Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
a-blog a-blog vulnerabilities and exploits
(subscribe to this query)
5.8
CVSSv2
CVE-2017-9758
Savitech driver packages for Windows silently install a self-signed certificate into the Trusted Root Certification Authorities store, aka "Inaudible Subversion."
Savitech-ic Savitech Driver
4.3
CVSSv2
CVE-2016-6800
The default configuration of the Apache OFBiz framework offers a blog functionality. Different users are able to operate blogs which are related to specific parties. In the form field for the creation of new blog articles the user input of the summary field as well as the article...
Apache Ofbiz 13.07
Apache Ofbiz 12.04.05
Apache Ofbiz 12.04
Apache Ofbiz 12.04.04
Apache Ofbiz 12.04.01
Apache Ofbiz 11.04.01
Apache Ofbiz 12.04.02
Apache Ofbiz 13.07.02
Apache Ofbiz 12.04.06
Apache Ofbiz 13.07.01
Apache Ofbiz 11.04.04
Apache Ofbiz 11.04.03
Apache Ofbiz 11.04
Apache Ofbiz 13.07.03
Apache Ofbiz 11.04.06
Apache Ofbiz 11.04.02
Apache Ofbiz 11.04.05
Apache Ofbiz 12.04.03
4.3
CVSSv2
CVE-2016-1179
Cross-site scripting (XSS) vulnerability in the standard template of the comment functionality in appleple a-blog cms 2.6.0.1 and previous versions allows remote malicious users to inject arbitrary web script or HTML.
Appleple A-blog Cms
6.4
CVSSv2
CVE-2016-1178
The session management of the comment functionality in appleple a-blog cms 2.6.0.1 and previous versions allows remote malicious users to obtain or modify sensitive data via unspecified vectors.
Appleple A-blog Cms
5.8
CVSSv2
CVE-2016-5672
Intel Crosswalk prior to 19.49.514.5, 20.x prior to 20.50.533.11, 21.x prior to 21.51.546.0, and 22.x prior to 22.51.549.0 interprets a user's acceptance of one invalid X.509 certificate to mean that all invalid X.509 certificates should be accepted without prompting, which ...
Intel Crosswalk
6.8
CVSSv2
CVE-2016-2346
Allround Automations PL/SQL Developer 11 prior to 11.0.6 relies on unverified HTTP data for updates, which allows man-in-the-middle malicious users to execute arbitrary code by modifying fields in the client-server data stream.
Allroundautomations Pl/sql Developer 11.0
Allroundautomations Pl/sql Developer 11.0.5
Allroundautomations Pl/sql Developer 11.0.4
Allroundautomations Pl/sql Developer 11.0.2
Allroundautomations Pl/sql Developer 11.0.3
Allroundautomations Pl/sql Developer 11.0.1
10
CVSSv2
CVE-2016-2343
Patterson Dental Eaglesoft 17 has a hardcoded password of sql for the dba account, which allows remote malicious users to obtain sensitive Dental.DB patient information via SQL statements.
Patterson Dental Eaglesoft 17.0
4
CVSSv2
CVE-2016-1562
The REST API in the DTE Energy Insight application prior to 1.7.8 for Android allows remote authenticated users to obtain unspecified customer information via a SQL expression in the filter parameter.
Dte Energy Insight 1.7.7
2.6
CVSSv2
CVE-2016-0701
The DH_check_pub_key function in crypto/dh/dh_check.c in OpenSSL 1.0.2 prior to 1.0.2f does not ensure that prime numbers are appropriate for Diffie-Hellman (DH) key exchange, which makes it easier for remote malicious users to discover a private DH exponent by making multiple ha...
Openssl Openssl 1.0.2a
Openssl Openssl 1.0.2e
Openssl Openssl 1.0.2b
Openssl Openssl 1.0.2c
Openssl Openssl 1.0.2
Openssl Openssl 1.0.2d
1 Github repository
1 Article
4.3
CVSSv2
CVE-2016-1897
FFmpeg 2.x allows remote malicious users to conduct cross-origin attacks and read arbitrary files by using the concat protocol in an HTTP Live Streaming (HLS) M3U8 file, leading to an external HTTP request in which the URL string contains the first line of a local file.
Ffmpeg Ffmpeg 2.2.12
Ffmpeg Ffmpeg 2.4.11
Ffmpeg Ffmpeg 2.3
Ffmpeg Ffmpeg 2.6.3
Ffmpeg Ffmpeg 2.2.8
Ffmpeg Ffmpeg 2.3.3
Ffmpeg Ffmpeg 2.4.4
Ffmpeg Ffmpeg 2.0.7
Ffmpeg Ffmpeg 2.2
Ffmpeg Ffmpeg 2.6.6
Ffmpeg Ffmpeg 2.4.1
Ffmpeg Ffmpeg 2.8.4
Ffmpeg Ffmpeg 2.0.4
Ffmpeg Ffmpeg 2.2.4
Ffmpeg Ffmpeg 2.1.6
Ffmpeg Ffmpeg 2.2.6
Ffmpeg Ffmpeg 2.4.9
Ffmpeg Ffmpeg 2.7.1
Ffmpeg Ffmpeg 2.2.3
Ffmpeg Ffmpeg 2.4.6
Ffmpeg Ffmpeg 2.5.6
Ffmpeg Ffmpeg 2.3.5
2 Github repositories
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-6280
CVE-2024-5346
CVE-2024-30078
CVE-2022-45803
CVE-2024-36886
SQL
CVE-2024-24553
IMAP
memory leak
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »