Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
kde konqueror vulnerabilities and exploits
(subscribe to this query)
7.8
CVSSv2
CVE-2007-1565
Konqueror 3.5.5 allows remote malicious users to cause a denial of service (crash) by using JavaScript to read a child iframe having an ftp:// URI.
Kde Konqueror 3.5.5
7.5
CVSSv2
CVE-2006-0019
Heap-based buffer overflow in the encodeURI and decodeURI functions in the kjs JavaScript interpreter engine in KDE 3.2.0 up to and including 3.5.0 allows remote malicious users to execute arbitrary code via a crafted, UTF-8 encoded URI.
Kde Kde 3.2.0 Beta1
Kde Kde 3.2.1
Kde Kde 3.3.2
Kde Kde 3.3.x
Kde Kde 3.2.x
Kde Kde 3.3
Kde Kde 3.4.1
Kde Kde 3.4.2
Kde Kde 3.2
Kde Kde 3.2.0
Kde Kde 3.3.0
Kde Kde 3.3.1
Kde Kde 3.5.0
Kde Kde 3.2.2
Kde Kde 3.2.3
Kde Kde 3.4
Kde Kde 3.4.0
7.5
CVSSv2
CVE-2004-1158
Konqueror 3.x up to 3.2.2-6, and possibly other versions, allows remote malicious users to spoof arbitrary web sites by injecting content from one window into a target window or tab whose name is known but resides in a different domain, as demonstrated using a pop-up window on a ...
Kde Konqueror 2.2.1
Kde Konqueror 2.2.2
Kde Konqueror 3.0
Kde Konqueror 3.1.1
Kde Konqueror 3.1.2
Kde Konqueror 3.3
Kde Konqueror 3.3.1
Kde Konqueror 2.1.1
Kde Konqueror 2.1.2
Kde Konqueror 3.0.5b
Kde Konqueror 3.1
Kde Konqueror 3.2.2.6
Kde Konqueror 3.2.3
Kde Konqueror 3.0.3
Kde Konqueror 3.0.5
Kde Konqueror 3.1.5
Kde Konqueror 3.2.1
Kde Konqueror 3.0.1
Kde Konqueror 3.0.2
Kde Konqueror 3.1.3
Kde Konqueror 3.1.4
Kde Konqueror 3.3.2
7.5
CVSSv2
CVE-2004-1165
Konqueror 3.3.1 allows remote malicious users to execute arbitrary FTP commands via an ftp:// URL that contains a URL-encoded newline ("%0a") before the FTP command, which causes the commands to be inserted into the resulting FTP session, as demonstrated using a PORT co...
Kde Kdelibs 3.1.4
Kde Kdelibs 3.1.5
Kde Kdelibs 3.2
Kde Kdelibs 3.2.1
Kde Kdelibs 3.1
Kde Kdelibs 3.2.2
Kde Konqueror 3.3.1
Kde Kdelibs 3.1.1
Kde Kdelibs 3.1.2
Kde Kdelibs 3.1.3
1 EDB exploit
7.5
CVSSv2
CVE-2004-0867
Mozilla Firefox 0.9.2 allows web sites to set cookies for country-specific top-level domains, such as .ltd.uk, .plc.uk, and .sch.uk, which could allow remote malicious users to perform a session fixation attack and hijack a user's HTTP session. NOTE: it was later reported th...
Kde Konqueror 2.2.1
Kde Konqueror 2.2.2
Kde Konqueror 3.1
Kde Konqueror 3.1.1
Kde Konqueror 3.1.2
Microsoft Ie 6.0
Kde Konqueror 2.1.1
Kde Konqueror 2.1.2
Kde Konqueror 3.0.5
Kde Konqueror 3.0.5b
Kde Konqueror 3.2.3
Microsoft Internet Explorer 6.0
Kde Konqueror 3.0
Kde Konqueror 3.0.1
Kde Konqueror 3.1.3
Kde Konqueror 3.1.4
Mozilla Firefox 0.9.2
Kde Konqueror 3.0.2
Kde Konqueror 3.0.3
Kde Konqueror 3.1.5
Kde Konqueror 3.2.1
Suse Suse Linux 9.0
7.5
CVSSv2
CVE-2004-0746
Konqueror in KDE 3.2.3 and previous versions allows web sites to set cookies for country-specific top-level domains, such as .ltd.uk, .plc.uk and .firm.in, which could allow remote malicious users to perform a session fixation attack and hijack a user's HTTP session.
