Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
kde kdelibs vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2007-3820
konqueror/konq_combo.cc in Konqueror 3.5.7 allows remote malicious users to spoof the data: URI scheme in the address bar via a long URI with trailing whitespace, which prevents the beginning of the URI from being displayed.
Kde Konqueror 3.5.7
NA
CVE-2007-1564
The FTP protocol implementation in Konqueror 3.5.5 allows remote servers to force the client to connect to other servers, perform a proxied port scan, or obtain sensitive information by specifying an alternate server address in an FTP PASV response.
Kde Konqueror 3.5.5
1 EDB exploit
NA
CVE-2007-1308
ecma/kjs_html.cpp in KDE JavaScript (KJS), as used in Konqueror in KDE 3.5.5, allows remote malicious users to cause a denial of service (crash) by accessing the content of an iframe with an ftp:// URI in the src attribute, probably due to a NULL pointer dereference.
Kde Konqueror 3.5.5
1 EDB exploit
NA
CVE-2007-0537
The KDE HTML library (kdelibs), as used by Konqueror 3.5.5, does not properly parse HTML comments, which allows remote malicious users to conduct cross-site scripting (XSS) attacks and bypass some XSS protection schemes by embedding certain HTML tags within a comment in a title t...
Kde Konqueror 3.5.5
NA
CVE-2006-4811
Integer overflow in Qt 3.3 prior to 3.3.7, 4.1 prior to 4.1.5, and 4.2 prior to 4.2.1, as used in the KDE khtml library, kdelibs 3.1.3, and possibly other packages, allows remote malicious users to cause a denial of service (crash) and possibly execute arbitrary code via a crafte...
Redhat Kdelibs 3.1.3
Qt Qt 3.3.0
Qt Qt 3.3.3
Qt Qt 3.3.4
Qt Qt 3.3.1
Qt Qt 3.3.2
Qt Qt 4.1.0
Qt Qt 3.3.5
Qt Qt 3.3.6
Qt Qt 4.1.3
Qt Qt 4.1.4
Qt Qt 4.1.1
Qt Qt 4.1.2
Qt Qt 4.2.0
NA
CVE-2006-3672
KDE Konqueror 3.5.1 and previous versions allows remote malicious users to cause a denial of service (application crash) by calling the replaceChild method on a DOM object, which triggers a null dereference, as demonstrated by calling document.replaceChild with a 0 (zero) argumen...
Kde Konqueror 3.2.2.6
Kde Konqueror 3.1.2
Kde Konqueror 3.0.2
Kde Konqueror 3.3
Kde Konqueror 2.2.2
Kde Konqueror 3.1
Kde Konqueror 3.0
Kde Konqueror 3.3.1
Kde Konqueror 3.0.1
Kde Konqueror 3.0.3
Kde Konqueror 3.1.1
Kde Konqueror 2.1.2
Kde Konqueror
Kde Konqueror 3.2.3
Kde Konqueror 3.0.5b
Kde Konqueror 2.2.1
Kde Konqueror 3.1.3
Kde Konqueror 3.3.2
Kde Konqueror 3.1.4
Kde Konqueror 3.2.1
Kde Konqueror 3.1.5
Kde Konqueror 3.2.2
1 EDB exploit
NA
CVE-2006-0019
Heap-based buffer overflow in the encodeURI and decodeURI functions in the kjs JavaScript interpreter engine in KDE 3.2.0 up to and including 3.5.0 allows remote malicious users to execute arbitrary code via a crafted, UTF-8 encoded URI.
Kde Kde 3.3.2
Kde Kde 3.2.0 Beta1
Kde Kde 3.3.1
Kde Kde 3.2.2
Kde Kde 3.2.1
Kde Kde 3.4.0
Kde Kde 3.4
Kde Kde 3.5.0
Kde Kde 3.3.x
Kde Kde 3.2.0
Kde Kde 3.3
Kde Kde 3.2
Kde Kde 3.2.3
Kde Kde 3.4.2
Kde Kde 3.4.1
Kde Kde 3.3.0
Kde Kde 3.2.x
7.5
CVSSv3
CVE-2005-1920
The (1) Kate and (2) Kwrite applications in KDE KDE 3.2.x up to and including 3.4.0 do not properly set the same permissions on the backup file as were set on the original file, which could allow local users and possibly remote malicious users to obtain sensitive information.
Kde Kde
Debian Debian Linux 3.1
NA
CVE-2005-0078
The KDE screen saver in KDE prior to 3.0.5 does not properly check the return value from a certain function call, which allows attackers with physical access to cause a crash and access the desktop session.
Kde Kde 2.2.1
Kde Kde 3.0 Beta 1
Kde Kde 2.0
Kde Kde 3.0.2
Redhat Enterprise Linux Desktop 3.0
Kde Kde 2.2
Redhat Enterprise Linux 3.0
Redhat Enterprise Linux 2.1
Kde Kde 2.0.1
Kde Kde 2.2 Beta1
Debian Debian Linux 3.0
Kde Kde 2.1
Kde Kde 3.0.1
Redhat Linux Advanced Workstation 2.1
Kde Kde 2.1 Beta2
Kde Kde 3.0 Beta 2
Kde Kde 3.0.4
Kde Kde 3.0
Kde Kde 1.1.2
Kde Kde 1.1.1
Kde Kde 1.1
Kde Kde 1.0
NA
CVE-2005-0237
The International Domain Name (IDN) support in Konqueror 3.2.1 on KDE 3.2.1 allows remote malicious users to spoof domain names using punycode encoded domain names that are decoded in URLs and SSL certificates in a way that uses homograph characters from other character sets, whi...
Kde Konqueror 3.2.1
Kde Kde 3.2.1
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27802
template injection
CVE-2024-0044
code injection
CVE-2024-35474
CVE-2024-27857
CVE-2024-23251
CVE-2024-23692
physical
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
NEXT »