Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
nine:situations:group vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2008-5749
Argument injection vulnerability in Google Chrome 1.0.154.36 on Windows XP SP3 allows remote malicious users to execute arbitrary commands via the --renderer-path option in a chromehtml: URI. NOTE: a third party disputes this issue, stating that Chrome "will ask for user per...
Google Chrome 1.0.154.36
1 EDB exploit
NA
CVE-2008-5750
Argument injection vulnerability in Microsoft Internet Explorer 8 beta 2 on Windows XP SP3 allows remote malicious users to execute arbitrary commands via the --renderer-path option in a chromehtml: URI.
Microsoft Internet Explorer 8
1 EDB exploit
NA
CVE-2008-6922
Multiple stack-based buffer overflows in CMailCOM.dll in CMailServer 5.4.6 allow remote malicious users to execute arbitrary code via a long argument to the (1) CreateUserPath, (2) Logout, (3) DeleteMailByUID, (4) MoveToInbox, (5) MoveToFolder, (6) DeleteMailEx, (7) GetMailDataEx...
Youngzsoft Cmailserver 5.4.6
1 EDB exploit
NA
CVE-2009-0811
Insecure method vulnerability in the SopCast SopCore ActiveX control in sopocx.ocx 3.0.3.501 allows remote malicious users to execute arbitrary programs via an executable file name in the argument to the SetExternalPlayer method.
Sopcast Sopcore Activex Control 3.0.3.501
1 EDB exploit
NA
CVE-2008-6748
Eval injection vulnerability in Megacubo 5.0.7 allows remote malicious users to inject and execute arbitrary PHP code via the play action in a mega:// URI.
Megacubo Megacubo 5.0.7
2 EDB exploits
NA
CVE-2009-1960
inc/init.php in DokuWiki 2009-02-14, rc2009-02-06, and rc2009-01-30, when register_globals is enabled, allows remote malicious users to include and execute arbitrary local files via the config_cascade[main][default][] parameter to doku.php. NOTE: PHP remote file inclusion is also...
Dokuwiki Dokuwiki Rc2009-02-06
Dokuwiki Dokuwiki 2009-02-14
Dokuwiki Dokuwiki Rc2009-01-30
2 EDB exploits
NA
CVE-2009-1068
Stack-based buffer overflow in BS.Player (bsplayer) 2.32 Build 975 Free and 2.34 Build 980 PRO and previous versions allows remote malicious users to cause a denial of service (application crash) or execute arbitrary code via a long hostname in a .bsl playlist file.
Bsplayer Bs.player 2.34
Bsplayer Bs.player 2.32
2 EDB exploits
NA
CVE-2009-2261
PeaZIP 2.6.1, 2.5.1, and previous versions on Windows allows user-assisted remote malicious users to execute arbitrary commands via a .zip archive with a .txt file whose name contains | (pipe) characters and a command.
Giorgio Tani Peazip 1.9.2
Giorgio Tani Peazip 1.9.3
Giorgio Tani Peazip
Giorgio Tani Peazip 1.8.1
Giorgio Tani Peazip 1.0
Giorgio Tani Peazip 2.6.1
Giorgio Tani Peazip 2.4.1
Giorgio Tani Peazip 1.6
Giorgio Tani Peazip 2.2
Giorgio Tani Peazip 1.1
Giorgio Tani Peazip 2.1
Giorgio Tani Peazip 2.3a
Giorgio Tani Peazip 1.5
Giorgio Tani Peazip 2.4
Giorgio Tani Peazip 1.9
Giorgio Tani Peazip 1.4
Giorgio Tani Peazip 1.3
Giorgio Tani Peazip 1.8
Giorgio Tani Peazip 1.10
Giorgio Tani Peazip 2.0
Giorgio Tani Peazip 1.7
Giorgio Tani Peazip 1.9.1
2 EDB exploits
NA
CVE-2008-2551
The DownloaderActiveX Control (DownloaderActiveX.ocx) in Icona SpA C6 Messenger 1.0.0.1 allows remote malicious users to force the download and execution of arbitrary files via a URL in the propDownloadUrl parameter with the propPostDownloadAction parameter set to "run."...
Icona Instant Messenger 1.0.0.1
2 EDB exploits
NA
CVE-2009-2564
NOS Microsystems getPlus Download Manager, as used in Adobe Reader 1.6.2.36 and possibly other versions, Corel getPlus Download Manager prior to 1.5.0.48, and possibly other products, installs NOS\bin\getPlus_HelperSvc.exe with insecure permissions (Everyone:Full Control), which ...
Nos Microsystems Getplus Download Manager 1.6.2.36
Adobe Acrobat Reader 9.0
Adobe Acrobat Reader 9.1
Corel Getplus Download Manager 1.5.0.48
2 EDB exploits
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-30078
CVE-2024-37896
code injection
CVE-2024-3080
CVE-2024-5172
cross-site request forgery
CVE-2024-6111
firmware
CVE-2024-38504
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
NEXT »