Gnu Gnats vulnerabilities
3 known vulnerabilities affecting gnu/gnats.
Total CVEs
3
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL1MEDIUM1LOW1
Vulnerabilities
Page 1 of 1
CVE-2007-2808MEDIUMCVSS 4.3v4.1.992007-05-22
CVE-2007-2808 [MEDIUM] CVE-2007-2808: Cross-site scripting (XSS) vulnerability in gnatsweb.pl in Gnatsweb 4.00 and Gnats 4.1.99 allows rem
Cross-site scripting (XSS) vulnerability in gnatsweb.pl in Gnatsweb 4.00 and Gnats 4.1.99 allows remote attackers to inject arbitrary web script or HTML via the database parameter.
nvd
CVE-2005-2180LOWCVSS 2.1v4.0v4.1.02005-07-11
CVE-2005-2180 [LOW] CVE-2005-2180: gen-index in GNATS 4.0, 4.1.0, and possibly earlier versions, when installed setuid, does not proper
gen-index in GNATS 4.0, 4.1.0, and possibly earlier versions, when installed setuid, does not properly check files passed to the -o argument and opens the file with write access, which allows local users to overwrite arbitrary files.
nvd
CVE-2004-0623CRITICALCVSS 10.0v3.0_02v3.2+5 more2004-12-06
CVE-2004-0623 [CRITICAL] CVE-2004-0623: Format string vulnerability in misc.c in GNU GNATS 4.00 may allow remote attackers to execute arbitr
Format string vulnerability in misc.c in GNU GNATS 4.00 may allow remote attackers to execute arbitrary code via format string specifiers in a string that gets logged by syslog.
nvd