Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
sub vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2008-2722
Menalto Gallery prior to 2.2.5 allows remote malicious users to bypass permissions for sub-albums via a ZIP archive.
Menalto Gallery 2.2.1
Menalto Gallery 2.2.2
Menalto Gallery 2.2.3
Menalto Gallery
Menalto Gallery 2.1
Menalto Gallery 2.1.1
Menalto Gallery 2.1.2
Menalto Gallery 2.2.0
7.8
CVSSv3
CVE-2023-28587
Memory corruption in BT controller while parsing debug commands with specific sub-opcodes at HCI interface level.
Qualcomm 315 5g Iot Modem Firmware -
Qualcomm Aqt1000 Firmware -
Qualcomm Ar8031 Firmware -
Qualcomm Ar8035 Firmware -
Qualcomm Csra6620 Firmware -
Qualcomm Csra6640 Firmware -
Qualcomm Csrb31024 Firmware -
Qualcomm Fastconnect 6200 Firmware -
Qualcomm Fastconnect 6700 Firmware -
Qualcomm Fastconnect 6800 Firmware -
Qualcomm Fastconnect 6900 Firmware -
Qualcomm Fastconnect 7800 Firmware -
Qualcomm Qam8255p Firmware -
Qualcomm Qam8295p Firmware -
Qualcomm Qam8650p Firmware -
Qualcomm Qam8775p Firmware -
Qualcomm Qca2062 Firmware -
Qualcomm Qca2064 Firmware -
Qualcomm Qca2065 Firmware -
Qualcomm Qca2066 Firmware -
Qualcomm Qca6391 Firmware -
Qualcomm Qca6420 Firmware -
7.5
CVSSv3
CVE-2021-23382
The package postcss prior to 8.2.13 are vulnerable to Regular Expression Denial of Service (ReDoS) via getAnnotationURL() and loadAnnotation() in lib/previous-map.js. The vulnerable regexes are caused mainly by the sub-pattern \/\*\s* sourceMappingURL=(.*).
Postcss Postcss
NA
CVE-2010-1462
Directory traversal vulnerability in WebAsyst Shop-Script FREE has unknown impact and attack vectors via the sub parameter.
Webasyst Llc Shop-script
NA
CVE-1999-0827
By default, Internet Explorer 5.0 and other versions enables the "Navigate sub-frames across different domains" option, which allows frame spoofing.
Netscape Navigator
Microsoft Ie 4.0
Microsoft Internet Explorer 3.0.2
Microsoft Internet Explorer 3.0
Microsoft Internet Explorer 3.1
Microsoft Internet Explorer 3.2
Microsoft Internet Explorer 4.0
Microsoft Internet Explorer 4.0.1
Microsoft Internet Explorer 4.1
Microsoft Internet Explorer 4.5
Microsoft Internet Explorer 5.0
6.1
CVSSv3
CVE-2023-24601
OX App Suite before frontend 7.10.6-rev24 allows XSS via a non-app deeplink such as the jslob API's registry sub-tree.
Open-xchange Ox App Suite 7.10.6
Open-xchange Ox App Suite
4.7
CVSSv3
CVE-2016-0623
Unspecified vulnerability in Oracle Sun Solaris 11.3 allows remote malicious users to affect integrity via vectors related to the Automated Installer sub-component.
Oracle Solaris 11.3
NA
CVE-2010-4433
Unspecified vulnerability in Oracle Solaris 10 allows remote malicious users to affect confidentiality via unknown vectors related to Ethernet and the Driver sub-component.
Sun Sunos 5.10
7.8
CVSSv3
CVE-2023-27792
An issue found in IXP Data Easy Install v.6.6.14884.0 allows an malicious user to escalate privileges via lack of permissions applied to sub directories.
Ixpdata Easyinstall 6.6.148840
5.5
CVSSv3
CVE-2017-11002
In all Qualcomm products with Android releases from CAF using the Linux kernel, while processing a vendor sub-command, a buffer over-read can occur.
Google Android
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
inject
CVE-2024-34001
CVE-2024-37018
LFI
CVE-2024-1275
CVE-2024-1086
CSRF
CVE-2024-31030
CVE-2024-24919
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »