6 matches found
CVE-2025-20233
In the Splunk App for Lookup File Editing versions below 4.0.5, a script in the app used the chmod and makedirs Python functions in a way that resulted in overly broad read and execute permissions. This could lead to improper access control for a low-privileged user...
CVE-2022-26846
SPIP before 3.2.14 and 4.x before 4.0.5 allows remote authenticated editors to execute arbitrary code...
DEBIAN-CVE-2014-7203
libzmq aka ZeroMQ/C++ 4.0.x before 4.0.5 does not ensure that nonces are unique, which allows man-in-the-middle attackers to conduct replay attacks via unspecified vectors...
PT-2010-1873 · Apple · Safari +1
Name of the Vulnerable Software and Affected Versions: Apple Safari versions prior to 4.0.5 Description: The issue is related to a use-after-free vulnerability in WebKit, allowing remote attackers to execute arbitrary code or cause a denial of service, resulting in an application crash. This can ...
CVE-2007-1081
The start function in class.t3libformmail.php in TYPO3 before 4.0.5, 4.1beta, and 4.1RC1 allows attackers to inject arbitrary email headers via unknown vectors. NOTE: some details were obtained from third party information...
DEBIAN-CVE-2004-1001
Unknown vulnerability in the passwdcheck function in Shadow 4.0.4.1, and possibly other versions before 4.0.5, allows local users to conduct unauthorized activities when an error from a pamchauthtok function call is not properly handled...