Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
boost vulnerabilities and exploits
(subscribe to this query)
4.4
CVSSv2
CVE-2019-0164
Improper permissions in the installer for Intel(R) Turbo Boost Max Technology 3.0 driver version 1.0.0.1035 and before may allow an authenticated user to potentially enable escalation of privilege via local access.
Intel Turbo Boost Max Technology 3.0
Lenovo Thinkstation P410 Firmware -
Lenovo Thinkstation P510 Firmware -
Lenovo Thinkstation P710 Firmware -
Lenovo Thinkstation P910 Firmware -
NA
CVE-2022-2052
Multiple Trumpf Products in multiple versions use default privileged Windows users and passwords. An adversary may use these accounts to remotely gain full access to the system.
Trumpf Job Order Interface
Trumpf Oseon
Trumpf Trutops Boost
Trumpf Trutops Monitor
Trumpf Trutops Fab
4.3
CVSSv2
CVE-2018-14631
moodle prior to 3.5.2, 3.4.5, 3.3.8 is vulnerable to a boost theme - blog search GET parameter insufficiently filtered. The breadcrumb navigation provided by Boost theme when displaying search results of a blog were insufficiently filtered, which could result in reflected XSS if ...
Moodle Moodle
4.3
CVSSv2
CVE-2020-13616
The boost ASIO wrapper in net/asio.cpp in Pichi prior to 1.3.0 lacks TLS hostname verification.
Pichi Project Pichi
5
CVSSv2
CVE-2006-3766
Darren's $5 Script Archive osDate 1.1.7 and previous versions allows users to boost their own ratings via a txtrating parameter with a score greater than the intended maximum of 10.
Darrens 5-dollar Script Archive Osdate 1.1.5
Darrens 5-dollar Script Archive Osdate 1.1.6
Darrens 5-dollar Script Archive Osdate
4
CVSSv2
CVE-2019-3851
A vulnerability was found in moodle prior to 3.6.3 and 3.5.5. There was a link to site home within the the Boost theme's secure layout, meaning students could navigate out of the page.
Moodle Moodle
Fedoraproject Fedora -
7.5
CVSSv2
CVE-2021-41392
static/main-preload.js in Boost Note up to and including 0.22.0 allows remote command execution. A remote attacker may send a crafted IPC message to the exposed vulnerable ipcRenderer IPC interface, which invokes the dangerous openExternal Electron API.
Boostnote Boostnote
7.5
CVSSv2
CVE-2019-6246
An issue exists in SVG++ (aka svgpp) 1.2.3. After calling the gil::get_color function in Generic Image Library in Boost, the return code is used as an address, leading to an Access Violation because of an out-of-bounds read.
Svgpp Svgpp 1.2.3
NA
CVE-2024-1095
The Build & Control Block Patterns – Boost up Gutenberg Editor plugin for WordPress is vulnerable to unauthorized access of data due to a missing capability check on the settings_export() function in all versions up to, and including, 1.3.5.4. This makes it possible for...
9
CVSSv2
CVE-2020-7237
Cacti 1.2.8 allows Remote Code Execution (by privileged users) via shell metacharacters in the Performance Boost Debug Log field of poller_automation.php. OS commands are executed when a new poller cycle begins. The attacker must be authenticated, and must have access to modify t...
Cacti Cacti 1.2.8
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27322
administrator privileges
CVE-2024-1579
hardcoded
CVE-2023-20198
CVE-2024-33587
CVE-2024-33449
CVE-2024-4308
HTML injection
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
NEXT »