Vulnerabilities > GNU > Gnats
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2007-05-22 | CVE-2007-2808 | Cross-Site Scripting vulnerability in GNU GNATS Gnatsweb.PL Cross-site scripting (XSS) vulnerability in gnatsweb.pl in Gnatsweb 4.00 and Gnats 4.1.99 allows remote attackers to inject arbitrary web script or HTML via the database parameter. | 4.3 |
2005-07-11 | CVE-2005-2180 | Local Security vulnerability in Gnats 4.0/4.1.0 gen-index in GNATS 4.0, 4.1.0, and possibly earlier versions, when installed setuid, does not properly check files passed to the -o argument and opens the file with write access, which allows local users to overwrite arbitrary files. | 2.1 |
2004-12-06 | CVE-2004-0623 | Unspecified vulnerability in GNU Gnats Format string vulnerability in misc.c in GNU GNATS 4.00 may allow remote attackers to execute arbitrary code via format string specifiers in a string that gets logged by syslog. | 10.0 |