Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
kde konqueror vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2007-4224
KDE Konqueror 3.5.7 allows remote malicious users to spoof the URL address bar by calling setInterval with a small interval and changing the window.location property.
Kde Konqueror 3.5.7
6.8
CVSSv2
CVE-2007-4225
Visual truncation vulnerability in KDE Konqueror 3.5.7 allows remote malicious users to spoof the URL address bar via an http URI with a large amount of whitespace in the user/password portion.
Kde Konqueror 3.5.7
4.3
CVSSv2
CVE-2007-1308
ecma/kjs_html.cpp in KDE JavaScript (KJS), as used in Konqueror in KDE 3.5.5, allows remote malicious users to cause a denial of service (crash) by accessing the content of an iframe with an ftp:// URI in the src attribute, probably due to a NULL pointer dereference.
Kde Konqueror 3.5.5
1 EDB exploit
6.4
CVSSv2
CVE-2007-3143
Visual truncation vulnerability in Konqueror 3.5.5 allows remote malicious users to spoof the address bar and possibly conduct phishing attacks via a long hostname, which is truncated after a certain number of characters, as demonstrated by a phishing attack using HTTP Basic Auth...
Kde Konqueror 3.5.5
4.3
CVSSv2
CVE-2003-1478
Konqueror in KDE 3.0.3 allows remote malicious users to cause a denial of service (core dump) via a web page that begins with a "xFFxFE" byte sequence and a large number of CRLF sequences, as demonstrated using freeze.htm.
Kde Konqueror 3.0.3
1 EDB exploit
5
CVSSv2
CVE-2008-5712
The HTML parser in KDE Konqueror 3.5.9 allows remote malicious users to cause a denial of service (application crash) via (1) a long COLOR attribute in an HR element; or a long (a) BGCOLOR or (b) BORDERCOLOR attribute in a (2) TABLE, (3) TD, or (4) TR element. NOTE: the FONT vect...
Kde Konqueror 3.5.9
2 EDB exploits
2.6
CVSSv2
CVE-2007-3820
konqueror/konq_combo.cc in Konqueror 3.5.7 allows remote malicious users to spoof the data: URI scheme in the address bar via a long URI with trailing whitespace, which prevents the beginning of the URI from being displayed.
Kde Konqueror 3.5.7
5
CVSSv2
CVE-2008-4382
Konqueror in KDE 3.5.9 allows remote malicious users to cause a denial of service (application crash) via Javascript that calls the alert function with a URL-encoded string of a large number of invalid characters.
Kde Konqueror 3.5.9
2.6
CVSSv2
CVE-2007-0537
The KDE HTML library (kdelibs), as used by Konqueror 3.5.5, does not properly parse HTML comments, which allows remote malicious users to conduct cross-site scripting (XSS) attacks and bypass some XSS protection schemes by embedding certain HTML tags within a comment in a title t...
Kde Konqueror 3.5.5
6.8
CVSSv2
CVE-2007-1564
The FTP protocol implementation in Konqueror 3.5.5 allows remote servers to force the client to connect to other servers, perform a proxied port scan, or obtain sensitive information by specifying an alternate server address in an FTP PASV response.
Kde Konqueror 3.5.5
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-23316
SQL injection
type confusion
CVE-2024-20697
CVE-2024-4344
local
CVE-2024-30043
CVE-2024-3821
CVE-2024-5041
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
NEXT »