Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
intuit vulnerabilities and exploits
(subscribe to this query)
9.3
CVSSv2
CVE-2007-0322
Multiple stack-based buffer overflows in the Intuit QuickBooks Online Edition ActiveX control prior to 10 allow remote malicious users to execute arbitrary code via unspecified vectors.
Intuit Quickbooks
5
CVSSv2
CVE-2018-11338
Intuit Lacerte 2017 for Windows in a client/server environment transfers the entire customer list in cleartext over SMB, which allows malicious users to (1) obtain sensitive information by sniffing the network or (2) conduct man-in-the-middle (MITM) attacks via unspecified vector...
Intuit Lacerte
9.3
CVSSv2
CVE-2007-4471
Multiple unspecified vulnerabilities in the Intuit QuickBooks Online Edition ActiveX control prior to 10 allow remote malicious users to create or overwrite arbitrary files via unspecified arguments to the (1) httpGETToFile, (2) httpPOSTFromFile, and possibly other methods, proba...
Intuit Quickbooks
6.9
CVSSv2
CVE-2010-5198
Multiple untrusted search path vulnerabilities in Intuit QuickBooks 2010 allow local users to gain privileges via a Trojan horse (1) dbicudtx11.dll, (2) mfc90enu.dll, or (3) mfc90loc.dll file in the current working directory, as demonstrated by a directory that contains a .des, ....
Intuit Quickbooks 2010
4.6
CVSSv2
CVE-2001-0465
TurboTax saves passwords in a temporary file when a user imports investment tax information from a financial institution, which could allow local users to obtain sensitive information.
Intuit Turbo Tax
3.6
CVSSv2
CVE-2018-3854
An exploitable information disclosure vulnerability exists in the password protection functionality of Quicken Deluxe 2018 for Mac version 5.2.2. A specially crafted sqlite3 request can cause the removal of the password protection, allowing an malicious user to access and modify ...
Intuit Quicken 2018 5.2.2
5
CVSSv2
CVE-2004-0255
Xlight 1.52, with log to screen enabled, allows remote malicious users to cause a denial of service by requesting a long directory consisting of . (dot) and / (slash) characters, which causes the server to crash when the administrator views the log file, possibly triggering a buf...
Xlight Ftp Server Xlight Ftp Server 1.25
Xlight Ftp Server Xlight Ftp Server 1.41
Xlight Ftp Server Xlight Ftp Server 1.45
Xlight Ftp Server Xlight Ftp Server 1.52
1 EDB exploit
5
CVSSv2
CVE-2004-0298
CesarFTP 0.99e allows remote malicious users to cause a denial of service (CPU consumption) via a long RETR parameter.
Aclogic Cesarftp 0.99e
1 EDB exploit
5
CVSSv2
CVE-2004-2081
The samiftp.dll library in Sami FTP Server 1.1.3 allows local users to cause a denial of service (pmsystem.exe crash) by issuing (1) a CD command with a tilde (~) character or dot dot (/../) or (2) a GET command for an unavailable file.
Karjasoft Sami Ftp Server 1.1.3
1 EDB exploit
5
CVSSv2
CVE-2004-2082
The samiftp.dll library in Sami FTP Server 1.1.3 allows remote authenticated users to cause a denial of service (pmsystem.exe crash) via a GET request wit a large number of leading "/" (slash) characters.
Karjasoft Sami Ftp Server 1.1.3
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-49223
CVE-2024-0044
information disclosure
CVE-2024-35753
HTML injection
CVE-2024-21306
CVE-2024-35733
SQL injection
CVE-2024-35732
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
NEXT »