Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
microsoft expression web vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2020-27619
In Python 3 up to and including 3.9.0, the Lib/test/multibytecodec_support.py CJK codec tests call eval() on content retrieved via HTTP.
Python Python
Fedoraproject Fedora 33
Fedoraproject Fedora 34
Oracle Communications Cloud Native Core Network Function Cloud Native Environment 22.2.0
NA
CVE_2022_21882
OSEP-Notes Initial Access HTA Fileless Initial Access Reverse Shell (AppLocker + CLM + Defender Bypass) Scenario: You can make a user execute your malicious HTA files, but AppLocker, CLM, and Defender block all payloads. To get a fileless reverse shell, one method that worked for...
1 Github repository
NA
CVE-2015-2482
The Microsoft (1) VBScript 5.7 and 5.8 and (2) JScript 5.7 and 5.8 engines, as used in Internet Explorer 8 through 11 and other products, allow remote malicious users to execute arbitrary code or cause a denial of service (memory corruption) via a crafted replace operation with a...
Microsoft Jscript 5.6
Microsoft Jscript 5.7
Microsoft Jscript 5.8
Microsoft Vbscript 5.6
Microsoft Vbscript 5.7
Microsoft Vbscript 5.8
1 EDB exploit
NA
CVE-2013-0007
Microsoft XML Core Services (aka MSXML) 4.0, 5.0, and 6.0 does not properly parse XML content, which allows remote malicious users to execute arbitrary code via a crafted web page, aka "MSXML XSLT Vulnerability."
Microsoft Xml Core Services 3.0
Microsoft Xml Core Services 4.0
Microsoft Xml Core Services 6.0
Microsoft Windows 7 -
Microsoft Windows 8 -
Microsoft Windows Server 2003
Microsoft Windows Server 2008 -
Microsoft Windows Server 2008 R2
Microsoft Windows Server 2012 -
Microsoft Windows Vista
Microsoft Windows Xp -
Microsoft Windows Rt -
Microsoft Windows Server 2008
Microsoft Windows Xp
Microsoft Xml Core Services 5.0
Microsoft Expression Web
Microsoft Expression Web 2
Microsoft Groove Server 2007
Microsoft Office 2003
Microsoft Office 2007
Microsoft Office Compatibility Pack
Microsoft Sharepoint Server 2007
NA
CVE-2013-0006
Microsoft XML Core Services (aka MSXML) 3.0, 5.0, and 6.0 does not properly parse XML content, which allows remote malicious users to execute arbitrary code via a crafted web page, aka "MSXML Integer Truncation Vulnerability."
Microsoft Xml Core Services 3.0
Microsoft Xml Core Services 4.0
Microsoft Xml Core Services 6.0
Microsoft Windows 7 -
Microsoft Windows 8 -
Microsoft Windows Server 2003
Microsoft Windows Server 2008 -
Microsoft Windows Server 2008 R2
Microsoft Windows Server 2012 -
Microsoft Windows Vista
Microsoft Windows Xp -
Microsoft Windows Rt -
Microsoft Windows Server 2008
Microsoft Windows Xp
Microsoft Xml Core Services 5.0
Microsoft Expression Web
Microsoft Expression Web 2
Microsoft Groove Server 2007
Microsoft Office 2003
Microsoft Office 2007
Microsoft Office Compatibility Pack
Microsoft Sharepoint Server 2007
NA
CVE-2011-1989
Microsoft Excel 2003 SP3 and 2007 SP2; Excel in Office 2007 SP2; Excel 2010 Gold and SP1; Excel in Office 2010 Gold and SP1; Office 2004, 2008, and 2011 for Mac; Open XML File Format Converter for Mac; Excel Viewer SP2; Office Compatibility Pack for Word, Excel, and PowerPoint 20...
Microsoft Office 2010
Microsoft Open Xml File Format Converter
Microsoft Office 2008
Microsoft Sharepoint Server 2007
Microsoft Office 2004
Microsoft Excel 2007
Microsoft Excel 2010
Microsoft Excel Viewer
Microsoft Office Compatibility Pack 2007
Microsoft Office 2007
Microsoft Sharepoint Server 2010
Microsoft Excel 2003
Microsoft Office 2011
Microsoft Excel Web App 2010
NA
CVE-2009-3126
Integer overflow in GDI+ in Microsoft Internet Explorer 6 SP1, Windows XP SP2 and SP3, Office XP SP3, Office 2003 SP3, 2007 Microsoft Office System SP1 and SP2, Office Project 2002 SP1, Visio 2002 SP2, Office Word Viewer, Word Viewer 2003 Gold and SP3, Office Excel Viewer 2003 Go...
Microsoft Windows 2003 Server
Microsoft Windows Xp
Microsoft Windows Vista
Microsoft Windows Server 2008
Microsoft .net Framework 1.1
Microsoft .net Framework 2.0
Microsoft Internet Explorer 6
Microsoft Report Viewer 2008
Microsoft Sql Server Reporting Services 2000
Microsoft Sql Server 2005
Microsoft Report Viewer 2005
Microsoft Expression Web
Microsoft Project 2002
Microsoft Office Powerpoint Viewer 2007
Microsoft Office Excel Viewer
Microsoft Office Word Viewer
Microsoft Office Compatibility Pack 2007
Microsoft Office 2007
Microsoft Excel Viewer 2003
Microsoft Expression Web 2
Microsoft Visio 2002
Microsoft Office Powerpoint Viewer
NA
CVE-2009-2501
Heap-based buffer overflow in GDI+ in Microsoft Internet Explorer 6 SP1, Windows XP SP2 and SP3, Office XP SP3, Office 2003 SP3, 2007 Microsoft Office System SP1 and SP2, Office Project 2002 SP1, Visio 2002 SP2, Office Word Viewer, Word Viewer 2003 Gold and SP3, Office Excel View...
Microsoft Windows 2003 Server
Microsoft Windows Xp
Microsoft Windows Vista
Microsoft Windows Server 2008
Microsoft .net Framework 1.1
Microsoft .net Framework 2.0
Microsoft Internet Explorer 6
Microsoft Report Viewer 2008
Microsoft Sql Server Reporting Services 2000
Microsoft Sql Server 2005
Microsoft Report Viewer 2005
Microsoft Expression Web
Microsoft Project 2002
Microsoft Office Powerpoint Viewer 2007
Microsoft Office Excel Viewer
Microsoft Office Word Viewer
Microsoft Office Compatibility Pack 2007
Microsoft Office 2007
Microsoft Excel Viewer 2003
Microsoft Expression Web 2
Microsoft Visio 2002
Microsoft Office Powerpoint Viewer
NA
CVE-2009-2500
Integer overflow in GDI+ in Microsoft Internet Explorer 6 SP1, Windows XP SP2 and SP3, Office XP SP3, Office 2003 SP3, 2007 Microsoft Office System SP1 and SP2, Office Project 2002 SP1, Visio 2002 SP2, Office Word Viewer, Word Viewer 2003 Gold and SP3, Office Excel Viewer 2003 Go...
Microsoft Windows 2003 Server
Microsoft Windows Xp
Microsoft Windows Vista
Microsoft Windows Server 2008
Microsoft .net Framework 1.1
Microsoft .net Framework 2.0
Microsoft Internet Explorer 6
Microsoft Report Viewer 2008
Microsoft Sql Server Reporting Services 2000
Microsoft Sql Server 2005
Microsoft Report Viewer 2005
Microsoft Expression Web
Microsoft Project 2002
Microsoft Office Powerpoint Viewer 2007
Microsoft Office Excel Viewer
Microsoft Office Word Viewer
Microsoft Office Compatibility Pack 2007
Microsoft Office 2007
Microsoft Excel Viewer 2003
Microsoft Expression Web 2
Microsoft Visio 2002
Microsoft Office Powerpoint Viewer
NA
CVE-2009-2502
Buffer overflow in GDI+ in Microsoft Internet Explorer 6 SP1, Windows XP SP2 and SP3, Office XP SP3, Office 2003 SP3, 2007 Microsoft Office System SP1 and SP2, Office Project 2002 SP1, Visio 2002 SP2, Office Word Viewer, Word Viewer 2003 Gold and SP3, Office Excel Viewer 2003 Gol...
Microsoft Windows 2003 Server
Microsoft Windows Xp
Microsoft Windows Vista
Microsoft Windows Server 2008
Microsoft .net Framework 1.1
Microsoft .net Framework 2.0
Microsoft Internet Explorer 6
Microsoft Report Viewer 2008
Microsoft Sql Server Reporting Services 2000
Microsoft Sql Server 2005
Microsoft Report Viewer 2005
Microsoft Expression Web
Microsoft Project 2002
Microsoft Office Powerpoint Viewer 2007
Microsoft Office Excel Viewer
Microsoft Office Word Viewer
Microsoft Office Compatibility Pack 2007
Microsoft Office 2007
Microsoft Excel Viewer 2003
Microsoft Expression Web 2
Microsoft Visio 2002
Microsoft Office Powerpoint Viewer
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-30078
CVE-2024-37896
code injection
CVE-2024-3080
CVE-2024-5172
cross-site request forgery
CVE-2024-6111
firmware
CVE-2024-38504
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »