Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
henri salo vulnerabilities and exploits
(subscribe to this query)
8.8
CVSSv3
CVE-2018-11683
Liblouis 3.5.0 has a stack-based Buffer Overflow in the function parseChars in compileTranslationTable.c, a different vulnerability than CVE-2018-11440.
Liblouis Liblouis 3.5.0
Canonical Ubuntu Linux 14.04
Canonical Ubuntu Linux 16.04
Canonical Ubuntu Linux 17.10
Canonical Ubuntu Linux 18.04
Opensuse Leap 15.0
6.5
CVSSv3
CVE-2018-17294
The matchCurrentInput function inside lou_translateString.c of Liblouis before 3.7 does not check the input string's length, allowing malicious users to cause a denial of service (application crash via out-of-bounds read) by crafting an input file with certain translation di...
Liblouis Liblouis
Canonical Ubuntu Linux 14.04
Canonical Ubuntu Linux 16.04
Canonical Ubuntu Linux 18.04
Opensuse Leap 15.0
8.8
CVSSv3
CVE-2018-11684
Liblouis 3.5.0 has a stack-based Buffer Overflow in the function includeFile in compileTranslationTable.c.
Liblouis Liblouis 3.5.0
Canonical Ubuntu Linux 16.04
Canonical Ubuntu Linux 17.10
Canonical Ubuntu Linux 18.04
Canonical Ubuntu Linux 14.04
Opensuse Leap 15.0
8.8
CVSSv3
CVE-2018-11685
Liblouis 3.5.0 has a stack-based Buffer Overflow in the function compileHyphenation in compileTranslationTable.c.
Liblouis Liblouis 3.5.0
Canonical Ubuntu Linux 14.04
Canonical Ubuntu Linux 16.04
Canonical Ubuntu Linux 17.10
Canonical Ubuntu Linux 18.04
Opensuse Leap 15.0
8.8
CVSSv3
CVE-2018-12085
Liblouis 3.6.0 has a stack-based Buffer Overflow in the function parseChars in compileTranslationTable.c, a different vulnerability than CVE-2018-11440.
Liblouis Liblouis 3.6.0
Canonical Ubuntu Linux 16.04
Canonical Ubuntu Linux 18.04
Canonical Ubuntu Linux 14.04
Opensuse Leap 15.0
NA
CVE-2013-2107
Cross-site request forgery (CSRF) vulnerability in the Mail On Update plugin prior to 5.2.0 for WordPress allows remote malicious users to hijack the authentication of administrators for requests that change the "List of alternative recipients" via the mailonupdate_mail...
Mail On Update Project Mail On Update
Mail On Update Project Mail On Update 5.0.0
1 EDB exploit
NA
CVE-2014-5368
Directory traversal vulnerability in the file_get_contents function in downloadfiles/download.php in the WP Content Source Control (wp-source-control) plugin 3.0.0 and previous versions for WordPress allows remote malicious users to read arbitrary files via a .. (dot dot) in the ...
Wp Content Source Control Project Wp Content Source Control
1 EDB exploit
NA
CVE-2013-7240
Directory traversal vulnerability in download-file.php in the Advanced Dewplayer plugin 1.2 for WordPress allows remote malicious users to read arbitrary files via a .. (dot dot) in the dew_file parameter.
Westerndeal Advanced Dewplayer 1.2
Wordpress Wordpress -
1 EDB exploit
1 Github repository
5.4
CVSSv3
CVE-2013-0161
Havalite CMS 1.1.7 has a stored XSS vulnerability
Havalite Havalite 1.1.7
1 EDB exploit
NA
CVE-2014-9129
Cross-site request forgery (CSRF) vulnerability in the CreativeMinds CM Downloads Manager plugin prior to 2.0.7 for WordPress allows remote malicious users to hijack the authentication of administrators for requests that conduct cross-site scripting (XSS) attacks via the addons_t...
Cminds Cm Download Manager
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-23316
SQL injection
type confusion
CVE-2024-20697
CVE-2024-4344
local
CVE-2024-30043
CVE-2024-3821
CVE-2024-5041
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »