Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
scott vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2016-8863
Heap-based buffer overflow in the create_url_list function in gena/gena_device.c in Portable UPnP SDK (aka libupnp) prior to 1.6.21 allows remote malicious users to cause a denial of service (crash) or possibly execute arbitrary code via a valid URI followed by an invalid one in ...
Libupnp Project Libupnp
Debian Debian Linux 8.0
1 Github repository
NA
CVE-2007-5904
Multiple buffer overflows in CIFS VFS in Linux kernel 2.6.23 and previous versions allows remote malicious users to cause a denial of service (crash) and possibly execute arbitrary code via long SMB responses that trigger the overflows in the SendReceive function.
Linux Linux Kernel
6.5
CVSSv3
CVE-2018-0489
Shibboleth XMLTooling-C prior to 1.6.4, as used in Shibboleth Service Provider prior to 2.6.1.4 on Windows and other products, mishandles digital signatures of user data, which allows remote malicious users to obtain sensitive information or conduct impersonation attacks via craf...
Shibboleth Xmltooling-c
Debian Debian Linux 7.0
Debian Debian Linux 8.0
Debian Debian Linux 9.0
Arubanetworks Clearpass
NA
CVE-2007-3104
The sysfs_readdir function in the Linux kernel 2.6, as used in Red Hat Enterprise Linux (RHEL) 4.5 and other distributions, allows users to cause a denial of service (kernel OOPS) by dereferencing a null pointer to an inode in a dentry.
Linux Linux Kernel 2.6.0
NA
CVE-2007-4997
Integer underflow in the ieee80211_rx function in net/ieee80211/ieee80211_rx.c in the Linux kernel 2.6.x prior to 2.6.23 allows remote malicious users to cause a denial of service (crash) via a crafted SKB length value in a runt IEEE 802.11 frame when the IEEE80211_STYPE_QOS_DATA...
Linux Linux Kernel
NA
CVE-2007-5500
The wait_task_stopped function in the Linux kernel prior to 2.6.23.8 checks a TASK_TRACED bit instead of an exit_state value, which allows local users to cause a denial of service (machine crash) via unspecified vectors. NOTE: some of these details are obtained from third party i...
Linux Linux Kernel
NA
CVE-2001-0123
Directory traversal vulnerability in eXtropia bbs_forum.cgi 1.0 allows remote malicious users to read arbitrary files via a .. (dot dot) attack on the file parameter.
Extropia Bbs Forum.cgi 1.0
1 EDB exploit
8.8
CVSSv3
CVE-2019-19774
An issue exists in Zoho ManageEngine EventLog Analyzer 10.0 SP1 before Build 12110. By running "select hostdetails from hostdetails" at the /event/runquery.do endpoint, it is possible to bypass the security restrictions that prevent even administrative users from viewin...
Zohocorp Manageengine Eventlog Analyzer
1 EDB exploit
8.1
CVSSv3
CVE-2017-12718
A Classic Buffer Overflow issue exists in Smiths Medical Medfusion 4000 Wireless Syringe Infusion Pump, Version 1.1, 1.5, and 1.6. A third-party component used in the pump does not verify input buffer size prior to copying, leading to a buffer overflow, allowing remote code execu...
Smiths-medical Medfusion 4000 Wireless Syringe Infusion Pump 1.1
Smiths-medical Medfusion 4000 Wireless Syringe Infusion Pump 1.5
Smiths-medical Medfusion 4000 Wireless Syringe Infusion Pump 1.6
1 EDB exploit
NA
CVE-2002-2106
PHP remote file inclusion vulnerability in WikkiTikkiTavi prior to 0.21 allows remote malicious users to execute arbitrary PHP code via the TemplateDir variable, as demonstrated using conflict.php.
Wikkitikkitavi Wikkitikkitavi 0.10
Wikkitikkitavi Wikkitikkitavi 0.20
Wikkitikkitavi Wikkitikkitavi 0.5
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-29895
blind SQL injection
CVE-2024-5064
CVE-2023-52677
CVE-2023-52682
CVE-2024-30051
CVE-2024-35849
remote attackers
remote
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
NEXT »