Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
rooms vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2014-5958
The ChatBox - Chat Rooms (aka com.droidchatroom.messengerapp) application 2.5 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle malicious users to spoof servers and obtain sensitive information via a crafted certificate.
Chatbox Chatbox - Chat Rooms 2.5
NA
CVE-2014-5275
Multiple SQL injection vulnerabilities in includes/functions.php in Pro Chat Rooms Text Chat Rooms 8.2.0 allow remote authenticated users to execute arbitrary SQL commands via the (1) password, (2) email, or (3) id parameter.
Prochatrooms Text Chat Rooms 8.2.0
1 EDB exploit
NA
CVE-2008-6502
Directory traversal vulnerability in Pro Chat Rooms 3.0.2 allows remote authenticated users to select an arbitrary local PHP script as an avatar via a .. (dot dot) in the avatar parameter, and cause other users to execute this script by using sendData.php to send a message to (1)...
Prochatrooms Pro Chat Rooms 3.0.2
1 EDB exploit
7.5
CVSSv3
CVE-2023-28597
Zoom clients before 5.13.5 contain an improper trust boundary implementation vulnerability. If a victim saves a local recording to an SMB location and later opens it using a link from Zoom’s web portal, an attacker positioned on an adjacent network to the victim client coul...
Zoom Rooms
Zoom Zoom
Zoom Virtual Desktop Infrastructure
NA
CVE-2008-0437
Multiple buffer overflows in the WebHPVCInstall.HPVirtualRooms14 ActiveX control in HPVirtualRooms14.dll 1.0.0.100, as used in the installation process for HP Virtual Rooms, allow remote malicious users to execute arbitrary code via a long (1) AuthenticationURL, (2) PortalAPIURL,...
Hp Virtual Rooms 1.0.0.100
Microsoft Activex
1 EDB exploit
8.8
CVSSv3
CVE-2023-34121
Improper input validation in the Zoom for Windows, Zoom Rooms, Zoom VDI Windows Meeting clients prior to 5.14.0 may allow an authenticated user to potentially enable an escalation of privilege via network access.
Zoom Zoom
Zoom Rooms
Zoom Virtual Desktop Infrastructure
5.5
CVSSv3
CVE-2023-39202
Untrusted search path in Zoom Rooms Client for Windows and Zoom VDI Client may allow a privileged user to conduct a denial of service via local access.
Zoom Virtual Desktop Infrastructure
Zoom Rooms
7.8
CVSSv3
CVE-2021-34409
It exists that the installation packages of the Zoom Client for Meetings for MacOS (Standard and for IT Admin) installation before version 5.2.0, Zoom Client Plugin for Sharing iPhone/iPad before version 5.2.0, and Zoom Rooms for Conference before version 5.1.0, copy pre- and pos...
Zoom Meetings
Zoom Rooms
Zoom Screen Sharing
7.5
CVSSv3
CVE-2023-36532
Buffer overflow in Zoom Clients prior to 5.14.5 may allow an unauthenticated user to enable a denial of service via network access.
Zoom Rooms
Zoom Zoom
Zoom Virtual Desktop Infrastructure
6.5
CVSSv3
CVE-2023-36535
Client-side enforcement of server-side security in Zoom clients prior to 5.14.10 may allow an authenticated user to enable information disclosure via network access.
Zoom Zoom
Zoom Virtual Desktop Infrastructure
Zoom Rooms
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-33228
CVE-2024-20361
log injection
bypass
CVE-2024-4985
CVE-2024-35223
CVE-2024-29849
CVE-2024-31893
IMAP
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »