Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
news project news vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2007-6127
Multiple SQL injection vulnerabilities in project alumni 1.0.9 and previous versions allow remote malicious users to execute arbitrary SQL commands via the year parameter to (1) view.page.inc.php, which is reachable through a view action to index.php; or (2) the year parameter to...
Project Alumni Project Alumni
1 EDB exploit
7.5
CVSSv2
CVE-2005-3120
Stack-based buffer overflow in the HTrjis function in Lynx 2.8.6 and previous versions allows remote NNTP servers to execute arbitrary code via certain article headers containing Asian characters that cause Lynx to add extra escape (ESC) characters.
Invisible-island Lynx
Debian Debian Linux 3.1
Debian Debian Linux 3.0
1 EDB exploit
7.5
CVSSv2
CVE-2003-0205
gkrellm-newsticker gkrellm plugin prior to 0.3-3.1 allows remote malicious users to execute arbitrary commands via shell metacharacters in the ticker title of a URI.
Gkrellm Newsticker Gkrellm Newsticker 0.3
7.2
CVSSv2
CVE-2007-6601
The DBLink module in PostgreSQL 8.2 prior to 8.2.6, 8.1 prior to 8.1.11, 8.0 prior to 8.0.15, 7.4 prior to 7.4.19, and 7.3 prior to 7.3.21, when local trust or ident authentication is used, allows remote malicious users to gain privileges via unspecified vectors. NOTE: this issue...
Postgresql Postgresql 8.2
Postgresql Postgresql
Debian Debian Linux 3.1
Debian Debian Linux 4.0
Fedoraproject Fedora 8
Fedoraproject Fedora 7
6.9
CVSSv2
CVE-2007-3278
PostgreSQL 8.1 and probably later versions, when local trust authentication is enabled and the Database Link library (dblink) is installed, allows remote malicious users to access arbitrary accounts and execute arbitrary SQL queries via a dblink host parameter that proxies the co...
Postgresql Postgresql
Debian Debian Linux 3.1
Debian Debian Linux 4.0
6.8
CVSSv2
CVE-2017-17532
examples/framework/news/news3.py in Kiwi 1.9.22 does not validate strings before launching the program specified by the BROWSER environment variable, which might allow remote malicious users to conduct argument-injection attacks via a crafted URL.
Kiwi Project Kiwi 1.9.22
6.8
CVSSv2
CVE-2008-5506
Mozilla Firefox 3.x prior to 3.0.5 and 2.x prior to 2.0.0.19, Thunderbird 2.x prior to 2.0.0.19, and SeaMonkey 1.x prior to 1.1.14 allows remote malicious users to bypass the same origin policy by causing the browser to issue an XMLHttpRequest to an attacker-controlled resource t...
Mozilla Firefox
Mozilla Thunderbird
Mozilla Seamonkey
Canonical Ubuntu Linux 6.06
Canonical Ubuntu Linux 7.10
Canonical Ubuntu Linux 8.04
Canonical Ubuntu Linux 8.10
Debian Debian Linux 4.0
Debian Debian Linux 5.0
6.8
CVSSv2
CVE-2008-5512
Multiple unspecified vulnerabilities in Mozilla Firefox 3.x prior to 3.0.5 and 2.x prior to 2.0.0.19, Thunderbird 2.x prior to 2.0.0.19, and SeaMonkey 1.x prior to 1.1.14 allow remote malicious users to run arbitrary JavaScript with chrome privileges via unknown vectors in which ...
Mozilla Seamonkey
Mozilla Firefox
Mozilla Thunderbird
Canonical Ubuntu Linux 6.06
Canonical Ubuntu Linux 7.10
Canonical Ubuntu Linux 8.04
Canonical Ubuntu Linux 8.10
Debian Debian Linux 5.0
Debian Debian Linux 4.0
6.8
CVSSv2
CVE-2008-2803
The mozIJSSubScriptLoader.LoadScript function in Mozilla Firefox prior to 2.0.0.15, Thunderbird 2.0.0.14 and previous versions, and SeaMonkey prior to 1.1.10 does not apply XPCNativeWrappers to scripts loaded from (1) file: URIs, (2) data: URIs, or (3) certain non-canonical chrom...
Mozilla Firefox 2.0
Mozilla Firefox 2.0.0.1
Mozilla Firefox 2.0.0.4
Mozilla Firefox 2.0.0.5
Mozilla Seamonkey 1.1.4
Mozilla Seamonkey 1.1.5
Mozilla Thunderbird 2.0.0.12
Mozilla Thunderbird 2.0.0.13
Mozilla Thunderbird 2.0.0.9
Mozilla Firefox
Mozilla Firefox 2.0.0.2
Mozilla Firefox 2.0.0.3
Mozilla Seamonkey 1.1
Mozilla Seamonkey 1.1.2
Mozilla Seamonkey 1.1.3
Mozilla Thunderbird 2.0.0.1
Mozilla Thunderbird 2.0.0.11
Mozilla Thunderbird 2.0.0.6
Mozilla Thunderbird 2.0.0.8
Mozilla Firefox 2.0.0.10
Mozilla Firefox 2.0.0.11
Mozilla Firefox 2.0.0.6
6.8
CVSSv2
CVE-2008-2810
Mozilla Firefox prior to 2.0.0.15 and SeaMonkey prior to 1.1.10 do not properly identify the context of Windows shortcut files, which allows user-assisted remote malicious users to bypass the Same Origin Policy via a crafted web site for which the user has previously saved a shor...
Mozilla Firefox 2.0.0.12
Mozilla Firefox 2.0.0.13
Mozilla Firefox 2.0.0.8
Mozilla Firefox 2.0.0.9
Mozilla Seamonkey 1.1.8
Mozilla Firefox
Mozilla Firefox 2.0.0.10
Mozilla Firefox 2.0.0.11
Mozilla Firefox 2.0.0.6
Mozilla Firefox 2.0.0.7
Mozilla Seamonkey 1.1.6
Mozilla Seamonkey 1.1.7
Mozilla Firefox 2.0
Mozilla Firefox 2.0.0.1
Mozilla Firefox 2.0.0.4
Mozilla Firefox 2.0.0.5
Mozilla Seamonkey 1.1.4
Mozilla Seamonkey 1.1.5
Mozilla Firefox 2.0.0.2
Mozilla Firefox 2.0.0.3
Mozilla Seamonkey 1.1
Mozilla Seamonkey 1.1.2
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
camera
bypass
CVE-2024-3592
CVE-2024-37383
CVE-2024-24919
CVE-2024-27822
CVE-2024-36788
CVE-2024-36789
man-in-the-middle
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »