Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
framework vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv3
CVE-2018-2971
Vulnerability in the Oracle Applications Framework component of Oracle E-Business Suite (subcomponent: REST Services). Supported versions that are affected are 12.1.3, 12.2.3, 12.2.4, 12.2.5, 12.2.6 and 12.2.7. Easily exploitable vulnerability allows low privileged attacker with ...
Oracle Applications Framework 12.2.6
Oracle Applications Framework 12.2.5
Oracle Applications Framework 12.2.3
Oracle Applications Framework 12.1.3
Oracle Applications Framework 12.2.4
Oracle Applications Framework 12.2.7
8.8
CVSSv3
CVE-2015-1786
Cross-site request forgery (CSRF) vulnerability in Zend/Validator/Csrf in Zend Framework 2.3.x prior to 2.3.6 via null or malformed token identifiers.
Zend Zend Framework 2.3.0
Zend Zend Framework 2.3.4
Zend Zend Framework 2.3.1
Zend Zend Framework 2.3.2
Zend Zend Framework 2.3.3
Zend Zend Framework 2.3.5
7.5
CVSSv3
CVE-2016-3255
Microsoft .NET Framework 2.0 SP2, 3.5, 3.5.1, 4.5.2, 4.6, and 4.6.1 allows remote malicious users to read arbitrary files via XML data containing an external entity declaration in conjunction with an entity reference, related to an XML External Entity (XXE) issue, aka ".NET ...
Microsoft .net Framework 4.5.2
Microsoft .net Framework 2.0
Microsoft .net Framework 4.6.1
Microsoft .net Framework 4.6
Microsoft .net Framework 3.5
Microsoft .net Framework 3.5.1
7.5
CVSSv3
CVE-2016-0033
Microsoft .NET Framework 2.0 SP2, 3.5, 3.5.1, 4.5.2, 4.6, and 4.6.1 does not prevent recursive compilation of XSLT transforms, which allows remote malicious users to cause a denial of service (performance degradation) via crafted XSLT data, aka ".NET Framework Stack Overflow...
Microsoft .net Framework 4.5.2
Microsoft .net Framework 2.0
Microsoft .net Framework 4.6.1
Microsoft .net Framework 4.6
Microsoft .net Framework 3.5
Microsoft .net Framework 3.5.1
9.8
CVSSv3
CVE-2023-36049
.NET, .NET Framework, and Visual Studio Elevation of Privilege Vulnerability
Microsoft .net Framework 2.0
Microsoft .net Framework 3.0
Microsoft .net Framework 3.5
Microsoft .net Framework 4.6.2
Microsoft .net Framework 4.7
Microsoft .net Framework 4.7.1
Microsoft .net Framework 4.7.2
Microsoft .net Framework 4.8
Microsoft .net Framework 4.8.1
Microsoft .net Framework 3.5.1
Microsoft .net 8.0.0
Microsoft .net
Microsoft Visual Studio 2022
7.7
CVSSv3
CVE-2021-44232
SAF-T Framework Transaction SAFTN_G allows an malicious user to exploit insufficient validation of path information provided by normal user, leading to full server directory access. The attacker can see the whole filesystem structure but cannot overwrite, delete, or corrupt arbit...
Sap Saf-t Framework Sap Fin 617
Sap Saf-t Framework 618
Sap Saf-t Framework 720
Sap Saf-t Framework 730
Sap Saf-t Framework Sap Appl 600
Sap Saf-t Framework 602
Sap Saf-t Framework 603
Sap Saf-t Framework 604
Sap Saf-t Framework 605
Sap Saf-t Framework 606
Sap Saf-t Framework S4core 102
Sap Saf-t Framework 103
Sap Saf-t Framework 104
Sap Saf-t Framework 105
8.8
CVSSv3
CVE-2020-0605
A remote code execution vulnerability exists in .NET software when the software fails to check the source markup of a file.An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the current user, aka '.NET Framework Remote Code Ex...
Microsoft .net Framework 3.0
Microsoft .net Framework 3.5
Microsoft .net Framework 4.6.2
Microsoft .net Framework 4.7
Microsoft .net Framework 4.7.1
Microsoft .net Framework 4.7.2
Microsoft .net Framework 4.8
Microsoft .net Framework 3.5.1
Microsoft .net Framework 4.5.2
Microsoft .net Framework 4.6
Microsoft .net Framework 4.6.1
Microsoft .net Core 1.0
Microsoft .net Core 3.0
Microsoft .net Core 3.1
2 Articles
NA
CVE-2010-1622
SpringSource Spring Framework 2.5.x prior to 2.5.6.SEC02, 2.5.7 prior to 2.5.7.SR01, and 3.0.x prior to 3.0.3 allows remote malicious users to execute arbitrary code via an HTTP request containing class.classLoader.URLs[0]=jar: followed by a URL of a crafted .jar file.
Oracle Fusion Middleware 11.1.1.8.0
Oracle Fusion Middleware 7.6.2
Oracle Fusion Middleware 11.1.1.6.1
Springsource Spring Framework 2.5.0
Springsource Spring Framework 3.0.1
Springsource Spring Framework 2.5.3
Springsource Spring Framework 3.0.2
Springsource Spring Framework 2.5.5
Springsource Spring Framework 2.5.6
Springsource Spring Framework 2.5.4
Springsource Spring Framework 2.5.2
Springsource Spring Framework 2.5.7
Springsource Spring Framework 3.0.0
Springsource Spring Framework 2.5.1
1 EDB exploit
13 Github repositories
1 Article
7.8
CVSSv3
CVE-2023-24895
.NET, .NET Framework, and Visual Studio Remote Code Execution Vulnerability
Microsoft .net Framework 4.8
Microsoft .net Framework 4.6.2
Microsoft .net Framework 4.7
Microsoft .net Framework 4.7.1
Microsoft .net Framework 4.7.2
Microsoft .net Framework 3.5.1
Microsoft .net Framework 3.5
Microsoft .net Framework 4.8.1
Microsoft .net Framework 3.0
Microsoft .net Framework 2.0
Microsoft .net 6.0.0
Microsoft .net 7.0.0
Microsoft Visual Studio 2022
NA
CVE-2009-3701
Multiple cross-site scripting (XSS) vulnerabilities in the administration interface in Horde Application Framework prior to 3.3.6, Horde Groupware prior to 1.2.5, and Horde Groupware Webmail Edition prior to 1.2.5 allow remote malicious users to inject arbitrary web script or HTM...
Horde Application Framework 3.0.2
Horde Groupware 1.1
Horde Application Framework 3.2.4
Horde Application Framework 2.1
Horde Groupware 1.0
Horde Groupware 1.2.2
Horde Application Framework 2.2.4 Rc1
Horde Groupware 1.1.5
Horde Application Framework 3.2.1
Horde Application Framework
Horde Application Framework 2.0
Horde Application Framework 3.3.2
Horde Application Framework 3.0.8
Horde Groupware 1.2.1
Horde Application Framework 3.0
Horde Groupware 1.0.2
Horde Application Framework 3.2.2
Horde Groupware
Horde Groupware 1.0.1
Horde Groupware 1.0.5
Horde Application Framework 2.2
Horde Groupware 1.1.1
4 EDB exploits
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
TCP
CVE-2024-4577
CVE-2024-2695
CVE-2024-31870
injection
CVE-2024-3813
arbitrary code
CVE-2024-27801
CVE-2024-30120
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
8
9
10
NEXT »