Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
the address book the address book vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2010-1058
Directory traversal vulnerability in codelib/cfg/common.inc.php in Phpkobo Address Book Script 1.09, when magic_quotes_gpc is disabled, allows remote malicious users to include and execute arbitrary local files via a .. (dot dot) in the LANG_CODE parameter.
Phpkobo Address Book Script 1.09
1 EDB exploit
NA
CVE-2013-2778
Cross-site request forgery (CSRF) vulnerability in addressbook/register/delete_user.php in PHP Address Book 8.2.5 allows remote malicious users to hijack the authentication of administrators for requests that delete accounts, a different vulnerability than CVE-2013-0135.1.
Chatelao Php Address Book 8.2.5
NA
CVE-2006-5715
Easy File Sharing (EFS) Easy Address Book 1.2, when run on an NTFS file system, allows remote malicious users to read arbitrary files under the web root by appending "::$DATA" to the end of an HTTP GET request, which accesses the alternate data stream.
Efs Software Easy Address Book 1.2
1 EDB exploit
NA
CVE-2006-4654
Format string vulnerability in Easy Address Book Web Server 1.2 allows remote malicious users to cause a denial of service (crash) or "compromise the server" via encoded format string specifiers in the query string.
Efs Software Easy Address Book Web Server 1.2
1 EDB exploit
9.8
CVSSv3
CVE-2018-18472
Western Digital WD My Book Live and WD My Book Live Duo (all versions) have a root Remote Command Execution bug via shell metacharacters in the /api/1.0/rest/language_configuration language parameter. It can be triggered by anyone who knows the IP address of the affected device, ...
Westerndigital My Book Live Firmware
1 Github repository
1 Article
NA
CVE-2005-4840
The Outlook Express Address Book control, when using Internet Explorer 6, allows remote malicious users to cause a denial of service (NULL dereference and browser crash) by creating the OutlookExpress.AddressBook COM object, which is not intended for use within Internet Explorer.
Microsoft Outlook Express Book Control
7.5
CVSSv3
CVE-2020-3444
A vulnerability in the packet filtering features of Cisco SD-WAN Software could allow an unauthenticated, remote malicious user to bypass L3 and L4 traffic filters. The vulnerability is due to improper traffic filtering conditions on an affected device. An attacker could exploit ...
Cisco Ios Xe
NA
CVE-2010-4990
SQL injection vulnerability in the Front-edit Address Book (com_addressbook) component for Joomla! allows remote malicious users to execute arbitrary SQL commands via the Itemid parameter in a contact action to index.php.
B-elektro Com Addressbook
1 EDB exploit
NA
CVE-2011-4189
The client in Novell GroupWise 8.0x up to and including 8.02HP3 allows remote malicious users to execute arbitrary code or cause a denial of service (heap memory corruption and application crash) via a long e-mail address in an Address Book (aka .NAB) file.
Novell Groupwise 8.0
Novell Groupwise 8.0.2
Novell Groupwise 8.0.1
1 EDB exploit
NA
CVE-2010-1471
Directory traversal vulnerability in the AddressBook (com_addressbook) component 1.5.0 for Joomla! allows remote malicious users to read arbitrary files via a .. (dot dot) in the controller parameter to index.php.
B-elektro Com Addressbook 1.5.0
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
buffer overflow
type confusion
server-side request forgery
CVE-2024-38440
CVE-2024-27801
CVE-2024-5868
CVE-2024-0582
CVE-2024-37643
CVE-2024-3105
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »