Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
trunk vulnerabilities and exploits
(subscribe to this query)
828
VMScore
CVE-2016-10695
The npm-test-sqlite3-trunk module provides asynchronous, non-blocking SQLite3 bindings. npm-test-sqlite3-trunk downloads binary resources over HTTP, which leaves it vulnerable to MITM attacks. It may be possible to cause remote code execution (RCE) by swapping out the requested r...
Mapbox Npm-test-sqlite3-trunk
445
VMScore
CVE-2007-2197
Race condition in the NeatUpload ASP.NET component 1.2.11 up to and including 1.2.16, 1.1.18 up to and including 1.1.23, and trunk.379 through trunk.445 allows remote malicious users to obtain other clients' HTTP responses via multiple simultaneous requests, which triggers m...
Brettle Development Neatupload 1.2.12
Brettle Development Neatupload 1.2.13
Brettle Development Neatupload 1.1.22
Brettle Development Neatupload 1.1.23
Brettle Development Neatupload 1.2.11
Brettle Development Neatupload Trunk.380
Brettle Development Neatupload Trunk.381
Brettle Development Neatupload 1.1.18
Brettle Development Neatupload 1.1.19
Brettle Development Neatupload 1.2.14
Brettle Development Neatupload 1.2.15
Brettle Development Neatupload 1.1.20
Brettle Development Neatupload 1.1.21
Brettle Development Neatupload 1.2.16
Brettle Development Neatupload Trunk.379
383
VMScore
CVE-2015-1855
verify_certificate_identity in the OpenSSL extension in Ruby prior to 2.0.0 patchlevel 645, 2.1.x prior to 2.1.6, and 2.2.x prior to 2.2.2 does not properly validate hostnames, which allows remote malicious users to spoof servers via vectors related to (1) multiple wildcards, (1)...
Ruby-lang Ruby 2.0.0
Ruby-lang Ruby
Ruby-lang Trunk
Debian Debian Linux 7.0
Debian Debian Linux 8.0
Debian Debian Linux 9.0
Puppet Puppet Agent 1.0.0
Puppet Puppet Enterprise
1 Github repository
505
VMScore
CVE-2010-3609
The extension parser in slp_v2message.c in OpenSLP 1.2.1, and other versions before SVN revision 1647, as used in Service Location Protocol daemon (SLPD) in VMware ESX 4.0 and 4.1 and ESXi 4.0 and 4.1, allows remote malicious users to cause a denial of service (infinite loop) via...
Vmware Esxi 4.0
Openslp Openslp 1.2.1
Vmware Esx 4.0
Vmware Esx 4.1
Vmware Esxi 4.1
1 EDB exploit
NA
CVE-2022-29277
Incorrect pointer checks within the the FwBlockServiceSmm driver can allow arbitrary RAM modifications During review of the FwBlockServiceSmm driver, certain instances of SpiAccessLib could be tricked into writing 0xff to arbitrary system and SMRAM addresses. Fixed in: INTEL Purl...
Amd Genoa Firmware
Amd Hygon 1 Firmware
Amd Hygon 2 Firmware
Amd Hygon 3 Firmware
Amd Milan Firmware
Amd Rome Firmware
Amd Ryzen 5300g Firmware
Amd Ryzen 5300ge Firmware
Amd Ryzen 5600g Firmware
Amd Ryzen 5600ge Firmware
Amd Ryzen 5600x Firmware
Amd Ryzen 5700g Firmware
Amd Ryzen 5700ge Firmware
Amd Ryzen 5800x Firmware
Amd Ryzen 5800x3d Firmware
Amd Ryzen 5900x Firmware
Amd Ryzen 5950x Firmware
Amd Snowy Owl R1000 Firmware
Amd Snowy Owl R2000 Firmware
Amd Snowy Owl V2000 Firmware
Amd Snowy Owl V3000 Firmware
Intel Alder Lake Firmware
NA
CVE-2022-45907
In PyTorch before trunk/89695, torch.jit.annotations.parse_type_line can cause arbitrary code execution because eval is used unsafely.
Linuxfoundation Pytorch
828
VMScore
CVE-2015-0853
svn-workbench 1.6.2 and previous versions on a system with xeyes installed allows local users to execute arbitrary commands by using the "Command Shell" menu item while in the directory trunk/$(xeyes).
Pysvn Project Svn-workbench
605
VMScore
CVE-2021-34619
The WooCommerce Stock Manager WordPress plugin is vulnerable to Cross-Site Request Forgery leading to Arbitrary File Upload in versions up to, and including, 2.5.7 due to missing nonce and file validation in the /woocommerce-stock-manager/trunk/admin/views/import-export.php file.
Storeapps Stock Manager For Woocommerce
935
VMScore
CVE-2009-1759
Stack-based buffer overflow in the btFiles::BuildFromMI function (trunk/btfiles.cpp) in Enhanced CTorrent (aka dTorrent) 3.3.2 and probably earlier, and CTorrent 1.3.4, allows remote malicious users to cause a denial of service (crash) and possibly execute arbitrary code via a To...
Rahul Dtorrent 3.3.0
Rahul Dtorrent 3.2.0
Rahul Dtorrent 3.3.2
Rahul Dtorrent 3.3.1
Rahul Ctorrent 1.3.4
1 EDB exploit
694
VMScore
CVE-2010-4686
CallManager Express (CME) on Cisco IOS prior to 15.0(1)XA1 does not properly handle SIP TRUNK traffic that contains rate bursts and a "peculiar" request size, which allows remote malicious users to cause a denial of service (memory consumption) by sending this traffic o...
Cisco Ios
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
camera
bypass
CVE-2024-3592
CVE-2024-37383
CVE-2024-24919
CVE-2024-27822
CVE-2024-36788
CVE-2024-36789
man-in-the-middle
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
NEXT »