Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
GnuWget*

3 matches found

CVE
CVEadded 2016/06/30 5:0 p.m.258 views

CVE-2016-4971

CVE-2016-4971 affects GNU Wget prior to 1.18. The issue occurs when following an HTTP redirect to an FTP resource: the filename provided by the server is trusted, which can cause wget to overwrite a local file with a name from the redirected resource. This could potentially allow arbitrary file o...

8.8CVSS8.3AI score0.45935EPSS
Web
CVE
CVEadded 2018/05/06 10:0 p.m.245 views

CVE-2018-0494

CVE-2018-0494 affects GNU Wget prior to 1.19.5. The vulnerability is due to cookie handling in the resp_new function in http.c that can be abused via a CRLF sequence in a continuation line, enabling cookie injection. Exploitation details are not provided in the sources; some advisories state the ...

6.5CVSS6.5AI score0.17249EPSS
CVE
CVEadded 2018/12/26 6:0 p.m.231 views

CVE-2018-20483

CVE-2018-20483 affects GNU Wget prior to 1.20.1, where set_file_metadata in xattr.c stores the file’s origin URL (and Referer info) in user.xdg.origin.url / user.xdg.referrer.url extended attributes. Local users could read these attributes and obtain sensitive information (e.g., credentials in th...

7.8CVSS7.8AI score0.00659EPSS