Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
tim brown vulnerabilities and exploits
(subscribe to this query)
4.4
CVSSv3
CVE-2019-5068
An exploitable shared memory permissions vulnerability exists in the functionality of X11 Mesa 3D Graphics Library 19.1.2. An attacker can access the shared memory without any specific permissions to trigger this vulnerability.
Mesa3d Mesa 19.1.2
Opensuse Leap 15.1
Debian Debian Linux 8.0
Canonical Ubuntu Linux 18.04
Canonical Ubuntu Linux 19.10
NA
CVE-2011-2725
Directory traversal vulnerability in Ark 4.7.x and previous versions allows remote malicious users to delete and force the display of arbitrary files via .. (dot dot) sequences in a zip file.
Kde Kde Sc 4.7.1
Kde Kde Sc 4.7.2
Kde Kde Sc 4.7.3
Kde Kde Sc
Kde Ark
Kde Kde Sc 4.7.0
Opensuse Opensuse 11.4
Canonical Ubuntu Linux 10.04
Canonical Ubuntu Linux 11.04
Canonical Ubuntu Linux 10.10
Canonical Ubuntu Linux 11.10
NA
CVE-2011-3365
The KDE SSL Wrapper (KSSL) API in KDE SC 4.6.0 up to and including 4.7.1, and possibly earlier versions, does not use a certain font when rendering certificate fields in a security dialog, which allows remote malicious users to spoof the common name (CN) of a certificate via rich...
Kde Kde Sc 4.6.4
Kde Kde Sc 4.7.0
Kde Kde Sc 4.6.1
Kde Kde Sc 4.7.1
Kde Kde Sc 4.6.2
Kde Kde Sc 4.6.3
Kde Kde Sc 4.6.0
Kde Kde Sc 4.6.5
NA
CVE-2007-3388
Multiple format string vulnerabilities in (1) qtextedit.cpp, (2) qdatatable.cpp, (3) qsqldatabase.cpp, (4) qsqlindex.cpp, (5) qsqlrecord.cpp, (6) qglobal.cpp, and (7) qsvgdevice.cpp in QTextEdit in Trolltech Qt 3 prior to 3.3.8 20070727 allow remote malicious users to execute arb...
Trolltech Qt
NA
CVE-2007-4137
Off-by-one error in the QUtf8Decoder::toUnicode function in Trolltech Qt 3 allows context-dependent malicious users to cause a denial of service (crash) via a crafted Unicode string that triggers a heap-based buffer overflow. NOTE: Qt 4 has the same error in the QUtf8Codec::conve...
Trolltech Qt 3.0
Trolltech Qt 3.0.3
Trolltech Qt 3.0.5
Trolltech Qt 3.1
Trolltech Qt 3.1.1
Trolltech Qt 3.1.2
Trolltech Qt 3.2.1
Trolltech Qt 3.2.3
Trolltech Qt 3.3.0
Trolltech Qt 3.3.1
Trolltech Qt 3.3.2
Trolltech Qt 3.3.3
Trolltech Qt 3.3.4
Trolltech Qt 3.3.5
Trolltech Qt 3.3.6
Trolltech Qt 3.3.7
Trolltech Qt 3.3.8
Trolltech Qt 4.1
Trolltech Qt 4.1.4
Trolltech Qt 4.1.5
Trolltech Qt 4.2
Trolltech Qt 4.2.1
NA
CVE-2014-8600
Multiple cross-site scripting (XSS) vulnerabilities in KDE-Runtime 4.14.3 and previous versions, kwebkitpart 1.3.4 and previous versions, and kio-extras 5.1.1 and previous versions allow remote malicious users to inject arbitrary web script or HTML via a crafted URI using the (1)...
Urs Wolfer Kwebkitpart
Kde Kde-runtime
Kde Kio-extras
Opensuse Opensuse 13.1
NA
CVE-2007-6001
Multiple cross-site scripting (XSS) vulnerabilities in index.php in Bandersnatch 0.4 allow remote malicious users to inject arbitrary web script or HTML via the (1) func or (2) date parameter, or the jid parameter in a (3) log or (4) user action, a different vulnerability than CV...
Bandersnatch Bandersnatch 0.4
1 EDB exploit
NA
CVE-2007-3189
Cross-site scripting (XSS) vulnerability in auth.php in Just For Fun Network Management System (JFFNMS) 0.8.3 allows remote malicious users to inject arbitrary web script or HTML via the user parameter.
Jffnms Just For Fun Network Management System 0.8.3
1 EDB exploit
NA
CVE-2007-3190
Multiple SQL injection vulnerabilities in auth.php in Just For Fun Network Management System (JFFNMS) 0.8.3, when magic_quotes_gpc is disabled, allow remote malicious users to execute arbitrary SQL commands via the (1) user and (2) pass parameters.
Jffnms Just For Fun Network Management System 0.8.3
1 EDB exploit
NA
CVE-2007-3191
Just For Fun Network Management System (JFFNMS) 0.8.3 allows remote malicious users to obtain configuration information via a direct request to admin/adm/test.php, which calls the phpinfo function.
Jffnms Just For Fun Network Management System 0.8.3
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2022-48654
CVE-2024-2757
authentication bypass
CVE-2024-3194
CVE-2024-33640
CVE-2024-21111
dos
insecure direct object reference
CVE-2024-21345
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
NEXT »