Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
x vulnerabilities and exploits
(subscribe to this query)
3.5
CVSSv2
CVE-2009-1942
Cross-site scripting (XSS) vulnerability in the Quiz module 5.x, 6.x-2.x prior to 6.x-2.2, and 6.x-3.x prior to 6.x-3.0, a module for Drupal, allows remote authenticated users, with create quizzes or quiz questions access, to inject arbitrary web script or HTML via unspecified ve...
Drupal Quiz 6.x-2.1
Drupal Quiz 6.x-2.0
Drupal Quiz 6.x-3.0
Drupal Quiz 6.x-2.x
Drupal Quiz 6.x-3.x
Drupal Quiz 5.x
5
CVSSv2
CVE-2009-4515
The Storm module 6.x prior to 6.x-1.25 for Drupal does not enforce privilege requirements for storminvoiceitem nodes, which allows remote malicious users to read node titles via unspecified vectors.
Speedtech Storm 6.x-1.x
Speedtech Storm 6.x-1.5
Speedtech Storm 6.x-1.23
Speedtech Storm 6.x-1.24
Speedtech Storm 6.x-1.16
Speedtech Storm 6.x-1.18
Speedtech Storm 6.x-1.10
Speedtech Storm 6.x-1.1
Speedtech Storm 6.x-1.0
Speedtech Storm 6.x-1.9
Speedtech Storm 6.x-1.8
Speedtech Storm 6.x-1.12
Speedtech Storm 6.x-1.13
Speedtech Storm 6.x-1.14
Speedtech Storm 6.x-1.15
Speedtech Storm 6.x-1.7
Speedtech Storm 6.x-1.6
Speedtech Storm 6.x-1.20
Speedtech Storm 6.x-1.21
Speedtech Storm 6.x-1.11
Speedtech Storm 6.x-1.3
Speedtech Storm 6.x-1.4
2.6
CVSSv2
CVE-2011-3224
The User Documentation component in Apple Mac OS X up to and including 10.6.8 uses http sessions for updates to App Store help information, which allows man-in-the-middle malicious users to execute arbitrary code by spoofing the http server.
Apple Mac Os X 10.6.7
Apple Mac Os X 10.6.6
Apple Mac Os X Server 10.5.7
Apple Mac Os X Server 10.5.6
Apple Mac Os X Server 10.5
Apple Mac Os X Server 10.4.9
Apple Mac Os X Server 10.4.2
Apple Mac Os X Server 10.4.11
Apple Mac Os X Server 10.3.6
Apple Mac Os X Server 10.3.5
Apple Mac Os X Server 10.2.8
Apple Mac Os X Server 10.2.7
Apple Mac Os X Server 10.2.0
Apple Mac Os X Server 10.2
Apple Mac Os X Server 10.0.4
Apple Mac Os X Server 10.0.3
Apple Mac Os X 10.6.3
Apple Mac Os X 10.6.2
Apple Mac Os X 10.5.4
Apple Mac Os X 10.5.3
Apple Mac Os X 10.5.2
Apple Mac Os X 10.4.6
4.6
CVSSv2
CVE-2011-3214
IOGraphics in Apple Mac OS X up to and including 10.6.8 does not properly handle a locked-screen state in display sleep mode for an Apple Cinema Display, which allows physically proximate malicious users to bypass the password requirement via unspecified vectors.
Apple Mac Os X 10.6.6
Apple Mac Os X Server 10.6.5
Apple Mac Os X Server 10.5.6
Apple Mac Os X Server 10.5.5
Apple Mac Os X Server 10.4.9
Apple Mac Os X Server 10.4.8
Apple Mac Os X Server 10.4.11
Apple Mac Os X Server 10.4.10
Apple Mac Os X Server 10.3.5
Apple Mac Os X Server 10.3.4
Apple Mac Os X Server 10.2.7
Apple Mac Os X Server 10.2.6
Apple Mac Os X Server 10.2
Apple Mac Os X Server 10.1.5
Apple Mac Os X Server 10.0.3
Apple Mac Os X Server 10.0.2
Apple Mac Os X Server 10.6.6
Apple Mac Os X 10.6.7
Apple Mac Os X Server 10.5.8
Apple Mac Os X Server 10.5.7
Apple Mac Os X Server 10.5.0
Apple Mac Os X Server 10.5
6.8
CVSSv2
CVE-2011-3217
MediaKit in Apple Mac OS X up to and including 10.6.8 allows remote malicious users to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted disk image.
Apple Mac Os X Server 10.6.5
Apple Mac Os X Server 10.6.4
Apple Mac Os X Server 10.5.6
Apple Mac Os X Server 10.5.5
Apple Mac Os X Server 10.4.9
Apple Mac Os X Server 10.4.8
Apple Mac Os X Server 10.4.10
Apple Mac Os X
Apple Mac Os X Server 10.6.7
Apple Mac Os X Server 10.6.6
Apple Mac Os X Server 10.6.1
Apple Mac Os X Server 10.6.0
Apple Mac Os X Server 10.5.2
Apple Mac Os X Server 10.5.1
Apple Mac Os X Server 10.4.4
Apple Mac Os X Server 10.4.3
Apple Mac Os X Server 10.3.9
Apple Mac Os X Server 10.3.8
Apple Mac Os X Server 10.3.1
Apple Mac Os X Server 10.3.0
Apple Mac Os X Server 10.2.2
Apple Mac Os X Server 10.2.1
2.6
CVSSv2
CVE-2011-3218
The "Save for Web" selection in QuickTime Player in Apple Mac OS X up to and including 10.6.8 exports HTML documents that contain an http link to a script file, which allows man-in-the-middle malicious users to conduct cross-site scripting (XSS) attacks by spoofing the ...
Apple Mac Os X Server 10.6.7
Apple Mac Os X Server 10.6.6
Apple Mac Os X Server 10.6.5
Apple Mac Os X Server 10.6.4
Apple Mac Os X Server 10.5.5
Apple Mac Os X Server 10.5.4
Apple Mac Os X Server 10.4.8
Apple Mac Os X Server 10.4.7
Apple Mac Os X Server 10.4.10
Apple Mac Os X Server 10.4.1
Apple Mac Os X Server 10.3.4
Apple Mac Os X Server 10.3.3
Apple Mac Os X Server 10.2.6
Apple Mac Os X Server 10.2.5
Apple Mac Os X Server 10.1.5
Apple Mac Os X Server 10.1.4
Apple Mac Os X Server 10.1.3
Apple Mac Os X Server 10.0.2
Apple Mac Os X Server 10.0.1
Apple Mac Os X 10.6.1
Apple Mac Os X 10.6.0
Apple Mac Os X 10.5.1
6.8
CVSSv2
CVE-2011-0224
CoreMedia in Apple Mac OS X up to and including 10.6.8 allows remote malicious users to execute arbitrary code or cause a denial of service (memory corruption) via a crafted QuickTime movie file.
Apple Mac Os X
Apple Mac Os X Server 10.6.7
Apple Mac Os X Server 10.6.6
Apple Mac Os X Server 10.6.1
Apple Mac Os X Server 10.6.0
Apple Mac Os X Server 10.5.2
Apple Mac Os X Server 10.5.1
Apple Mac Os X Server 10.4.4
Apple Mac Os X Server 10.4.3
Apple Mac Os X Server 10.3.9
Apple Mac Os X Server 10.3.8
Apple Mac Os X Server 10.3.1
Apple Mac Os X Server 10.3.0
Apple Mac Os X Server 10.2.2
Apple Mac Os X Server 10.2.1
Apple Mac Os X Server 10.1.1
Apple Mac Os X Server 10.1.0
Apple Mac Os X Server 10.0
Apple Mac Os X 10.6.5
Apple Mac Os X 10.5.6
Apple Mac Os X 10.5.5
Apple Mac Os X 10.4.9
6.8
CVSSv2
CVE-2011-0229
Apple Type Services (ATS) in Apple Mac OS X up to and including 10.6.8 does not properly handle embedded Type 1 fonts, which allows remote malicious users to execute arbitrary code via a crafted document that triggers an out-of-bounds memory access.
Apple Mac Os X Server
Apple Mac Os X Server 10.6.4
Apple Mac Os X Server 10.6.3
Apple Mac Os X Server 10.5.5
Apple Mac Os X Server 10.5.4
Apple Mac Os X Server 10.4.7
Apple Mac Os X Server 10.4.6
Apple Mac Os X Server 10.4.1
Apple Mac Os X Server 10.4.0
Apple Mac Os X Server 10.3.4
Apple Mac Os X Server 10.3.3
Apple Mac Os X Server 10.3.2
Apple Mac Os X Server 10.2.5
Apple Mac Os X Server 10.2.4
Apple Mac Os X Server 10.1.4
Apple Mac Os X Server 10.1.3
Apple Mac Os X Server 10.0.1
Apple Mac Os X Server 10.0.0
Apple Mac Os X 10.6.0
Apple Mac Os X 10.5.8
Apple Mac Os X 10.5.1
Apple Mac Os X 10.5.0
4.3
CVSSv2
CVE-2010-4520
Multiple cross-site scripting (XSS) vulnerabilities in the Views module 6.x prior to 6.x-2.11 for Drupal allow remote malicious users to inject arbitrary web script or HTML via (1) a URL or (2) an aggregator feed title.
Earl Miles Views 6.x-2.0
Earl Miles Views 6.x-2.3
Earl Miles Views 6.x-2.4
Earl Miles Views 6.x-2.9
Earl Miles Views 6.x-2.10
Earl Miles Views 6.x-2.6
Earl Miles Views 6.x-2.x
Earl Miles Views 6.x-3.x
Earl Miles Views 6.x-2.7
Earl Miles Views 6.x-3.0
Earl Miles Views 6.x-2.8
Earl Miles Views 6.x-2.2
Earl Miles Views 6.x-2.5
Earl Miles Views 6.x-2.1
3.5
CVSSv2
CVE-2010-2048
Multiple cross-site scripting (XSS) vulnerabilities in the Heartbeat module 6.x prior to 6.x-4.9 for Drupal allow remote authenticated users to inject arbitrary web script or HTML via unspecified vectors.
Menhir Heartbeat 6.x-4.7
Menhir Heartbeat 6.x-4.6
Menhir Heartbeat 6.x-4.1
Menhir Heartbeat 6.x-4.0
Menhir Heartbeat 6.x-2.3
Menhir Heartbeat 6.x-4.5
Menhir Heartbeat 6.x-4.4
Menhir Heartbeat 6.x-4.x
Menhir Heartbeat 6.x-3.3
Menhir Heartbeat 6.x-4.8
Menhir Heartbeat 6.x-4.3
Menhir Heartbeat 6.x-4.2
Menhir Heartbeat 6.x-3.2
Menhir Heartbeat 6.x-3.x
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
authentication bypass
CVE-2024-30051
remote
CVE-2024-27954
CVE-2023-51483
CVE-2023-47782
SSRF
CVE-2024-24715
CVE-2023-52424
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
5
6
7
8
9
10
NEXT »