Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
metasploit.com vulnerabilities and exploits
(subscribe to this query)
10
CVSSv2
CVE-2012-0500
Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 2 and previous versions, 6 Update 30 and previous versions, and JavaFX 2.0.2 and previous versions allows remote untrusted Java Web Start applications and untrusted Java applets t...
Sun Jre 1.6.0
Oracle Jre 1.6.0
Oracle Jre
Oracle Jre 1.7.0
Oracle Javafx 1.2.3
Oracle Javafx
Oracle Javafx 2.0
Oracle Javafx 1.3.1
Oracle Javafx 1.3.0
Oracle Javafx 1.2
Oracle Javafx 1.2.2
1 EDB exploit
9.3
CVSSv2
CVE-2011-0257
Integer signedness error in Apple QuickTime prior to 7.7 allows remote malicious users to execute arbitrary code or cause a denial of service (application crash) via a crafted PnSize opcode in a PICT file that triggers a stack-based buffer overflow.
Apple Quicktime 7.6.8
Apple Quicktime 7.3.1
Apple Quicktime 7.6.7
Apple Quicktime 7.0.3
Apple Quicktime 7.5.0
Apple Quicktime 7.1.5
Apple Quicktime 7.6.1
Apple Quicktime 7.0.1
Apple Quicktime 7.1.6
Apple Quicktime 7.4.1
Apple Quicktime 7.4.5
Apple Quicktime 7.2.1
Apple Quicktime 7.0.2
Apple Quicktime 7.67.75.0
Apple Quicktime 7.2.0
Apple Quicktime 7.6.0
Apple Quicktime 7.3.0
Apple Quicktime 7.0.4
Apple Quicktime 7.3.1.70
Apple Quicktime 7.1.2
Apple Quicktime 7.4.0
Apple Quicktime 7.1.1
1 EDB exploit
9
CVSSv2
CVE-2019-12840
In Webmin up to and including 1.910, any user authorized to the "Package Updates" module can execute arbitrary commands with root privileges via the data parameter to update.cgi.
Webmin Webmin
12 Github repositories
10
CVSSv2
CVE-2015-3435
Samsung Security Manager (SSM) prior to 1.31 allows remote malicious users to execute arbitrary code by uploading a file with an HTTP (1) PUT or (2) MOVE request.
Samsung Samsung Security Manager
9
CVSSv2
CVE-2020-35606
Arbitrary command execution can occur in Webmin up to and including 1.962. Any user authorized for the Package Updates module can execute arbitrary commands with root privileges via vectors involving %0A and %0C. NOTE: this issue exists because of an incomplete fix for CVE-2019-1...
Webmin Webmin
4 Github repositories
7.5
CVSSv2
CVE-2022-22831
An issue exists in Servisnet Tessa 0.0.2. An attacker can add a new sysadmin user via a manipulation of the Authorization HTTP header.
Servisnet Tessa 0.0.2
5
CVSSv2
CVE-2022-22833
An issue exists in Servisnet Tessa 0.0.2. An attacker can obtain sensitive information via a /js/app.js request.
Servisnet Tessa 0.0.2
10
CVSSv2
CVE-2018-9285
Main_Analysis_Content.asp in /apply.cgi on ASUS RT-AC66U, RT-AC68U, RT-AC86U, RT-AC88U, RT-AC1900, RT-AC2900, and RT-AC3100 devices prior to 3.0.0.4.384_10007; RT-N18U devices prior to 3.0.0.4.382.39935; RT-AC87U and RT-AC3200 devices prior to 3.0.0.4.382.50010; and RT-AC5300 dev...
Asus Rt-ac66u Firmware
Asus Rt-ac68u Firmware
Asus Rt-ac86u Firmware
Asus Rt-ac88u Firmware
Asus Rt-ac1900 Firmware
Asus Rt-ac2900 Firmware
Asus Rt-ac3100 Firmware
Asus Rt-n18u Firmware
Asus Rt-ac87u Firmware
Asus Rt-ac3200 Firmware
Asus Rt-ac5300 Firmware
10
CVSSv2
CVE-2022-22832
An issue exists in Servisnet Tessa 0.0.2. Authorization data is available via an unauthenticated /data-service/users/ request.
Servisnet Tessa 0.0.2
9.3
CVSSv2
CVE-2012-3993
The Chrome Object Wrapper (COW) implementation in Mozilla Firefox prior to 16.0, Firefox ESR 10.x prior to 10.0.8, Thunderbird prior to 16.0, Thunderbird ESR 10.x prior to 10.0.8, and SeaMonkey prior to 2.13 does not properly interact with failures of InstallTrigger methods, whic...
Mozilla Firefox Esr 10.0.6
Mozilla Firefox Esr 10.0
Mozilla Firefox Esr 10.0.5
Mozilla Firefox Esr 10.0.2
Mozilla Firefox Esr 10.0.7
Mozilla Firefox Esr 10.0.1
Mozilla Firefox Esr 10.0.3
Mozilla Firefox Esr 10.0.4
Mozilla Thunderbird Esr 10.0.7
Mozilla Thunderbird Esr 10.0.3
Mozilla Thunderbird Esr 10.0
Mozilla Thunderbird Esr 10.0.4
Mozilla Thunderbird Esr 10.0.2
Mozilla Thunderbird Esr 10.0.5
Mozilla Thunderbird Esr 10.0.6
Mozilla Thunderbird Esr 10.0.1
Mozilla Firefox 13.0.1
Mozilla Firefox 14.0.1
Mozilla Firefox 4.0
Mozilla Firefox 3.6.2
Mozilla Firefox 2.0.0.12
Mozilla Firefox 1.5
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
logic flaw
CVE-2024-23692
CVE-2024-26229
CVE-2024-35255
CVE-2024-5835
CVE-2024-5837
XML external entity
dos
CVE-2024-5813
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
6
NEXT »