to execute arbitrary code via a Trojan horse trickle-overload.so in the current working directory, which is referenced in the LD_PRELOAD path.
Monkey Trickle 1.07
5.8
CVSSv2
CVE-2017-7266
Netflix Security Monkey prior to 0.8.0 has an Open Redirect. The logout functionality accepted the "next" parameter which then redirects to any domain irrespective of the Host header.
Netflix Security Monkey
5
CVSSv2
CVE-2020-2322
Jenkins Chaos Monkey Plugin 0.3 and previous versions does not perform permission checks in several HTTP endpoints, allowing attackers with Overall/Read permission to generate load and to generate memory leaks.
Netflix Chaos Monkey
NA
CVE-2023-32623
Directory traversal vulnerability in Snow Monkey Forms v5.1.1 and previous versions allows a remote unauthenticated malicious user to delete arbitrary files on the server.
2inc Snow Monkey Forms
5
CVSSv2
CVE-2006-6113
Monkey Boards 0.3.5 allows remote malicious users to obtain sensitive information via direct requests to (1) include/admin_auth.inc.php and (2) include/engine/class.compiler.php, which reveals the full path in an error message. NOTE: this issue is only an exposure if the administ...
James Greenwood Monkey Boards 0.3.5
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-7028
memory leak
log injection
CVE-2024-3400
CVE-2022-48695
CVE-2022-48675
CVE-2024-34487
CVE-2024-33792
spoof
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
NEXT »