Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
alexander klink vulnerabilities and exploits
(subscribe to this query)
6.8
CVSSv2
CVE-2008-1237
Multiple unspecified vulnerabilities in Mozilla Firefox prior to 2.0.0.13, Thunderbird prior to 2.0.0.13, and SeaMonkey prior to 1.1.9 allow remote malicious users to cause a denial of service (crash) and possibly execute arbitrary code via unknown vectors related to the JavaScri...
Mozilla Thunderbird
Mozilla Firefox
Mozilla Seamonkey
9.3
CVSSv2
CVE-2007-3738
Multiple unspecified vulnerabilities in Mozilla Firefox prior to 2.0.0.5 allow remote malicious users to execute arbitrary code via a crafted XPCNativeWrapper.
Mozilla Firefox 2.0
Mozilla Firefox 2.0.0.1
Mozilla Firefox 2.0.0.2
Mozilla Firefox 2.0.0.3
Mozilla Firefox 2.0.0.4
9.3
CVSSv2
CVE-2007-5338
Mozilla Firefox prior to 2.0.0.8 and SeaMonkey prior to 1.1.5 allow remote malicious users to execute arbitrary Javascript with user privileges by using the Script object to modify XPCNativeWrappers in a way that causes the script to be executed when a chrome action is performed.
Mozilla Firefox
Mozilla Seamonkey
7.5
CVSSv2
CVE-2007-1363
Multiple SQL injection vulnerabilities in DropAFew prior to 0.2.1 allow remote malicious users to execute arbitrary SQL commands via the (1) id parameter in the delete action in (a) search.php or (b) search-pda.php, or the (2) calories parameter in a save action in editlogcal.php...
Dropafew Dropafew
2 EDB exploits
6.4
CVSSv2
CVE-2007-1364
DropAFew prior to 0.2.1 does not require authorization for certain privileged actions, which allows remote malicious users to (1) view the logged calorie information of arbitrary users via the id parameter in editlogcal.php, (2) add arbitrary links via links.php, or (3) create ar...
Dropafew Dropafew
1 EDB exploit
6.8
CVSSv2
CVE-2006-2109
Cross-site scripting (XSS) vulnerability in the parse_query_str function in include/print.php in JSBoard 2.0.10 and 2.0.11, and possibly other versions prior to 2.0.12, allows remote malicious users to inject arbitrary web script or HTML via parameters that are set as global vari...
Jsboard Jsboard 2.0.10
Jsboard Jsboard 2.0.7
Jsboard Jsboard 2.0.8
Jsboard Jsboard 2.0.9
Jsboard Jsboard
1 EDB exploit
6.8
CVSSv2
CVE-2009-3580
Cross-site request forgery (CSRF) vulnerability in am.pl in SQL-Ledger 2.8.24 allows remote malicious users to hijack the authentication of arbitrary users for requests that change a password via the login, new_password, and confirm_password parameters in a preferences action.
Sql-ledger Sql-ledger 2.8.24
5.1
CVSSv2
CVE-2009-3583
Directory traversal vulnerability in the Preferences menu item in SQL-Ledger 2.8.24 allows remote malicious users to include and execute arbitrary local files via a .. (dot dot) in the countrycode field.
Sql-ledger Sql-ledger 2.8.24
10
CVSSv2
CVE-2007-1465
Stack-based buffer overflow in dproxy.c for dproxy 0.1 up to and including 0.5 allows remote malicious users to execute arbitrary code via a long DNS query packet to UDP port 53.
Dproxy Dproxy 0.5
Dproxy Dproxy 0.3
Dproxy Dproxy 0.4
Dproxy Dproxy 0.1
Dproxy Dproxy 0.2
1 EDB exploit
4.3
CVSSv2
CVE-2008-7017
Cross-site scripting (XSS) vulnerability in analyse.php in CAcert 20080921, and possibly other versions prior to 20080928, allows remote malicious users to inject arbitrary web script or HTML via the CN (CommonName) field in the subject of an X.509 certificate.
Cacert Cacert 20080921
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
authentication bypass
CVE-2024-30043
camera
CVE-2023-40404
CVE-2024-2793
client side
CVE-2024-4469
CVE-2024-3565
CVE-2024-29825
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
NEXT »