Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
superuser vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2023-45899
An issue in the component SuperUserSetuserModuleFrontController:init() of idnovate superuser before v2.4.2 allows malicious users to bypass authentication via a crafted HTTP call.
Idnovate Superuser
5
CVSSv2
CVE-2013-6768
Untrusted search path vulnerability in the CyanogenMod/ClockWorkMod/Koush Superuser package 1.0.2.1 for Android 4.2.x and previous versions allows malicious users to trigger the launch of a Trojan horse app_process program via a crafted PATH environment variable for a /system/xbi...
Koushik Dutta Superuser 1.0.2.1
10
CVSSv2
CVE-2013-6769
The CyanogenMod/ClockWorkMod/Koush Superuser package 1.0.2.1 for Android allows malicious users to gain privileges via shell metacharacters in the -c option to /system/xbin/su.
Koushik Dutta Superuser 1.0.2.1
7.6
CVSSv2
CVE-2013-6770
The CyanogenMod/ClockWorkMod/Koush Superuser package 1.0.2.1 for Android 4.3 and 4.4 does not properly restrict the set of users who can execute /system/xbin/su with the --daemon option, which allows malicious users to gain privileges by leveraging ADB shell access and a certain ...
Koushik Dutta Superuser 1.0.2.1
Google Android 4.4
10
CVSSv2
CVE-2013-6774
Untrusted search path vulnerability in the ChainsDD Superuser package 3.1.3 for Android 4.2.x and previous versions, CyanogenMod/ClockWorkMod/Koush Superuser package 1.0.2.1 for Android 4.2.x and previous versions, and Chainfire SuperSU package prior to 1.69 for Android 4.2.x and...
Chainfire Supersu 1.69
Androidsu Chainsdd Superuser 3.1.3
Koushik Dutta Superuser 1.0.2.1
5
CVSSv2
CVE-2018-7745
An issue exists in Western Bridge Cobub Razor 0.7.2. Authentication is not required for /index.php?/install/installation/createuserinfo requests, resulting in account creation.
Cobub Razor 0.7.2
1 EDB exploit
10
CVSSv2
CVE-2013-6775
The Chainfire SuperSU package prior to 1.69 for Android allows malicious users to gain privileges via the (1) backtick or (2) $() type of shell metacharacters in the -c option to /system/xbin/su.
Chainfire Supersu 1.69
10
CVSSv2
CVE-2001-0008
Backdoor account in Interbase database server allows remote malicious users to overwrite arbitrary files using stored procedures.
Firebirdsql Firebird
Borland Software Interbase 5.0
Borland Software Interbase 6.0
Borland Software Interbase 4.0
1 EDB exploit
NA
CVE-2022-2568
A privilege escalation flaw was found in the Ansible Automation Platform. This flaw allows a remote authenticated user with 'change user' permissions to modify the account settings of the superuser account and also remove the superuser privileges.
Redhat Ansible Automation Platform 2.1
Redhat Ansible Automation Platform 2.2
Redhat Ansible Automation Platform 2.0
4
CVSSv2
CVE-2013-4226
The Authenticated User Page Caching (Authcache) module 7.x-1.x prior to 7.x-1.5 for Drupal does not properly restrict access to cached pages, which allows remote attackers with the same role-combination as the superuser to obtain sensitive information via the cached pages of the ...
Drupal Authenticated User Page Caching 7.x-1.0
Drupal Authenticated User Page Caching 7.x-1.1
Drupal Authenticated User Page Caching 7.x-1.2
Drupal Authenticated User Page Caching 7.x-1.3
Drupal Authenticated User Page Caching 7.x-1.4
Drupal Authenticated User Page Caching 7.x-1.5
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3581
reflected XSS
CVE-2024-26925
CVE-2024-27956
LFI
CVE-2024-3607
CVE-2024-3107
CVE-2024-3295
SQL
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »