Search for packages
| purl | pkg:deb/debian/wget@1.21-1%2Bdeb11u1?distro=trixie |
| Next non-vulnerable version | 1.21-1+deb11u2 |
| Latest non-vulnerable version | 1.25.0-2 |
| Risk | 3.0 |
| Vulnerability | Summary | Fixed by |
|---|---|---|
|
VCID-q53y-6aup-17gk
Aliases: CVE-2024-10524 |
wget: GNU Wget is vulnerable to an SSRF attack when accessing partially-user-controlled shorthand URLs |
Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. |
| Vulnerability | Summary | Aliases |
|---|---|---|
| VCID-4drq-2td7-akbk | cURL is vulnerable to a buffer overflow which could lead to the execution of arbitrary code. |
CVE-2005-3185
|
| VCID-5u23-3wxr-27du | Wget attempts to dereference NULL pointer upon response from malicious FTP server |
CVE-2006-6719
|
| VCID-8v5w-xx4w-fyc3 | Multiple vulnerabilities have been found in Wget, the worst of which could lead to the remote execution of arbitrary code. |
CVE-2016-4971
|
| VCID-b4sh-m4q3-8fd3 | A vulnerability in GNU Wget might allow an attacker to execute arbitrary code. |
CVE-2019-5953
|
| VCID-cjxy-4u1b-kyht | A header injection vulnerability in GNU Wget might allow remote attackers to inject arbitrary HTTP headers. |
CVE-2017-6508
|
| VCID-fbj7-rc7e-mkgh | Insecure usage of server provided filenames may allow the creation or overwriting of local files. |
CVE-2010-2252
|
| VCID-fuw5-1kwb-tyck | security flaw |
CVE-2002-1344
|
| VCID-h2ee-geak-xqfv | An error in the X.509 certificate handling of Wget might enable remote attackers to conduct man-in-the-middle attacks. |
CVE-2009-3490
|
| VCID-p2rg-34nt-dbc1 | security flaw |
CVE-2004-1488
|
| VCID-pbm5-fnnd-d3bw | security flaw |
CVE-2004-1487
|
| VCID-pvwa-watz-dfh9 | security flaw |
CVE-2004-2014
|
| VCID-qtqz-p2a8-ykcv | A vulnerablity in GNU Wget could allow arbitrary cookies to be injected. |
CVE-2018-0494
|
| VCID-qwxx-kuek-j3fu | Multiple vulnerabilities have been found in Wget, the worst of which could allow remote attackers to execute arbitrary code. |
CVE-2017-13090
|
| VCID-smv5-udwt-5qcq | wget: files rejected by access list are kept on the disk for the duration of HTTP connection |
CVE-2016-7098
|
| VCID-txw8-ve2p-vubh | security flaw |
CVE-2002-1565
|
| VCID-um8z-unc6-bqhf | Multiple vulnerabilities have been found in Wget, the worst of which could allow remote attackers to execute arbitrary code. |
CVE-2017-13089
|
| VCID-v7yu-hy66-gyh4 | A vulnerability in GNU Wget which could allow an attacker to obtain sensitive information. |
CVE-2018-20483
|
| VCID-yyf4-yz4z-rugu | wget: Misinterpretation of input may lead to improper behavior |
CVE-2024-38428
|
| VCID-zsab-gux6-eyh6 | security update |
CVE-2014-4877
|