Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
set user project set user vulnerabilities and exploits
(subscribe to this query)
1000
VMScore
CVE-2011-2921
ktsuss versions 1.4 and prior has the uid set to root and does not drop privileges prior to executing user specified commands, which can result in command execution with root privileges.
Ktsuss Project Ktsuss
1 EDB exploit
1000
VMScore
CVE-2008-0960
SNMPv3 HMAC verification in (1) Net-SNMP 5.2.x prior to 5.2.4.1, 5.3.x prior to 5.3.2.1, and 5.4.x prior to 5.4.1.1; (2) UCD-SNMP; (3) eCos; (4) Juniper Session and Resource Control (SRC) C-series 1.0.0 up to and including 2.0.0; (5) NetApp (aka Network Appliance) Data ONTAP 7.3R...
Juniper Session And Resource Control 2.0
Juniper Src Pe 1.0
Juniper Session And Resource Control 1.0
Juniper Src Pe 2.0
1 EDB exploit
935
VMScore
CVE-2009-1376
Multiple integer overflows in the msn_slplink_process_msg functions in the MSN protocol handler in (1) libpurple/protocols/msn/slplink.c and (2) libpurple/protocols/msnp9/slplink.c in Pidgin (formerly Gaim) prior to 2.5.6 on 32-bit platforms allow remote malicious users to execut...
Pidgin Pidgin 2.5.2
Pidgin Pidgin 2.5.3
Pidgin Pidgin 2.5.0
Pidgin Pidgin 2.4.2
Pidgin Pidgin
Pidgin Pidgin 2.4.0
Pidgin Pidgin 2.4.3
Pidgin Pidgin 2.5.4
Pidgin Pidgin 2.4.1
1 EDB exploit
935
VMScore
CVE-2008-2712
Vim 7.1.314, 6.4, and other versions allows user-assisted remote malicious users to execute arbitrary commands via Vim scripts that do not properly sanitize inputs before invoking the execute or system functions, as demonstrated using (1) filetype.vim, (3) xpm.vim, (4) gzip_vim, ...
Vim Vim
Canonical Ubuntu Linux 8.10
Canonical Ubuntu Linux 8.04
Canonical Ubuntu Linux 7.10
Canonical Ubuntu Linux 6.06
1 EDB exploit
891
VMScore
CVE-2010-2521
Multiple buffer overflows in fs/nfsd/nfs4xdr.c in the XDR implementation in the NFS server in the Linux kernel prior to 2.6.34-rc6 allow remote malicious users to cause a denial of service (panic) or possibly execute arbitrary code via a crafted NFSv4 compound WRITE request, rela...
Linux Linux Kernel 2.6.11
Linux Linux Kernel 2.6.23.4
Linux Linux Kernel 2.6.16.16
Linux Linux Kernel 2.6.18.7
Linux Linux Kernel 2.6.17.12
Linux Linux Kernel 2.6.16.9
Linux Linux Kernel 2.6.17.9
Linux Linux Kernel 2.6.11.2
Linux Linux Kernel 2.6.5
Linux Linux Kernel 2.6.15.3
Linux Linux Kernel 2.6.11.10
Linux Linux Kernel 2.6.1
Linux Linux Kernel 2.6.16.6
Linux Linux Kernel 2.6.16.8
Linux Linux Kernel 2.6.33
Linux Linux Kernel 2.6.22.4
Linux Linux Kernel 2.6.14.7
Linux Linux Kernel 2.6.13
Linux Linux Kernel 2.6.17.2
Linux Linux Kernel 2.6.13.3
Linux Linux Kernel 2.6.11.8
Linux Linux Kernel 2.6.23.7
890
VMScore
CVE-2022-24720
image_processing is an image processing wrapper for libvips and ImageMagick/GraphicsMagick. Prior to version 1.12.2, using the `#apply` method from image_processing to apply a series of operations that are coming from unsanitized user input allows the malicious user to execute sh...
Image Processing Project Image Processing
Debian Debian Linux 11.0
890
VMScore
CVE-2016-3955
The usbip_recv_xbuff function in drivers/usb/usbip/usbip_common.c in the Linux kernel prior to 4.5.3 allows remote malicious users to cause a denial of service (out-of-bounds write) or possibly have unspecified other impact via a crafted length value in a USB/IP packet.
Canonical Ubuntu Linux 12.04
Canonical Ubuntu Linux 15.10
Canonical Ubuntu Linux 14.04
Linux Linux Kernel
Debian Debian Linux 8.0
1 Github repository
890
VMScore
CVE-2009-0773
The JavaScript engine in Mozilla Firefox prior to 3.0.7, Thunderbird prior to 2.0.0.21, and SeaMonkey 1.1.15 allows remote malicious users to cause a denial of service (crash) and possibly execute arbitrary code via (1) a splice of an array that contains "some non-set elemen...
Mozilla Firefox 3.0
Mozilla Firefox 3.0.1
Mozilla Firefox 2.0.0.13
Mozilla Firefox 2.0.0.12
Mozilla Firefox 2.0.0.4
Mozilla Firefox 2.0.0.3
Mozilla Thunderbird 2.0.0.12
Mozilla Thunderbird 2.0.0.9
Mozilla Firefox 3.0.2
Mozilla Firefox 3.0.3
Mozilla Firefox 2.0.0.11
Mozilla Firefox 2.0.0.10
Mozilla Firefox 2.0.0.9
Mozilla Firefox 2.0.0.2
Mozilla Firefox 2.0.0.1
Mozilla Thunderbird 2.0.0.6
Mozilla Thunderbird 2.0.0.5
Mozilla Firefox 2.0.0.17
Mozilla Firefox 2.0.0.16
Mozilla Firefox 2.0.0.8
Mozilla Firefox 2.0.0.7
Mozilla Firefox 2.0
890
VMScore
CVE-2008-5316
Buffer overflow in the ReadEmbeddedTextTag function in src/cmsio1.c in Little cms color engine (aka lcms) prior to 1.16 allows malicious users to have an unknown impact via vectors related to a length parameter inconsistency involving the contents of "the input file," a...
Littlecms Lcms 1.08
Littlecms Lcms 1.07
Littlecms Lcms 1.10
Littlecms Lcms 1.09
Littlecms Little Cms Color Engine 1.09
Littlecms Little Cms Color Engine 1.08
Littlecms Lcms 1.14
Littlecms Lcms 1.13
Littlecms Little Cms Color Engine 1.14
Littlecms Little Cms Color Engine 1.13
Littlecms Little Cms Color Engine 1.12
Littlecms Lcms
Littlecms Lcms 1.12
Littlecms Lcms 1.11
Littlecms Little Cms Color Engine 1.11
Littlecms Little Cms Color Engine 1.10
Littlecms Little Cms Color Engine 1.07
Littlecms Little Cms Color Engine
890
VMScore
CVE-2008-5317
Integer signedness error in the cmsAllocGamma function in src/cmsgamma.c in Little cms color engine (aka lcms) prior to 1.17 allows malicious users to have an unknown impact via a file containing a certain "number of entries" value, which is interpreted improperly, lead...
Littlecms Lcms 1.08
Littlecms Lcms 1.07
Littlecms Little Cms Color Engine 1.14
Littlecms Little Cms Color Engine 1.07
Littlecms Little Cms Color Engine 1.15
Littlecms Lcms 1.12
Littlecms Lcms 1.11
Littlecms Little Cms Color Engine 1.11
Littlecms Little Cms Color Engine 1.10
Littlecms Lcms
Littlecms Lcms 1.14
Littlecms Lcms 1.13
Littlecms Little Cms Color Engine 1.13
Littlecms Little Cms Color Engine 1.12
Littlecms Lcms 1.15
Littlecms Little Cms Color Engine
Littlecms Lcms 1.10
Littlecms Lcms 1.09
Littlecms Little Cms Color Engine 1.09
Littlecms Little Cms Color Engine 1.08
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3380
CVE-2024-1694
local file inclusion
CVE-2024-5645
CVE-2024-24919
XSS
CVE-2024-36774
CVE-2024-21306
SQL
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
6
NEXT »