Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
trunk vulnerabilities and exploits
(subscribe to this query)
9.3
CVSSv2
CVE-2016-10695
The npm-test-sqlite3-trunk module provides asynchronous, non-blocking SQLite3 bindings. npm-test-sqlite3-trunk downloads binary resources over HTTP, which leaves it vulnerable to MITM attacks. It may be possible to cause remote code execution (RCE) by swapping out the requested r...
Mapbox Npm-test-sqlite3-trunk
5
CVSSv2
CVE-2007-2197
Race condition in the NeatUpload ASP.NET component 1.2.11 up to and including 1.2.16, 1.1.18 up to and including 1.1.23, and trunk.379 through trunk.445 allows remote malicious users to obtain other clients' HTTP responses via multiple simultaneous requests, which triggers m...
Brettle Development Neatupload 1.2.12
Brettle Development Neatupload 1.2.13
Brettle Development Neatupload 1.1.22
Brettle Development Neatupload 1.1.23
Brettle Development Neatupload 1.2.11
Brettle Development Neatupload Trunk.380
Brettle Development Neatupload Trunk.381
Brettle Development Neatupload 1.1.18
Brettle Development Neatupload 1.1.19
Brettle Development Neatupload 1.2.14
Brettle Development Neatupload 1.2.15
Brettle Development Neatupload 1.1.20
Brettle Development Neatupload 1.1.21
Brettle Development Neatupload 1.2.16
Brettle Development Neatupload Trunk.379
4.3
CVSSv2
CVE-2015-1855
verify_certificate_identity in the OpenSSL extension in Ruby prior to 2.0.0 patchlevel 645, 2.1.x prior to 2.1.6, and 2.2.x prior to 2.2.2 does not properly validate hostnames, which allows remote malicious users to spoof servers via vectors related to (1) multiple wildcards, (1)...
Ruby-lang Ruby 2.0.0
Ruby-lang Ruby
Ruby-lang Trunk
Debian Debian Linux 7.0
Debian Debian Linux 8.0
Debian Debian Linux 9.0
Puppet Puppet Agent 1.0.0
Puppet Puppet Enterprise
1 Github repository
5
CVSSv2
CVE-2010-3609
The extension parser in slp_v2message.c in OpenSLP 1.2.1, and other versions before SVN revision 1647, as used in Service Location Protocol daemon (SLPD) in VMware ESX 4.0 and 4.1 and ESXi 4.0 and 4.1, allows remote malicious users to cause a denial of service (infinite loop) via...
Vmware Esxi 4.0
Openslp Openslp 1.2.1
Vmware Esx 4.0
Vmware Esx 4.1
Vmware Esxi 4.1
1 EDB exploit
NA
CVE-2022-29277
Incorrect pointer checks within the the FwBlockServiceSmm driver can allow arbitrary RAM modifications During review of the FwBlockServiceSmm driver, certain instances of SpiAccessLib could be tricked into writing 0xff to arbitrary system and SMRAM addresses. Fixed in: INTEL Purl...
Amd Genoa Firmware
Amd Hygon 1 Firmware
Amd Hygon 2 Firmware
Amd Hygon 3 Firmware
Amd Milan Firmware
Amd Rome Firmware
Amd Ryzen 5300g Firmware
Amd Ryzen 5300ge Firmware
Amd Ryzen 5600g Firmware
Amd Ryzen 5600ge Firmware
Amd Ryzen 5600x Firmware
Amd Ryzen 5700g Firmware
Amd Ryzen 5700ge Firmware
Amd Ryzen 5800x Firmware
Amd Ryzen 5800x3d Firmware
Amd Ryzen 5900x Firmware
Amd Ryzen 5950x Firmware
Amd Snowy Owl R1000 Firmware
Amd Snowy Owl R2000 Firmware
Amd Snowy Owl V2000 Firmware
Amd Snowy Owl V3000 Firmware
Intel Alder Lake Firmware
NA
CVE-2022-45907
In PyTorch before trunk/89695, torch.jit.annotations.parse_type_line can cause arbitrary code execution because eval is used unsafely.
Linuxfoundation Pytorch
9.3
CVSSv2
CVE-2015-0853
svn-workbench 1.6.2 and previous versions on a system with xeyes installed allows local users to execute arbitrary commands by using the "Command Shell" menu item while in the directory trunk/$(xeyes).
Pysvn Project Svn-workbench
6.8
CVSSv2
CVE-2021-34619
The WooCommerce Stock Manager WordPress plugin is vulnerable to Cross-Site Request Forgery leading to Arbitrary File Upload in versions up to, and including, 2.5.7 due to missing nonce and file validation in the /woocommerce-stock-manager/trunk/admin/views/import-export.php file.
Storeapps Stock Manager For Woocommerce
9.3
CVSSv2
CVE-2009-1759
Stack-based buffer overflow in the btFiles::BuildFromMI function (trunk/btfiles.cpp) in Enhanced CTorrent (aka dTorrent) 3.3.2 and probably earlier, and CTorrent 1.3.4, allows remote malicious users to cause a denial of service (crash) and possibly execute arbitrary code via a To...
Rahul Dtorrent 3.3.0
Rahul Dtorrent 3.2.0
Rahul Dtorrent 3.3.2
Rahul Dtorrent 3.3.1
Rahul Ctorrent 1.3.4
1 EDB exploit
7.1
CVSSv2
CVE-2008-4963
Unspecified vulnerability in the VLAN Trunking Protocol (VTP) implementation on Cisco IOS and CatOS, when the VTP operating mode is not transparent, allows remote malicious users to cause a denial of service (device reload or hang) via a crafted VTP packet sent to a switch interf...
Cisco Catos
Cisco Ios
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-4463
CVE-2024-29895
inject
CVE-2023-52689
CVE-2024-5049
CVE-2024-5051
privilege escalation
physical
CVE-2023-52676
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
NEXT »