Kde Konqueror 3.0.3
Kde Konqueror 3.0.5
Kde Konqueror 3.0.5b
Kde Konqueror 3.2.3
Kde Konqueror 3.1
Kde Konqueror 3.1.1
Kde Konqueror 3.0
Kde Konqueror 3.1.2
Kde Konqueror 3.1.3
Kde Konqueror 3.0.1
Kde Konqueror 3.0.2
Kde Konqueror 3.1.5
Kde Konqueror 3.2.1
Mandrakesoft Mandrake Linux 9.2
Suse Suse Linux 8.1
Gentoo Linux 1.4
Kde Kde 3.1.3
Suse Suse Linux 8.2
Suse Suse Linux 8
Kde Kde 3.2
Mandrakesoft Mandrake Linux 10.0
Suse Suse Linux 9.0
7.5
CVSSv2
CVE-2004-0866
Internet Explorer 6.0 allows web sites to set cookies for country-specific top-level domains, such as .ltd.uk, .plc.uk, and .sch.uk, which could allow remote malicious users to perform a session fixation attack and hijack a user's HTTP session.
Kde Konqueror 3.0.2
Kde Konqueror 3.0.3
Kde Konqueror 3.1.4
Kde Konqueror 3.1.5
Kde Konqueror 3.0
Kde Konqueror 3.0.1
Kde Konqueror 3.1.2
Kde Konqueror 3.1.3
Mozilla Firefox 0.9.2
Kde Konqueror 2.1.1
Kde Konqueror 2.1.2
Kde Konqueror 3.0.5
Kde Konqueror 3.0.5b
Kde Konqueror 3.2.1
Kde Konqueror 3.2.3
Microsoft Internet Explorer 6.0
Kde Konqueror 2.2.1
Kde Konqueror 2.2.2
Kde Konqueror 3.1
Kde Konqueror 3.1.1
Microsoft Ie 6.0
Suse Suse Linux 1.0
7.5
CVSSv2
CVE-2004-0721
Konqueror 3.1.3, 3.2.2, and possibly other versions does not properly prevent a frame in one domain from injecting content into a frame that belongs to another domain, which facilitates web site spoofing and other attacks, aka the frame injection vulnerability.
Kde Konqueror 3.1.3
Kde Konqueror 3.2.2
7.5
CVSSv2
CVE-2004-0411
The URI handlers in Konqueror for KDE 3.2.2 and previous versions do not properly filter "-" characters that begin a hostname in a (1) telnet, (2) rlogin, (3) ssh, or (4) mailto URI, which allows remote malicious users to manipulate the options that are passed to the as...
Kde Konqueror
7.5
CVSSv2
CVE-2003-0592
Konqueror in KDE 3.1.3 and previous versions (kdelibs) allows remote malicious users to bypass intended cookie access restrictions on a web application via "%2e%2e" (encoded dot dot) directory traversal sequences in a URL, which causes Konqueror to send the cookie outsi...
Kde Konqueror 2.1.1
Kde Konqueror 3.1
Kde Konqueror 3.1.1
Kde Konqueror 2.2.2
Kde Konqueror 3.0
Kde Konqueror 3.1.2
Kde Konqueror Embedded 0.1
Kde Konqueror 3.0.3
Kde Konqueror 3.0.5
Kde Konqueror 3.0.1
Kde Konqueror 3.0.2
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-5248
CVE-2024-3110
CVE-2024-5552
CVE-2024-29415
HTML injection
CVE-2024-3095
TCP
type confusion
CVE-2024-1800
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »