Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
fla vulnerabilities and exploits
(subscribe to this query)
9.3
CVSSv2
CVE-2021-42267
Adobe Animate version 21.0.9 (and previous versions) is affected by a memory corruption vulnerability due to insecure handling of a malicious FLA file, potentially resulting in arbitrary code execution in the context of the current user. User interaction is required to exploit th...
Adobe Animate
9.3
CVSSv2
CVE-2020-9748
Adobe Animate version 20.5 (and previous versions) is affected by a stack overflow vulnerability, which could lead to arbitrary code execution in the context of the current user. Exploitation requires user interaction in that a victim must open a crafted .fla file in Animate.
Adobe Animate
9.3
CVSSv2
CVE-2020-9750
Adobe Animate version 20.5 (and previous versions) is affected by an out-of-bounds read vulnerability, which could result in arbitrary code execution in the context of the current user. Exploitation requires user interaction in that a victim must open a crafted .fla file in Anima...
Adobe Animate
9.3
CVSSv2
CVE-2020-9749
Adobe Animate version 20.5 (and previous versions) is affected by an out-of-bounds read vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation requires user interaction in that a victim must open a crafted .fla file in Animate...
Adobe Animate
9.3
CVSSv2
CVE-2021-42269
Adobe Animate version 21.0.9 (and previous versions) are affected by a use-after-free vulnerability in the processing of a malformed FLA file that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in ...
Adobe Animate
4.3
CVSSv2
CVE-2021-42268
Adobe Animate version 21.0.9 (and previous versions) is affected by a Null pointer dereference vulnerability when parsing a specially crafted FLA file. An unauthenticated attacker could leverage this vulnerability to achieve an application denial-of-service in the context of the ...
Adobe Animate
9
CVSSv2
CVE-2020-28885
Liferay Portal Server tested on 7.3.5 GA6, 7.2.0 GA1 is affected by OS Command Injection. An administrator user can inject commands through the Gogo Shell module to execute any OS command on the Liferay Portal Sever. NOTE: The developer disputes this as a vulnerability since it i...
Liferay Liferay Portal 7.2
Liferay Liferay Portal 7.3.5
6.8
CVSSv2
CVE-2009-4795
Multiple SQL injection vulnerabilities in Xlight FTP Server prior to 3.2.1, when ODBC authentication is enabled, allow remote malicious users to execute arbitrary SQL commands via the (1) USER (aka username) or (2) PASS (aka password) command.
Xlightftpd Xlight Ftp Server 2.861
Xlightftpd Xlight Ftp Server 2.86
Xlightftpd Xlight Ftp Server 2.706
Xlightftpd Xlight Ftp Server 2.70
Xlightftpd Xlight Ftp Server 2.02
Xlightftpd Xlight Ftp Server 2.01
Xlightftpd Xlight Ftp Server 1.60
Xlightftpd Xlight Ftp Server
Xlightftpd Xlight Ftp Server 3.0.5
Xlightftpd Xlight Ftp Server 3.1.6
Xlightftpd Xlight Ftp Server 3.1.5
Xlightftpd Xlight Ftp Server 2.85
Xlightftpd Xlight Ftp Server 2.835
Xlightftpd Xlight Ftp Server 2.60
Xlightftpd Xlight Ftp Server 2.40
Xlightftpd Xlight Ftp Server 2.0
Xlightftpd Xlight Ftp Server 1.65
Xlightftpd Xlight Ftp Server 3.0
Xlightftpd Xlight Ftp Server 2.8
Xlightftpd Xlight Ftp Server 2.72
Xlightftpd Xlight Ftp Server 2.1
Xlightftpd Xlight Ftp Server 2.03
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-7073
CVE-2024-5496
CVE-2024-5495
XPath injection
bypass
CVE-2024-30043
CVE-2024-24919
denial of service
CVE-2024-35468
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2