Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
orca vulnerabilities and exploits
(subscribe to this query)
4.4
CVSSv2
CVE-2013-4245
Orca has arbitrary code execution due to insecure Python module load
Gnome Orca -
Debian Debian Linux 8.0
Debian Debian Linux 9.0
6.8
CVSSv2
CVE-2014-8184
A vulnerability was found in liblouis, versions 2.5.x prior to 2.5.4. A stack-based buffer overflow was found in findTable() in liblouis. An attacker could create a malicious file that would cause applications that use liblouis (such as Orca) to crash, or potentially execute arbi...
Liblouis Liblouis
7.4
CVSSv2
CVE-2018-0643
Ubuntu14.04 ORCA (Online Receipt Computer Advantage) 4.8.0 (panda-server) 1:1.4.9+p41-u4jma1 and previous versions allows attacker with administrator rights to execute arbitrary OS commands via unspecified vectors.
Canonical Ubuntu Linux 14.04
Orcamo Online Receipt Computer Advantage 4.8.0
4
CVSSv2
CVE-2018-0644
Buffer overflow in Ubuntu14.04 ORCA (Online Receipt Computer Advantage) 4.8.0 (panda-client2) 1:1.4.9+p41-u4jma1 and previous versions, Ubuntu14.04 ORCA (Online Receipt Computer Advantage) 5.0.0 (panda-client2) 1:2.0.0+p48-u4jma1 and previous versions, and Ubuntu16.04 ORCA (Onlin...
Canonical Ubuntu Linux 16.04
Canonical Ubuntu Linux 14.04
4.3
CVSSv2
CVE-2009-3017
Orca Browser 1.2 build 5 does not properly block data: URIs in Refresh and Location headers in HTTP responses, which allows remote malicious users to conduct cross-site scripting (XSS) attacks via vectors related to (1) injecting a Refresh header that contains JavaScript sequence...
Orcabrowser Orca Browser 1.2
3.5
CVSSv2
CVE-2009-2919
Cross-site scripting (XSS) vulnerability in Boonex Orca 2.0 and 2.0.2 allows remote authenticated users to inject arbitrary web script or HTML via the topic title field.
Boonex Orca 2.0
Boonex Orca 2.0.2
9.3
CVSSv2
CVE-2008-5167
PHP remote file inclusion vulnerability in layout/default/params.php in Boonex Orca 2.0 and 2.0.2, when register_globals is enabled, allows remote malicious users to execute arbitrary PHP code via a URL in the gConf[dir][layouts] parameter.
Boonex Orca 2.0
Boonex Orca 2.0.2
1 EDB exploit
7.5
CVSSv2
CVE-2005-3940
SQL injection vulnerability in ringmaker.php in Orca Ringmaker 2.3c and previous versions allows remote malicious users to execute arbitrary SQL commands via the start parameter.
Greywyvern Orca Ringmaker
1 EDB exploit
7.5
CVSSv2
CVE-2005-3941
SQL injection vulnerability in blog.php in Orca Blog 1.3b and previous versions allows remote malicious users to execute arbitrary SQL commands via the msg parameter.
Greywyvern Orca Blog
1 EDB exploit
7.5
CVSSv2
CVE-2005-3942
SQL injection vulnerability in knowledgebase-control.php in Orca Knowledgebase 2.1b and previous versions allows remote malicious users to execute arbitrary SQL commands via the qid parameter.
Greywyvern Orca Knowledgebase
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27322
administrator privileges
CVE-2024-1579
hardcoded
CVE-2023-20198
CVE-2024-33587
CVE-2024-33449
CVE-2024-4308
HTML injection
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
NEXT »