Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
kevin vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2023-45656
Cross-Site Request Forgery (CSRF) vulnerability in Kevin Weber Lazy Load for Videos plugin <= 2.18.2 versions.
Kevinweber Lazy Load For Videos
NA
CVE-2023-49844
Cross-Site Request Forgery (CSRF) vulnerability in Kevin Ohashi WPPerformanceTester.This issue affects WPPerformanceTester: from n/a up to and including 2.0.0.
Reviewsignal Wpperformancetester
1 Github repository
312
VMScore
CVE-2011-0905
The rfbSendFramebufferUpdate function in server/libvncserver/rfbserver.c in vino-server in Vino 2.x prior to 2.28.3, 2.32.x prior to 2.32.2, 3.0.x prior to 3.0.2, and 3.1.x prior to 3.1.1, when tight encoding is used, allows remote authenticated users to cause a denial of service...
David King Vino 2.11
David King Vino 2.13
David King Vino 2.12
David King Vino 2.20
David King Vino 2.23
David King Vino 2.26
David King Vino 2.18.1
David King Vino 2.19.5
David King Vino 2.21.90
David King Vino 2.21.91
David King Vino 2.24.1
David King Vino 2.25.3
David King Vino 2.26.2
David King Vino 2.27.5
David King Vino 3.0.1
David King Vino 3.1
David King Vino 2.16
David King Vino 2.15
David King Vino 2.28
David King Vino 2.27
David King Vino 2.28.2
David King Vino 2.17.2
543
VMScore
CVE-2019-11481
Kevin Backhouse discovered that apport would read a user-supplied configuration file with elevated privileges. By replacing the file with a symbolic link, a user could get apport to read any file on the system as root, with unknown consequences.
Canonical Ubuntu Linux 16.04
Canonical Ubuntu Linux 18.04
Canonical Ubuntu Linux 19.04
Canonical Ubuntu Linux 14.04
Canonical Ubuntu Linux 19.10
Apport Project Apport -
312
VMScore
CVE-2011-0904
The rfbSendFramebufferUpdate function in server/libvncserver/rfbserver.c in vino-server in Vino 2.x prior to 2.28.3, 2.32.x prior to 2.32.2, 3.0.x prior to 3.0.2, and 3.1.x prior to 3.1.1, when raw encoding is used, allows remote authenticated users to cause a denial of service (...
David King Vino 2.14
David King Vino 2.15
David King Vino 2.22
David King Vino 2.23
David King Vino 2.28.2
David King Vino 3.0.0
David King Vino 3.0.1
David King Vino 2.9
David King Vino 2.10
David King Vino 2.18
David King Vino 2.19
David King Vino 2.26
David King Vino 2.27
David King Vino 2.7.92
David King Vino 2.7.3.1
David King Vino 2.24.1
David King Vino 2.25.3
David King Vino 2.26.2
David King Vino 2.27.5
David King Vino 2.17.92
David King Vino 2.17.2
David King Vino 2.21.2
571
VMScore
CVE-2015-0250
XML external entity (XXE) vulnerability in the SVG to (1) PNG and (2) JPG conversion classes in Apache Batik 1.x prior to 1.8 allows remote malicious users to read arbitrary files or cause a denial of service via a crafted SVG file.
Canonical Ubuntu Linux 14.04
Canonical Ubuntu Linux 12.04
Canonical Ubuntu Linux 14.10
Apache Batik
Redhat Jboss Enterprise Brms Platform
2 Github repositories
605
VMScore
CVE-2010-1411
Multiple integer overflows in the Fax3SetupState function in tif_fax3.c in the FAX3 decoder in LibTIFF prior to 3.9.3, as used in ImageIO in Apple Mac OS X 10.5.8 and Mac OS X 10.6 prior to 10.6.4, allow remote malicious users to execute arbitrary code or cause a denial of servic...
Apple Mac Os X Server 10.5.8
Apple Mac Os X Server 10.6.0
Apple Mac Os X 10.6.0
Apple Mac Os X 10.6.1
Apple Mac Os X Server 10.6.3
Apple Mac Os X 10.6.2
Apple Mac Os X 10.6.3
Apple Mac Os X 10.5.8
Apple Mac Os X Server 10.6.1
Apple Mac Os X Server 10.6.2
1 Github repository
409
VMScore
CVE-2019-11476
An integer overflow in whoopsie prior to 0.2.52.5ubuntu0.1, 0.2.62ubuntu0.1, 0.2.64ubuntu0.1, 0.2.66, results in an out-of-bounds write to a heap allocated buffer when processing large crash dumps. This results in a crash or possible code-execution in the context of the whoopsie ...
Canonical Ubuntu Linux 16.04
Canonical Ubuntu Linux 18.04
Canonical Ubuntu Linux 18.10
Canonical Ubuntu Linux 19.04
445
VMScore
CVE-2012-6128
Multiple stack-based buffer overflows in http.c in OpenConnect prior to 4.08 allow remote VPN gateways to cause a denial of service (application crash) via a long (1) hostname, (2) path, or (3) cookie list in a response.
Infradead Openconnect 3.16
Infradead Openconnect 3.15
Infradead Openconnect 3.00
Infradead Openconnect 2.26
Infradead Openconnect 2.12
Infradead Openconnect 2.11
Infradead Openconnect 1.00
Infradead Openconnect 3.17
Infradead Openconnect 4.02
Infradead Openconnect 3.02
Infradead Openconnect 3.01
Infradead Openconnect 2.21
Infradead Openconnect 2.20
Infradead Openconnect 1.20
Infradead Openconnect 1.10
Infradead Openconnect 4.00
Infradead Openconnect 4.01
Infradead Openconnect 3.14
Infradead Openconnect 3.13
Infradead Openconnect 2.25
Infradead Openconnect 2.24
Infradead Openconnect 2.10
445
VMScore
CVE-2011-0282
The Key Distribution Center (KDC) in MIT Kerberos 5 (aka krb5) 1.6.x up to and including 1.9, when an LDAP backend is used, allows remote malicious users to cause a denial of service (NULL pointer dereference or buffer over-read, and daemon crash) via a crafted principal name.
Mit Kerberos 5 1.7.1
Mit Kerberos 5 1.8
Mit Kerberos 5 1.6
Mit Kerberos 5 1.8.1
Mit Kerberos 5 1.8.2
Mit Kerberos 5-1.6.3
Mit Kerberos 5 1.7
Mit Kerberos 5 1.6.1
Mit Kerberos 5 1.6.2
Mit Kerberos 5 1.8.3
Mit Kerberos 5 1.9
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-5248
CVE-2024-3110
CVE-2024-5552
CVE-2024-29415
HTML injection
CVE-2024-3095
TCP
type confusion
CVE-2024-1800
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »