Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
coresecurity.com vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2010-04403
Core Security Technologies Advisory - The Cisco Secure Desktop web application does not sufficiently verify if a well-formed request was provided by the user who submitted the POST request, resulting in a cross-site scripting vulnerability. In order to be able to successfully mak...
605
VMScore
CVE-2010-0485
The Windows kernel-mode drivers in win32k.sys in Microsoft Windows 2000 SP4, XP SP2 and SP3, Server 2003 SP2, Vista SP1 and SP2, Server 2008 Gold and SP2, Windows 7, and Server 2008 R2 "do not properly validate all callback parameters when creating a new window," which ...
Microsoft Windows 2000
Microsoft Windows Xp
Microsoft Windows Xp -
Microsoft Windows 2003 Server
Microsoft Windows Vista -
Microsoft Windows Vista
Microsoft Windows Server 2008
Microsoft Windows Server 2008 -
Microsoft Windows 7 -
Microsoft Windows Server 2008 R2
NA
CVE-2009-28983
Core Security Technologies Advisory - Multiple cross-site scripting vulnerabilities (both stored and reflected) have been found in the web interface of Hyperic HQ, which can be exploited by an attacker to execute arbitrary JavaScript code in the context of the browser of a legiti...
NA
CVE-2009-09493
Core Security Technologies Advisory - CUPS versions 1.3.9 and below suffer from a handling flaw of the IPP_TAG_UNSUPPORTED tag that allows attackers to cause a remote pre-authentication denial of service.
383
VMScore
CVE-2009-2897
Multiple cross-site scripting (XSS) vulnerabilities in hq/web/common/GenericError.jsp in the generic exception handler in the web interface in SpringSource Hyperic HQ 3.2.x prior to 3.2.6.1, 4.0.x prior to 4.0.3.1, 4.1.x prior to 4.1.2.1, and 4.2-beta1; Application Management Sui...
Springsource Hyperic Hq 3.2.1
Springsource Hyperic Hq 3.2
Springsource Hyperic Hq 4.0.1
Springsource Hyperic Hq 4.0.2
Springsource Application Management Suite 2.0.0
Springsource Hyperic Hq 3.2.2
Springsource Hyperic Hq 3.2.3
Springsource Hyperic Hq 4.0.3
Springsource Hyperic Hq 4.1.1
Springsource Hyperic Hq 3.2.4
Springsource Hyperic Hq 3.2.5
Springsource Hyperic Hq 4.1.0
Springsource Hyperic Hq 4.1.2
Springsource Hyperic Hq 3.2.0
Springsource Hyperic Hq 3.2.6
Springsource Hyperic Hq 4.0.0
Springsource Hyperic Hq 4.2
Springsource Tc Server 6.0.20
231
VMScore
CVE-2006-5793
The sPLT chunk handling code (png_set_sPLT function in pngset.c) in libpng 1.0.6 up to and including 1.2.12 uses a sizeof operator on the wrong data type, which allows context-dependent malicious users to cause a denial of service (crash) via malformed sPLT chunks that trigger an...
Greg Roelofs Libpng 1.0.9
Greg Roelofs Libpng 1.2.0
Greg Roelofs Libpng 1.2.5
Greg Roelofs Libpng 1.2.6
Greg Roelofs Libpng 1.0.7
Greg Roelofs Libpng 1.0.8
Greg Roelofs Libpng 1.2.3
Greg Roelofs Libpng 1.2.4
Greg Roelofs Libpng 1.0.6
Greg Roelofs Libpng 1.2.12
Greg Roelofs Libpng 1.2.2
Greg Roelofs Libpng 1.2.8
Greg Roelofs Libpng 1.2.9
Greg Roelofs Libpng 1.2.1
Greg Roelofs Libpng 1.2.10
Greg Roelofs Libpng 1.2.11
Greg Roelofs Libpng 1.2.7
Greg Roelofs Libpng 1.2.7rc1
NA
CVE-2013-25713
Core Security Technologies Advisory - A security vulnerability was found in Xpient POS systems running an instance of Iris 3.8 software. The POS cash drawer could be remotely triggered to open if a malicious agent has access to the POS network and is allowed to send a crafted mes...
NA
CVE-2009-11403
Core Security Technologies Advisory - Internet Explorer suffers from a security zone restrictions bypass vulnerability.
445
VMScore
CVE-2008-0196
Multiple directory traversal vulnerabilities in WordPress 2.0.11 and previous versions allow remote malicious users to read arbitrary files via a .. (dot dot) in (1) the page parameter to certain PHP scripts under wp-admin/ or (2) the import parameter to wp-admin/admin.php, as de...
Wordpress Wordpress
NA
CVE-2015-00053
Core Security Technologies Advisory - The Microsoft Netlogon Remote Protocol is a remote procedure call (RPC) interface that is used, among other things, for user and machine authentication on domain-based networks. In a scenario where a client machine connects to a domain-joined...
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
bypass
open redirect
CVE-2024-4358
CVE-2024-24199
CVE-2024-5550
CVE-2024-5305
CVE-2024-30373
CVE-2024-1800
deserialization
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »