Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
para vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2023-32296
Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in Kangu para WooCommerce plugin <= 2.2.9 versions.
Kangu Kangu
NA
CVE-2022-40697
Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in 3com – Asesor de Cookies para normativa española plugin <= 3.4.3 versions.
3commarketing 3com-asesor-de-cookies
NA
CVE-2023-49853
Cross-Site Request Forgery (CSRF) vulnerability in PayTR Ödeme ve Elektronik Para Kurulusu A.S. PayTR Taksit Tablosu – WooCommerce.This issue affects PayTR Taksit Tablosu – WooCommerce: from n/a up to and including 1.3.1.
Paytr Paytr Taksit Tablosu - Woocommerce
NA
CVE-2024-22632
Setor Informatica Sistema Inteligente para Laboratorios (S.I.L.) 388 exists to contain a remote code execution (RCE) vulnerability via the hmsg parameter. This vulnerability is triggered via a crafted POST request.
NA
CVE-2024-22633
Setor Informatica Sistema Inteligente para Laboratorios (S.I.L.) 388 exists to contain a remote code execution (RCE) vulnerability via the hprinter parameter. This vulnerability is triggered via a crafted POST request.
6.8
CVSSv2
CVE-2015-6585
hwpapp.dll in Hangul Word Processor allows remote malicious users to execute arbitrary code via a crafted heap spray, and by leveraging a "type confusion" via an HWPX file containing a crafted para text tag.
Hancom Hangul Word Processor 2014
2 Articles
4.3
CVSSv2
CVE-2017-9764
Cross-site scripting (XSS) vulnerability in MetInfo 5.3.17 allows remote malicious users to inject arbitrary web script or HTML via the Client-IP or X-Forwarded-For HTTP header to /include/stat/stat.php in a para action.
Metinfo Metinfo 5.3.17
4
CVSSv2
CVE-2018-17011
An issue exists on TP-Link TL-WR886N 6.0 2.3.4 and TL-WR886N 7.0 1.1.0 devices. Authenticated attackers can crash router services (e.g., inetd, HTTP, DNS, and UPnP) via long JSON data for hosts_info para sun.
Tp-link Tl-wr886n Firmware 7.0 1.1.0
Tp-link Tl-wr886n Firmware 6.0 2.3.4
2.1
CVSSv2
CVE-2008-1943
Buffer overflow in the backend of XenSource Xen Para Virtualized Frame Buffer (PVFB) 3.0 up to and including 3.1.2 allows local users to cause a denial of service (crash) and possibly execute arbitrary code via a crafted description of a shared framebuffer.
Xensource Xen 3.0
Xensource Xen 3.0.2
Xensource Xen 3.0.3
Xensource Xen 3.0.4
Xensource Xen 3.1.2
2.7
CVSSv2
CVE-2012-2625
The PyGrub boot loader in Xen unstable before changeset 25589:60f09d1ab1fe, 4.2.x, and 4.1.x allows local para-virtualized guest users to cause a denial of service (memory consumption) via a large (1) bzip2 or (2) lzma compressed kernel image.
Xen Xen 4.2.0
Xen Xen-unstable
Xen Xen 4.1.0
Xen Xen 4.1.2
Xen Xen 4.1.1
Xen Xen 4.1.3
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
XXE
CVE-2024-34490
SQL injection
CVE-2024-34488
CVE-2024-4507
CVE-2023-7028
CVE-2024-23187
TCP
CVE-2024-4439
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
NEXT »