Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
evolution vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2010-1427
Cross-site scripting (XSS) vulnerability in the SearchHighlight plugin in MODx Evolution prior to 1.0.3 allows remote malicious users to inject arbitrary web script or HTML via unknown vectors related to AjaxSearch.
Modxcms Evolution 0.9.6.1
Modxcms Evolution 0.9.2.1
Modxcms Evolution
Modxcms Evolution 0.9.5
Modxcms Evolution 0.9.0
Modxcms Evolution 0.9.1
Modxcms Evolution 0.9.6
Modxcms Evolution 0.9.6.2
NA
CVE-2006-0528
The cairo library (libcairo), as used in GNOME Evolution and possibly other products, allows remote malicious users to cause a denial of service (persistent client crash) via an attached text file that contains "Content-Disposition: inline" in the header, and a very lon...
Gnome Evolution 2.3.3
Gnome Evolution 2.3.4
Gnome Evolution 2.3.5
Gnome Evolution 2.3.7
Gnome Evolution 2.3.1
Gnome Evolution 2.3.2
Gnome Evolution 2.3.6
Gnome Evolution 2.3.6.1
1 EDB exploit
NA
CVE-2006-2789
Evolution 2.2.x and 2.3.x in GNOME 2.7 and 2.8, when "load images if sender in addressbook" is enabled, allows remote malicious users to cause a denial of service (persistent crash) via a crafted "From" header that triggers an assert error in camel-internet-ad...
Gnome Evolution 2.3.4
Gnome Evolution 2.3.5
Gnome Evolution 2.3.6
Gnome Evolution 2.3.6.1
Gnome Evolution 2.3.1
Gnome Evolution 2.3.3
Gnome Evolution 2.3.7
Gnome Evolution 2.3.2
NA
CVE-2002-1471
The camel component for Ximian Evolution 1.0.x and previous versions does not verify certificates when it establishes a new SSL connection after previously verifying a certificate, which could allow remote malicious users to monitor or modify sessions via a man-in-the-middle atta...
Ximian Evolution 1.0.7
Ximian Evolution 1.0.3
Ximian Evolution 1.0.4
Ximian Evolution 1.0.5
Ximian Evolution 1.0.6
Ximian Evolution 1.0.8
NA
CVE-2009-1457
Cross-site scripting (XSS) vulnerability in player.php in Nuke Evolution Xtreme 2.x allows remote malicious users to inject arbitrary web script or HTML via the defaultVisualExt parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from t...
Evolution-extreme Nuke Evolution Xtreme 2.1.0
Evolution-extreme Nuke Evolution Xtreme 2.0.7
Evolution-extreme Nuke Evolution Xtreme 2.0
NA
CVE-2002-2249
PHP remote file inclusion vulnerability in News Evolution 2.0 allows remote malicious users to execute arbitrary PHP commands via the neurl parameter to (1) backend.php, (2) screen.php, or (3) admin/modules/comment.php.
Php Evolution News Evolution 1.0
Php Evolution News Evolution 2.0
1 EDB exploit
NA
CVE-2009-0547
Evolution 2.22.3.1 checks S/MIME signatures against a copy of the e-mail text within a signed-data blob, not the copy of the e-mail text displayed to the user, which allows remote malicious users to spoof a signature by modifying the latter copy, a different vulnerability than CV...
Evolution Evolution 2.22.3.1
NA
CVE-2009-0587
Multiple integer overflows in Evolution Data Server (aka evolution-data-server) prior to 2.24.5 allow context-dependent malicious users to execute arbitrary code via a long string that is converted to a base64 representation in (1) addressbook/libebook/e-vcard.c in evc or (2) cam...
Go-evolution Evolution-data-server
NA
CVE-2007-2090
Cross-site scripting (XSS) vulnerability in index.php in TuMusika Evolution 1.6 allows remote malicious users to inject arbitrary web script or HTML via the msg parameter.
Tumusika Evolution Tumusika Evolution 1.6
1 EDB exploit
NA
CVE-2007-6188
Multiple directory traversal vulnerabilities in TuMusika Evolution 1.7R5 allow remote malicious users to include and execute arbitrary local files via a .. (dot dot) in the language parameter to (1) languages_n.php, (2) languages_f.php, or (3) languages.php in inc/; and (4) allow...
Tumusika Evolution Tumusika Evolution 1.7r5
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3661
open redirect
CVE-2024-25512
CVE-2024-33788
command injection
SSTI
CVE-2024-0043
CVE-2024-29210
CVE-2024-25510
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »