Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
kde konqueror vulnerabilities and exploits
(subscribe to this query)
2.6
CVSSv2
CVE-2007-0537
The KDE HTML library (kdelibs), as used by Konqueror 3.5.5, does not properly parse HTML comments, which allows remote malicious users to conduct cross-site scripting (XSS) attacks and bypass some XSS protection schemes by embedding certain HTML tags within a comment in a title t...
Kde Konqueror 3.5.5
4.3
CVSSv2
CVE-2007-1308
ecma/kjs_html.cpp in KDE JavaScript (KJS), as used in Konqueror in KDE 3.5.5, allows remote malicious users to cause a denial of service (crash) by accessing the content of an iframe with an ftp:// URI in the src attribute, probably due to a NULL pointer dereference.
Kde Konqueror 3.5.5
1 EDB exploit
5
CVSSv2
CVE-2003-0355
Safari 1.0 Beta 2 (v73) and previous versions does not validate the Common Name (CN) field for X.509 Certificates, which could allow remote malicious users to spoof certificates.
Apple Safari 1.0
Kde Konqueror Embedded
7.5
CVSSv2
CVE-2004-1165
Konqueror 3.3.1 allows remote malicious users to execute arbitrary FTP commands via an ftp:// URL that contains a URL-encoded newline ("%0a") before the FTP command, which causes the commands to be inserted into the resulting FTP session, as demonstrated using a PORT co...
Kde Konqueror 3.3.1
Kde Kdelibs 3.1.5
Kde Kdelibs 3.1.3
Kde Kdelibs 3.2.2
Kde Kdelibs 3.2.1
Kde Kdelibs 3.1
Kde Kdelibs 3.1.2
Kde Kdelibs 3.1.4
Kde Kdelibs 3.1.1
Kde Kdelibs 3.2
1 EDB exploit
5
CVSSv2
CVE-2012-4514
rendering/render_replaced.cpp in Konqueror in KDE prior to 4.9.3 allows remote malicious users to cause a denial of service (NULL pointer dereference) via a crafted web page, related to "trying to reuse a frame with a null part."
Kde Kde 3.3.2
Kde Kde 2.2.1
Kde Kde 3.0 Beta 1
Kde Kde 2.1.2
Kde Kde 2.0
Kde Kde 4.0.3
Kde Kde 4.0.2
Kde Kde 3.0.2
Kde Kde 3.0.5
Kde Kde 2.0 Beta
Kde Kde 2.2
Kde Kde 3.2.0 Beta1
Kde Kde 3.3.1
Kde Kde 3.1.1a
Kde Kde 3.5.5
Kde Kde 2.0.1
Kde Kde 2.2 Beta1
Kde Kde 3.2.2
Kde Kde 3.2.1
Kde Kde
Kde Kde 3.1.5
Kde Kde 3.4.3
1 EDB exploit
7.5
CVSSv2
CVE-2003-0370
Konqueror Embedded and KDE 2.2.2 and previous versions does not validate the Common Name (CN) field for X.509 Certificates, which could allow remote malicious users to spoof certificates via a man-in-the-middle attack.
Apple Safari 1.0
Kde Konqueror Embedded 0.1
Redhat Linux 7.2
Turbolinux Turbolinux Server 7.0
Turbolinux Turbolinux Workstation 7.0
Turbolinux Turbolinux Workstation 8.0
Kde Kde
Turbolinux Turbolinux Server 8.0
Redhat Linux 7.1
6.8
CVSSv2
CVE-2012-4515
Use-after-free vulnerability in khtml/rendering/render_replaced.cpp in Konqueror in KDE 4.7.3, when the context menu is shown, allows remote malicious users to cause a denial of service (crash) and possibly execute arbitrary code by accessing an iframe when it is being updated.
Kde Kde 4.7.3
1 EDB exploit
4.3
CVSSv2
CVE-2011-1168
Cross-site scripting (XSS) vulnerability in the KHTMLPart::htmlError function in khtml/khtml_part.cpp in Konqueror in KDE SC 4.4.0 up to and including 4.6.1 allows remote malicious users to inject arbitrary web script or HTML via the URI in a URL corresponding to an unavailable w...
Kde Kde Sc 4.5.2
Kde Kde Sc 4.4.0
Kde Kde Sc 4.6
Kde Kde Sc 4.5.4
Kde Kde Sc 4.4.1
Kde Kde Sc 4.4.2
Kde Kde Sc 4.5.5
Kde Kde Sc 4.5.1
Kde Kde Sc 4.4.3
Kde Kde Sc 4.6.1
Kde Kde Sc 4.4.4
Kde Kde Sc 4.5.3
Kde Kde Sc 4.4.5
Kde Kde Sc 4.6.0
Kde Kde Sc 4.5.0
5
CVSSv2
CVE-2008-4514
The HTML parser in KDE Konqueror 3.5.9 allows remote malicious users to cause a denial of service (application crash) via a font tag with a long color value, which triggers an assertion error.
Konqueror Konqueror 3.5.9
2 EDB exploits
6.4
CVSSv2
CVE-2012-4513
khtml/imload/scaledimageplane.h in Konqueror in KDE 4.7.3 allows remote malicious users to cause a denial of service (crash) and possibly read memory via large canvas dimensions, which leads to an unexpected sign extension and a heap-based buffer over-read.
Kde Kde 4.7.3
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
TCP
CVE-2024-4577
CVE-2024-2695
CVE-2024-31870
injection
CVE-2024-3813
arbitrary code
CVE-2024-27801
CVE-2024-30120
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
NEXT »