Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
toolbox vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2008-0550
Off-by-one error in Steamcast 0.9.75 and previous versions allows remote malicious users to cause a denial of service (daemon crash) or execute arbitrary code via a certain HTTP request that leads to a buffer overflow, as demonstrated by a long User-Agent header.
Radio Toolbox Steamcast
1 EDB exploit
NA
CVE-2008-0548
Steamcast 0.9.75 and previous versions allows remote malicious users to cause a denial of service (daemon crash) via a large integer in the Content-Length HTTP header, which triggers a NULL dereference when malloc fails.
Radio Toolbox Steamcast
NA
CVE-2008-0549
Integer overflow in the OggHeaderParse function in Steamcast 0.9.75 and previous versions allows remote authenticated users to cause a denial of service (daemon crash) via a long Ogg tag.
Radio Toolbox Steamcast
9.8
CVSSv3
CVE-2018-16717
A heap-based buffer overflow exists in nph-viewgif.cgi in the 2.0.7 up to and including 2.2.26 legacy versions of the NCBI ToolBox.
Nih Ncbi Toolbox
6.1
CVSSv3
CVE-2018-16718
An XSS vulnerability exists in wwwblast.c in the 2.0.7 up to and including 2.2.26 legacy versions of the NCBI ToolBox via a crafted -z1 argument.
Nih Ncbi Toolbox
8.8
CVSSv3
CVE-2021-29660
A Cross-Site Request Forgery (CSRF) vulnerability in en/cfg_setpwd.html in Softing AG OPC Toolbox up to and including 4.10.1.13035 allows malicious users to reset the administrative password by inducing the Administrator user to browse a URL controlled by an attacker.
Softing Opc Toolbox
5.4
CVSSv3
CVE-2021-29661
Softing AG OPC Toolbox up to and including 4.10.1.13035 allows /en/diag_values.html Stored XSS via the ITEMLISTVALUES##ITEMID parameter, resulting in JavaScript payload injection into the trace file. This payload will then be triggered every time an authenticated user browses the...
Softing Opc Toolbox
NA
CVE-2007-6139
PHP remote file inclusion vulnerability in index.php in Mp3 ToolBox 1.0 beta 5 allows remote malicious users to execute arbitrary PHP code via a URL in the skin_file parameter.
Mp3 Toolbox 1.0 Beta 5
1 EDB exploit
7.8
CVSSv3
CVE-2023-38641
A vulnerability has been identified in SICAM TOOLBOX II (All versions < V07.10). The affected application's database service is executed as `NT AUTHORITY\SYSTEM`. This could allow a local malicious user to execute operating system commands with elevated privileges.
Siemens Sicam Toolbox Ii
5.4
CVSSv3
CVE-2023-50823
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Wipeout Media CSS & JavaScript Toolbox allows Stored XSS.This issue affects CSS & JavaScript Toolbox: from n/a up to and including 11.7.
Wipeoutmedia Css \\& Javascript Toolbox
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
inject
CVE-2024-34001
CVE-2024-37018
LFI
CVE-2024-1275
CVE-2024-1086
CSRF
CVE-2024-31030
CVE-2024-24919
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »