Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
vbscript vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv3
CVE-2017-0201
A remote code execution vulnerability exists in Internet Explorer in the way that the JScript and VBScript engines render when handling objects in memory. The vulnerability could corrupt memory in such a way that an attacker could execute arbitrary code in the context of the curr...
Microsoft Internet Explorer 10
Microsoft Internet Explorer 9
NA
CVE-2010-0917
Stack-based buffer overflow in VBScript in Microsoft Windows 2000 SP4, XP SP2 and SP3, and Server 2003 SP2, when Internet Explorer is used, might allow user-assisted remote malicious users to execute arbitrary code via a long string in the fourth argument (aka helpfile argument) ...
Microsoft Windows Xp
Microsoft Windows Xp -
Microsoft Windows 2000
Microsoft Windows Server 2003
Microsoft Windows 2003 Server
NA
CVE-2006-0669
Multiple SQL injection vulnerabilities in archive.asp in GA's Forum Light allow remote malicious users to execute arbitrary SQL commands via the (1) Forum and (2) pages parameter. NOTE: SecurityTracker says that the vendor has disputed this issue, saying that GA Forum Light ...
Gasoft Gas Forum Light
1 EDB exploit
NA
CVE-2013-3106
Multiple cross-site scripting (XSS) vulnerabilities in Open-Xchange AppSuite and Server prior to 6.20.7 rev18, 6.22.0 before rev16, 6.22.1 before rev19, 7.0.1 before rev7, 7.0.2 before rev11, and 7.2.0 before rev8 allow remote malicious users to inject arbitrary web script or HTM...
Open-xchange Open-xchange Server 7.0.2
Open-xchange Open-xchange Appsuite 6.22.0
Open-xchange Open-xchange Server 6.22.0
Open-xchange Open-xchange Server 7.0.1
Open-xchange Open-xchange Appsuite 6.22.1
Open-xchange Open-xchange Appsuite 7.0.1
Open-xchange Open-xchange Appsuite 7.0.2
Open-xchange Open-xchange Appsuite 7.2.0
Open-xchange Open-xchange Server 7.2.0
Open-xchange Open-xchange Appsuite 6.20.7
Open-xchange Open-xchange Server 6.20.7
Open-xchange Open-xchange Server 6.22.1
NA
CVE-2007-3576
Microsoft Internet Explorer 6 executes web script from URIs of arbitrary scheme names ending with the "script" character sequence, using the (1) vbscript: handler for scheme names with 7 through 9 characters, and the (2) javascript: handler for scheme names with 10 or m...
Microsoft Internet Explorer 6
7.5
CVSSv3
CVE-2016-3375
The OLE Automation mechanism and VBScript scripting engine in Microsoft Internet Explorer 9 through 11, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, and Windows 10 Gold, 1511, and 1607 allow re...
Microsoft Windows 7
Microsoft Windows Rt 8.1
Microsoft Internet Explorer 11
Microsoft Windows Server 2012 -
Microsoft Windows Server 2012 R2
Microsoft Windows 10 1511
Microsoft Windows 8.1
Microsoft Windows Server 2008
Microsoft Internet Explorer 10
Microsoft Internet Explorer 9
Microsoft Windows 10 -
Microsoft Windows 10 1607
Microsoft Windows Server 2008 R2
Microsoft Windows Vista
8.8
CVSSv3
CVE-2019-6528
PSI GridConnect GmbH Telecontrol Gateway and Smart Telecontrol Unit family, IEC104 Security Proxy versions Telecontrol Gateway 3G Versions 4.2.21, 5.0.27, 5.1.19, 6.0.16 and prior, and Telecontrol Gateway XS-MU Versions 4.2.21, 5.0.27, 5.1.19, 6.0.16 and prior, and Telecontrol Ga...
Psigridconnect Telecontrol Gateway Xs-mu Firmware
Psigridconnect Telecontrol Gateway Vm Firmware
Psigridconnect Telecontrol Gateway 3g Firmware
Psigridconnect Smart Telecontrol Unit Tcg Firmware
Psigridconnect Iec104 Security Proxy Firmware
NA
CVE-2007-2223
Microsoft XML Core Services (MSXML) 3.0 up to and including 6.0 allows remote malicious users to execute arbitrary code via the substringData method on a (1) TextNode or (2) XMLDOM object, which causes an integer overflow that leads to a buffer overflow.
Microsoft Xml Core Services 3.0
Microsoft Xml Core Services 6.0
Microsoft Xml Core Services 4.0
Microsoft Xml Core Services 5.0
1 EDB exploit
NA
CVE-2005-2282
Multiple cross-site scripting (XSS) vulnerabilities in WebEOC prior to 6.0.2 allow remote malicious users to inject arbitrary web script and HTML via unknown vectors.
Esi Products Webeoc 6.0.2
NA
CVE-2006-4685
The XMLHTTP ActiveX control in Microsoft XML Parser 2.6 and XML Core Services 3.0 up to and including 6.0 does not properly handle HTTP server-side redirects, which allows remote user-assisted malicious users to access content from other domains.
Microsoft Xml Core Services 4.0
Microsoft Xml Core Services 6.0
Microsoft Xml Parser 2.6
Microsoft Xml Core Services 3.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
authentication bypass
CVE-2024-30043
camera
CVE-2023-40404
CVE-2024-2793
client side
CVE-2024-4469
CVE-2024-3565
CVE-2024-29825
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
6
7
8
9
10
NEXT »