Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
file browser vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2019-19916
In Midori Browser 0.5.11 (on Windows 10), Content Security Policy (CSP) is not applied correctly to all parts of multipart content sent with the multipart/x-mixed-replace MIME type. This could result in script running where CSP should have blocked it, allowing for cross-site scri...
Midori-browser Midori 0.5.11
2 Github repositories
6.8
CVSSv2
CVE-2018-10496
This vulnerability allows remote malicious users to execute arbitrary code on vulnerable installations of Samsung Internet Browser Fixed in version 6.4.0.15. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malici...
Samsung Samsung Internet Browser
7.5
CVSSv2
CVE-2005-1602
SQL injection vulnerability in login.asp for Net56 Browser Based File Manager 1.0 allows remote malicious users to execute arbitrary SQL commands and bypass authentication via the password field.
Net56 File Manager 1.0
9.3
CVSSv2
CVE-2012-5006
Heap-based buffer overflow in npdjvu.dll in Caminova DjVu Browser Plug-in 6.1.4 Build 27351 and other versions prior to 6.1.4.27993 allows remote malicious users to execute arbitrary code via a crafted Sjbz chunk in a djvu file.
Caminova Djvu Browser Plug-in
4
CVSSv2
CVE-2021-20485
IBM Sterling File Gateway 2.2.0.0 up to and including 6.1.0.3 could allow a remote malicious user to obtain sensitive information when a detailed technical error message is returned in the browser. This information could be used in further attacks against the system. IBM X-Force ...
Ibm Sterling File Gateway
4
CVSSv2
CVE-2004-2659
Opera offers an Open button to verify that a user wishes to execute a downloaded file, which allows user-assisted remote malicious users to construct a race condition that tricks a user into clicking Open via a request for a different mouse or keyboard action very shortly before ...
Mozilla Mozilla -
Opera Opera Browser -
5
CVSSv2
CVE-2020-4476
IBM Sterling File Gateway 2.2.0.0 up to and including 2.2.6.5 and 6.0.0.0 up to and including 6.0.3.2 could allow a remote malicious user to obtain sensitive information when a detailed technical error message is returned in the browser. This information could be used in further ...
Ibm Sterling File Gateway
4.3
CVSSv2
CVE-2012-4013
The WebView class in the Cybozu KUNAI Browser for Remote Service application beta for Android allows remote malicious users to execute arbitrary JavaScript code, and obtain sensitive information, via a crafted application that places this code into a local file associated with a ...
Cybozu Kunai Browser For Remote Service -
4.3
CVSSv2
CVE-2009-3004
Avant Browser 11.7 Builds 35 and 36 allows remote malicious users to spoof the address bar, via window.open with a relative URI, to show an arbitrary URL on the web site visited by the victim, as demonstrated by a visit to an attacker-controlled web page, which triggers a spoofed...
Avant Force Avant Browser 11.7
6.8
CVSSv2
CVE-2012-0978
Stack-based buffer overflow in npjp2.dll in LuraWave JP2 Browser Plug-In 1.1.1.11 and other versions prior to 2.1.1.11 allows remote malicious users to execute arbitrary code via a JPEG2000 (JP2) file with a crafted Quantization Default (QCD) marker segment.
Luratech Lurawave Jp2 Browser Plug-in 1.1.1.11
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-5274
CVE-2024-35388
CVE-2024-35396
elevation of privilege
CVE-2021-47544
file upload
CVE-2021-47545
memory leak
CVE-2024-4956
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »