Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
hex vulnerabilities and exploits
(subscribe to this query)
6.5
CVSSv3
CVE-2019-17627
The Yale Bluetooth Key application for mobile devices allows unauthorized unlock actions by sniffing Bluetooth Low Energy (BLE) traffic during one authorized unlock action, and then calculating the authentication key via simple computations on the hex digits of a valid authentica...
Yalehome Yale Bluetooth Key -
NA
CVE-2010-0416
Buffer overflow in the Unescape function in common/util/hxurl.cpp and player/hxclientkit/src/CHXClientSink.cpp in Helix Player 1.0.6 and RealPlayer allows remote malicious users to cause a denial of service (application crash) or possibly execute arbitrary code via a URL argument...
Realnetworks Realplayer
Realnetworks Helix Player 1.0.6
1 EDB exploit
NA
CVE-2004-2334
Multiple cross-site scripting (XSS) vulnerabilities in EMU Webmail 5.2.7 allow remote malicious users to inject arbitrary web script or HTML via (1) a hex-encoded value to the variable parameter in emumail.fcgi, (2) the folder parameter in emumail.fcgi, or Javascript in the (3) u...
Emumail Emu Webmail 5.2.7
1 EDB exploit
7.8
CVSSv3
CVE-2017-8803
Notepad++ 7.3.3 (32-bit) with Hex Editor Plugin v0.9.5 might allow user-assisted malicious users to execute code via a crafted file, because of a "Data from Faulting Address controls Code Flow" issue. One threat model is a victim who obtains an untrusted crafted file fr...
Mh-nexus Hex Editor 0.9.5
NA
CVE-2004-2294
Canonicalize-before-filter error in the send_review function in the Reviews module for PHP-Nuke 6.0 to 7.3 allows remote malicious users to inject arbitrary web script or HTML via hex-encoded XSS sequences in the text parameter, which is checked for dangerous sequences before it ...
Francisco Burzi Php-nuke 6.5 Final
Francisco Burzi Php-nuke 6.5 Rc1
Francisco Burzi Php-nuke 6.5 Rc2
Francisco Burzi Php-nuke 6.5 Rc3
Francisco Burzi Php-nuke 7.0 Final
Francisco Burzi Php-nuke 7.1
Francisco Burzi Php-nuke 7.2
Francisco Burzi Php-nuke 7.3
Francisco Burzi Php-nuke 6.0
Francisco Burzi Php-nuke 6.5 Beta1
Francisco Burzi Php-nuke 6.6
Francisco Burzi Php-nuke 6.9
Francisco Burzi Php-nuke 6.5
Francisco Burzi Php-nuke 6.7
Francisco Burzi Php-nuke 7.0
1 EDB exploit
NA
CVE-2005-3020
Multiple cross-site scripting (XSS) vulnerabilities in vBulletin prior to 3.0.9 allow remote malicious users to inject arbitrary web script or HTML via the (1) group parameter to css.php, (2) redirect parameter to index.php, (3) email parameter to user.php, (4) goto parameter to ...
Jelsoft Vbulletin 2.2.1
Jelsoft Vbulletin 2.2.2
Jelsoft Vbulletin 2.3.0
Jelsoft Vbulletin 2.3.2
Jelsoft Vbulletin 3.0.4
Jelsoft Vbulletin 3.0.5
Jelsoft Vbulletin 3.0 Beta 4
Jelsoft Vbulletin 3.0 Beta 5
Jelsoft Vbulletin 3.0 Beta 6
Jelsoft Vbulletin 1.0.1
Jelsoft Vbulletin 2.2.3
Jelsoft Vbulletin 2.2.4
Jelsoft Vbulletin 2.2.5
Jelsoft Vbulletin 2.3.3
Jelsoft Vbulletin 2.3.4
Jelsoft Vbulletin 3.0.6
Jelsoft Vbulletin 3.0.7
Jelsoft Vbulletin 2.0 Rc3
Jelsoft Vbulletin 2.2.0
Jelsoft Vbulletin 2.2.8
Jelsoft Vbulletin 2.2.9
Jelsoft Vbulletin 3.0.2
6 EDB exploits
9.8
CVSSv3
CVE-2020-15150
There is a vulnerability in Paginator (Elixir/Hex package) which makes it susceptible to Remote Code Execution (RCE) attacks via input parameters to the paginate() function. This will potentially affect all current users of Paginator prior to version 1.0.0. The vulnerability has ...
Duffel Paginator
NA
CVE-2009-1202
WebVPN on the Cisco Adaptive Security Appliances (ASA) device with software 8.0(4), 8.1.2, and 8.2.1 allows remote malicious users to bypass certain protection mechanisms involving URL rewriting and HTML rewriting, and conduct cross-site scripting (XSS) attacks, by modifying the ...
Cisco Adaptive Security Appliance 8.2.1
Cisco Adaptive Security Appliance 8.1.2
Cisco Adaptive Security Appliance 8.0\\(4\\)
Cisco Adaptive Security Appliance
8.8
CVSSv3
CVE-2022-31673
VMware vRealize Operations contains an information disclosure vulnerability. A low-privileged malicious actor with network access can create and leak hex dumps, leading to information disclosure. Successful exploitation can lead to a remote code execution.
Vmware Vrealize Operations
1 Article
8.8
CVSSv3
CVE-2018-19114
An issue exists in MinDoc through v1.0.2. It allows malicious users to gain privileges by uploading an image file with contents that represent an admin session, and then sending a Cookie: header with a mindoc_id value containing the relative pathname of this uploaded file. For ex...
Iminho Mindoc
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-23316
SQL injection
type confusion
CVE-2024-20697
CVE-2024-4344
local
CVE-2024-30043
CVE-2024-3821
CVE-2024-5041
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
5
6
7
8
9
10
NEXT »