Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
nine:situations:group vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2008-6935
Argument injection vulnerability in Exodus 0.10 allows remote malicious users to inject arbitrary command line arguments, overwrite arbitrary files, and cause a denial of service via encoded spaces in an im:// URI.
Joe Fuhrman Exodus 0.10
2 EDB exploits
NA
CVE-2008-6936
Argument injection vulnerability in Exodus 0.10 allows remote malicious users to inject arbitrary command line arguments, overwrite arbitrary files, and cause a denial of service via encoded spaces in a pres:// URI, a different vector than CVE-2008-6935.
Jabber Exodus 0.10
2 EDB exploits
NA
CVE-2008-6937
Argument injection vulnerability in Exodus 0.10 allows remote malicious users to inject arbitrary command line arguments, overwrite arbitrary files, and cause a denial of service via encoded spaces in an xmpp:// URI, a different vector than CVE-2008-6935 and CVE-2008-6936. NOTE: ...
Jabber Exodus 0.10
2 EDB exploits
NA
CVE-2008-2910
Buffer overflow in the DXTTextOutEffect ActiveX control (aka the Text-Effect DXT Filter), as distributed in TextOut.dll 6.0.18.1 and mvtextout.dll, in muvee autoProducer 6.0 and 6.1 allows remote malicious users to execute arbitrary code via a long FontSetting property value.
Muvee Autoproducer 6.0
Muvee Autoproducer 6.1
1 EDB exploit
NA
CVE-2008-5749
Argument injection vulnerability in Google Chrome 1.0.154.36 on Windows XP SP3 allows remote malicious users to execute arbitrary commands via the --renderer-path option in a chromehtml: URI. NOTE: a third party disputes this issue, stating that Chrome "will ask for user per...
Google Chrome 1.0.154.36
1 EDB exploit
NA
CVE-2008-5750
Argument injection vulnerability in Microsoft Internet Explorer 8 beta 2 on Windows XP SP3 allows remote malicious users to execute arbitrary commands via the --renderer-path option in a chromehtml: URI.
Microsoft Internet Explorer 8
1 EDB exploit
NA
CVE-2009-1281
Cross-site scripting (XSS) vulnerability in glFusion prior to 1.1.3 allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors.
Glfusion Glfusion 1.0.0
Glfusion Glfusion 1.0.1
Glfusion Glfusion 1.1.1
Glfusion Glfusion
Glfusion Glfusion 1.1.0
1 EDB exploit
NA
CVE-2009-1282
SQL injection vulnerability in private/system/lib-session.php in glFusion 1.1.2 and previous versions allows remote malicious users to execute arbitrary SQL commands via the glf_session cookie parameter.
Glfusion Glfusion 1.0.0
Glfusion Glfusion 1.0.1
Glfusion Glfusion 1.1.1
Glfusion Glfusion
Glfusion Glfusion 1.1.0
1 EDB exploit
NA
CVE-2009-1283
glFusion prior to 1.1.3 performs authentication with a user-provided password hash instead of a password, which allows remote malicious users to gain privileges by obtaining the hash and using it in the glf_password cookie, aka "User Masquerading." NOTE: this can be lev...
Glfusion Glfusion 1.0.0
Glfusion Glfusion 1.0.2
Glfusion Glfusion 1.0.1
Glfusion Glfusion 1.1.1
Glfusion Glfusion
Glfusion Glfusion 1.1.0
1 EDB exploit
NA
CVE-2009-1516
Stack-based buffer overflow in the IceWarpServer.APIObject ActiveX control in api.dll in IceWarp Merak Mail Server 9.4.1 might allow context-dependent malicious users to execute arbitrary code via a large value in the second argument to the Base64FileEncode method, as possibly de...
Icewarp Merak Mail Server 9.4.1
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
TCP
CVE-2024-4577
CVE-2024-2695
CVE-2024-31870
injection
CVE-2024-3813
arbitrary code
CVE-2024-27801
CVE-2024-30120
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »