Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

47 matches found

Positive Technologies
Positive Technologiesadded 2011/05/23 12:0 a.m.0 views

PT-2011-1048 · Viewvc · Viewvc

Name of the Vulnerable Software and Affected Versions: ViewVC versions 1.0.x through 1.0.12 ViewVC versions 1.1.x through 1.1.15 Description: The issue allows remote authenticated users with repository commit access to inject arbitrary web script or HTML. This can be achieved via the function nam...

5CVSS5.7AI score0.00907EPSS
Exploits0References27
Tenable Nessus
Tenable Nessusadded 2009/08/25 12:0 a.m.14 views

SVN < 1.5.6 / 1.6.0-1.6.3 Multiple Integer Overflows (deprecated)

Binary data 5140.prm...

8.5CVSS7.3AI score0.06173EPSS
Exploits1References4
Tenable Nessus
Tenable Nessusadded 2009/08/20 12:0 a.m.20 views

GLSA-200908-05 : Subversion: Remote execution of arbitrary code

The remote host is affected by the vulnerability described in GLSA-200908-05 Subversion: Remote execution of arbitrary code Matt Lewis of Google reported multiple integer overflows in the libsvndelta library, possibly leading to heap-based buffer overflows. Impact : A remote attacker with commit...

8.5CVSS8.6AI score0.06173EPSS
Exploits1References2
Gentoo Linux
Gentoo Linuxadded 2009/08/18 12:0 a.m.28 views

Subversion: Remote execution of arbitrary code

Background Subversion is a versioning system designed to be a replacement for CVS. Description Matt Lewis of Google reported multiple integer overflows in the libsvndelta library, possibly leading to heap-based buffer overflows. Impact A remote attacker with commit access could exploit this...

8.5CVSS7.1AI score0.06173EPSS
Exploits1
seebug.org
seebug.orgadded 2009/08/11 12:0 a.m.31 views

Subversion libsvn_delta库整数溢出漏洞

BUGTRAQ ID: 35983 CVECAN ID: CVE-2009-2411 Subversion是一款开放源码的多用户版本控制系统,支持非ASCII 文本和二进制数据。 Subversion的libsvndelta库没有充分地验证svndiff流,处理带有超大窗口的流可能触发最终可导致堆溢出的整数溢出漏洞。拥有对代码库commit访问权限的攻击者可以利用这个漏洞在Subversion Server服务器上执行任意代码。 Subversion Subversion 1.5.7 Subversion Subversion 1.6.0 - 1.6.3 厂商补丁: Subversion...

8.5CVSS0.5AI score0.06173EPSS
Exploits1
FreeBSD
FreeBSDadded 2007/11/26 12:0 a.m.27 views

ikiwiki -- improper symlink verification vulnerability

The ikiwiki development team reports: Ikiwiki did not check if path to the srcdir to contained a symlink. If an attacker had commit access to the directories in the path, they could change it to a symlink, causing ikiwiki to read and publish files that were not intended to be published. But not...

1.2AI score
Exploits0References1
Debian CVE
Debian CVEadded 2005/02/13 5:0 a.m.20 views

CVE-2004-1471

Format string vulnerability in wrapper.c in CVS 1.12.x through 1.12.8, and 1.11.x through 1.11.16 allows remote attackers with CVSROOT commit access to cause a denial of service application crash and possibly execute arbitrary code via format string specifiers in a wrapper line...

7.1CVSS7.4AI score0.05947EPSS
Exploits0
Rows per page
Query Builder