Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
civicrm civicrm 4.1.1 vulnerabilities and exploits
(subscribe to this query)
5.8
CVSSv2
CVE-2011-5239
CiviCRM 4.0.5 and 4.1.1 does not verify that the server hostname matches a domain name in the subject's Common Name (CN) or subjectAltName field of the X.509 certificate, which allows man-in-the-middle malicious users to spoof SSL servers via an arbitrary valid certificate.
Civicrm Civicrm 4.1.1
Civicrm Civicrm 4.0.5
4.3
CVSSv2
CVE-2013-1636
Cross-site scripting (XSS) vulnerability in open-flash-chart.swf in Open Flash Chart (aka Open-Flash Chart), as used in the Pretty Link Lite plugin prior to 1.6.3 for WordPress, JNews (com_jnews) component 8.0.1 for Joomla!, and CiviCRM 3.1.0 up to and including 4.2.9 and 4.3.0 u...
Blair Williams Pretty Link Lite 1.6.0
Blair Williams Pretty Link Lite 1.6.1
Blair Williams Pretty Link Lite
Joobi Com Jnews 8.0.1
Civicrm Civicrm 4.3.1
Civicrm Civicrm 3.1.1
Civicrm Civicrm 3.1.2
Civicrm Civicrm 3.2.2
Civicrm Civicrm 3.2.3
Civicrm Civicrm 3.3.6
Civicrm Civicrm 3.4.0
Civicrm Civicrm 4.1.5
Civicrm Civicrm 4.1.6
Civicrm Civicrm 4.2.7
Civicrm Civicrm 4.2.8
Civicrm Civicrm 4.3.3
Civicrm Civicrm 3.1.0
Civicrm Civicrm 3.2.0
Civicrm Civicrm 3.2.1
Civicrm Civicrm 3.3.3
Civicrm Civicrm 3.3.5
Civicrm Civicrm 4.1.3
1 EDB exploit
4.9
CVSSv2
CVE-2013-4661
CiviCRM 2.0.0 up to and including 4.2.9 and 4.3.0 up to and including 4.3.3 does not properly enforce role-based access control (RBAC) restrictions for default custom searches, which allows remote authenticated users with the "access CiviCRM" permission to bypass intend...
Civicrm Civicrm 2.0.0
Civicrm Civicrm 2.2.1
Civicrm Civicrm 2.2.2
Civicrm Civicrm 2.2.3
Civicrm Civicrm 2.2.5
Civicrm Civicrm 3.1.4
Civicrm Civicrm 3.1.5
Civicrm Civicrm 3.1.6
Civicrm Civicrm 3.2.0
Civicrm Civicrm 4.3.1
Civicrm Civicrm 4.3.2
Civicrm Civicrm 4.3.3
Civicrm Civicrm 4.0.5
Civicrm Civicrm 4.2.7
Civicrm Civicrm 4.2.8
Civicrm Civicrm 4.2.9
Civicrm Civicrm 2.0.1
Civicrm Civicrm 2.0.3
Civicrm Civicrm 2.1.2
Civicrm Civicrm 2.1.6
Civicrm Civicrm 2.2.7
Civicrm Civicrm 2.2.9
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2022-48700
CVE-2022-48689
CVE-2024-27956
CVE-2023-6363
SQL
NULL pointer dereference
CVE-2023-41830
CVE-2015-2051
arbitrary
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started