Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
vanilla vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2021-43785
@joeattardi/emoji-button is a Vanilla JavaScript emoji picker component. In affected versions there are two vectors for XSS attacks: a URL for a custom emoji, and an i18n string. In both of these cases, a value can be crafted such that it can insert a `script` tag into the page a...
Emoji Button Project Emoji Button
4.3
CVSSv2
CVE-2005-3329
Cross-site scripting (XSS) vulnerability in RSA Authentication Agent for Web 5.3 and previous versions allows remote malicious users to inject arbitrary web script or HTML via the image parameter in a GetPic operation.
Rsa Authentication Agent For Web 5.1
Rsa Authentication Agent For Web 5.1.1
Rsa Authentication Agent For Web 5.2
Rsa Authentication Agent For Web
1 EDB exploit
7.5
CVSSv2
CVE-2016-10033
The mailSend function in the isMail transport in PHPMailer prior to 5.2.18 might allow remote malicious users to pass extra parameters to the mail command and consequently execute arbitrary code via a \" (backslash double quote) in a crafted Sender property.
Phpmailer Project Phpmailer
Wordpress Wordpress
Joomla Joomla\\!
9 EDB exploits
114 Github repositories
NA
CVE-2022-31153
OpenZeppelin Contracts for Cairo is a library for contract development written in Cairo for StarkNet, a decentralized ZK Rollup. Version 0.2.0 is vulnerable to an error that renders account contracts unusable on live networks. This issue affects all accounts (vanilla and ethereum...
Openzeppelin Contracts 0.2.0
6.8
CVSSv2
CVE-2022-24800
October/System is the system module for October CMS, a self-hosted CMS platform based on the Laravel PHP Framework. Prior to versions 1.0.476, 1.1.12, and 2.2.15, when the developer allows the user to specify their own filename in the `fromData` method, an unauthenticated user ca...
Octobercms October
10
CVSSv2
CVE-2002-1383
Multiple integer overflows in Common Unix Printing System (CUPS) 1.1.14 up to and including 1.1.17 allow remote malicious users to execute arbitrary code via (1) the CUPSd HTTP interface, as demonstrated by vanilla-coke, and (2) the image handling code in CUPS filters, as demonst...
Easy Software Products Cups 1.0.4
Easy Software Products Cups 1.1.4 2
Easy Software Products Cups 1.1.4 3
Easy Software Products Cups 1.0.4 8
Easy Software Products Cups 1.1.1
Easy Software Products Cups 1.1.4 5
Easy Software Products Cups 1.1.6
Easy Software Products Cups 1.1.10
Easy Software Products Cups 1.1.13
Easy Software Products Cups 1.1.7
Easy Software Products Cups 1.1.14
Easy Software Products Cups 1.1.17
Easy Software Products Cups 1.1.4
Apple Mac Os X 10.2
Apple Mac Os X 10.2.2
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
blind SQL injection
SSRF
buffer overflow
CVE-2023-28952
CVE-2023-41822
CVE-2024-27956
CVE-2023-7028
CVE-2024-34447
CVE-2024-34460
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5