Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
morgan vulnerabilities and exploits
(subscribe to this query)
668
VMScore
CVE-2019-5413
An attacker can use the format parameter to inject arbitrary commands in the npm package morgan < 1.9.1.
Morgan Project Morgan
3 Github repositories
NA
CVE-2022-25921
All versions of package morgan-json are vulnerable to Arbitrary Code Execution due to missing sanitization of input passed to the Function constructor.
Morgan-json Project Morgan-json
465
VMScore
CVE-2003-0388
pam_wheel in Linux-PAM 0.78, with the trust option enabled and the use_uid option disabled, allows local users to spoof log entries and gain privileges by causing getlogin() to return a spoofed user name.
Andrew Morgan Linux Pam
1 EDB exploit
641
VMScore
CVE-2007-0003
pam_unix.so in Linux-PAM 0.99.7.0 allows context-dependent malicious users to log into accounts whose password hash, as stored in /etc/passwd or /etc/shadow, has only two characters.
Andrew Morgan Linux Pam 0.99.7.0
755
VMScore
CVE-2007-4208
SQL injection vulnerability in default.asp in Next Gen Portfolio Manager allows remote malicious users to execute arbitrary SQL commands via the (1) Users_Email or (2) Users_Password parameter in an ExecuteTheLogin action.
Morgan Ids Next Gen Portfolio Manager
1 EDB exploit
668
VMScore
CVE-2020-13656
In Morgan Stanley Hobbes through 2020-05-21, the array implementation lacks bounds checking, allowing exploitation of an out-of-bounds (OOB) read/write vulnerability that leads to both local and remote code (via RPC) execution.
Morganstanley Hobbes
383
VMScore
CVE-2012-0037
Redland Raptor (aka libraptor) prior to 2.0.7, as used by OpenOffice 3.3 and 3.4 Beta, LibreOffice prior to 3.4.6 and 3.5.x prior to 3.5.1, and other products, allows user-assisted remote malicious users to read arbitrary files via a crafted XML external entity (XXE) declaration ...
Librdf Raptor
Libreoffice Libreoffice 3.5.0
Libreoffice Libreoffice
Apache Openoffice 3.3.0
Apache Openoffice 3.4.0
Fedoraproject Fedora 17
Fedoraproject Fedora 16
Redhat Enterprise Linux Server 5.0
Redhat Enterprise Linux Server Aus 6.2
Redhat Enterprise Linux Workstation 5.0
Redhat Enterprise Linux Desktop 6.0
Redhat Enterprise Linux Server 6.0
Redhat Enterprise Linux Workstation 6.0
Redhat Enterprise Linux Desktop 5.0
Redhat Storage 2.0
Redhat Storage For Public Cloud 2.0
Redhat Enterprise Linux Eus 6.2
Redhat Gluster Storage Server For On-premise 2.0
Debian Debian Linux 6.0
668
VMScore
CVE-2014-7209
run-mailcap in the Debian mime-support package prior to 3.52-1+deb7u1 allows context-dependent malicious users to execute arbitrary commands via shell metacharacters in a filename.
Debian Mime-support
668
VMScore
CVE-2003-0707
Buffer overflow in LinuxNode (node) prior to 0.3.2 allows remote malicious users to execute arbitrary code.
Tomi Manninen Linuxnode
668
VMScore
CVE-2003-0708
Format string vulnerability in LinuxNode (node) prior to 0.3.2 may allow malicious users to cause a denial of service or execute arbitrary code.
Tomi Manninen Linuxnode
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-6280
CVE-2024-5346
CVE-2024-30078
CVE-2022-45803
CVE-2024-36886
SQL
CVE-2024-24553
IMAP
memory leak
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »