Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

static page extended project static page extended vulnerabilities and exploits

(subscribe to this query)
5.4
CVSSv3
CVE-2022-1763
Due to missing checks the Static Page eXtended WordPress plugin up to and including 2.1 is vulnerable to CSRF attacks which allows changing the plugin settings, including required user levels for specific features. This could also lead to Stored Cross-Site Scripting due to the la...
Static Page Extended Project Static Page Extended
NA
CVE-2005-3275
The NAT code (1) ip_nat_proto_tcp.c and (2) ip_nat_proto_udp.c in Linux kernel 2.6 prior to 2.6.13 and 2.4 prior to 2.4.32-rc1 incorrectly declares a variable to be static, which allows remote malicious users to cause a denial of service (memory corruption) by causing two packets...
Linux Linux Kernel 2.6.11Linux Linux Kernel 2.6.8.1.5Linux Linux Kernel 2.4.18Linux Linux Kernel 2.4.30Linux Linux Kernel 2.6.12Linux Linux Kernel 2.4.0Linux Linux Kernel 2.6.11.2Linux Linux Kernel 2.6.5Linux Linux Kernel 2.6.11.10Linux Linux Kernel 2.6.1Linux Linux Kernel 2.4.27Linux Linux Kernel 2.6.11.8Linux Linux Kernel 2.4.26Linux Linux Kernel 2.6.11 Rc1 Bk6Linux Linux Kernel 2.4.19Linux Linux Kernel 2.4.21Linux Linux Kernel 2.6.10Linux Linux Kernel 2.6.11.6Linux Linux Kernel 2.6.11.11Linux Linux Kernel 2.6.3Linux Linux Kernel 2.6.4Linux Linux Kernel 2.6.11.5
6.1
CVSSv3
CVE-2019-11358
jQuery prior to 3.4.0, as used in Drupal, Backdrop CMS, and other products, mishandles jQuery.extend(true, {}, ...) because of Object.prototype pollution. If an unsanitized source object contained an enumerable __proto__ property, it could extend the native Object.prototype.
Jquery JqueryDebian Debian Linux 8.0Debian Debian Linux 9.0Debian Debian Linux 10.0Drupal DrupalBackdropcms BackdropFedoraproject Fedora 28Fedoraproject Fedora 29Fedoraproject Fedora 30Opensuse Leap 15.1Opensuse Backports Sle 15.0Netapp Snapcenter -Netapp Oncommand System ManagerRedhat Cloudforms 4.7Redhat Virtualization Manager 4.3Oracle Service Bus 12.1.3.0.0Oracle Primavera Unifier 16.2Oracle Jd Edwards Enterpriseone Tools 9.2Oracle Weblogic Server 12.1.3.0.0Oracle Service Bus 11.1.1.9.0Oracle Jdeveloper 11.1.1.9.0Oracle Primavera Unifier 16.1
7
CVSSv3
CVE-2017-2624
It was found that xorg-x11-server prior to 1.19.0 including uses memcmp() to check the received MIT cookie against a series of valid cookies. If the cookie is correct, it is allowed to attach to the Xorg session. Since most memcmp() implementations return after an invalid byte is...
X.org Xorg-serverDebian Debian Linux 7.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
injectCVE-2024-34001CVE-2024-37018LFICVE-2024-1275CVE-2024-1086CSRFCVE-2024-31030CVE-2024-24919
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook