Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
framework vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2014-1868
Restlet Framework 2.1.x prior to 2.1.7 and 2.x.x prior to 2.2 RC1, when using XMLRepresentation or XML serializers, allows malicious users to cause a denial of service via an XML Entity Expansion (XEE) attack.
Restlet Restlet Framework 2.1.1
Restlet Restlet Framework 2.1.2
Restlet Restlet Framework 2.1.0
Restlet Restlet Framework 2.2
Restlet Restlet Framework 2.1.6
Restlet Restlet Framework 2.1.4
Restlet Restlet Framework 2.1.3
Restlet Restlet Framework 2.1.5
Restlet Restlet Framework
9.8
CVSSv3
CVE-2018-8540
A remote code execution vulnerability exists when the Microsoft .NET Framework fails to validate input properly, aka ".NET Framework Remote Code Injection Vulnerability." This affects Microsoft .NET Framework 4.6, Microsoft .NET Framework 3.5, Microsoft .NET Framework 4...
Microsoft .net Framework 3.5
Microsoft .net Framework 3.5.1
Microsoft .net Framework 4.5.2
Microsoft .net Framework 4.6.2
Microsoft .net Framework 4.6
Microsoft .net Framework 4.6.1
Microsoft .net Framework 4.7
Microsoft .net Framework 4.7.1
Microsoft .net Framework 4.7.2
NA
CVE-2014-4072
Microsoft .NET Framework 1.1 SP1, 2.0 SP2, 3.0 SP2, 3.5, 3.5.1, 4, 4.5, 4.5.1, and 4.5.2 does not properly use a hash table for request data, which allows remote malicious users to cause a denial of service (resource consumption and ASP.NET performance degradation) via crafted re...
Microsoft .net Framework 4.0
Microsoft .net Framework 1.1
Microsoft .net Framework 4.5.1
Microsoft .net Framework 4.5.2
Microsoft .net Framework 2.0
Microsoft .net Framework 4.5
Microsoft .net Framework 3.5
Microsoft .net Framework 3.0
Microsoft .net Framework 3.5.1
7.5
CVSSv3
CVE-2018-8517
A denial of service vulnerability exists when .NET Framework improperly handles special web requests, aka ".NET Framework Denial Of Service Vulnerability." This affects Microsoft .NET Framework 4.6, Microsoft .NET Framework 3.5, Microsoft .NET Framework 4.7/4.7.1/4.7.2,...
Microsoft .net Framework 3.5
Microsoft .net Framework 3.5.1
Microsoft .net Framework 4.5.2
Microsoft .net Framework 4.6.2
Microsoft .net Framework 4.6
Microsoft .net Framework 4.6.1
Microsoft .net Framework 4.7
Microsoft .net Framework 4.7.1
Microsoft .net Framework 4.7.2
5.5
CVSSv3
CVE-2019-1142
An elevation of privilege vulnerability exists when the .NET Framework common language runtime (CLR) allows file creation in arbitrary locations, aka '.NET Framework Elevation of Privilege Vulnerability'.
Microsoft .net Framework 3.5
Microsoft .net Framework 4.7.2
Microsoft .net Framework 4.6
Microsoft .net Framework 4.6.1
Microsoft .net Framework 4.6.2
Microsoft .net Framework 4.7
Microsoft .net Framework 4.7.1
Microsoft .net Framework 4.8
Microsoft .net Framework 4.5.2
1 Article
NA
CVE-2007-1473
Cross-site scripting (XSS) vulnerability in framework/NLS/NLS.php in Horde Framework prior to 3.1.4 RC1, when the login page contains a language selection box, allows remote malicious users to inject arbitrary web script or HTML via the new_lang parameter to login.php.
Horde Horde Application Framework 1.2.3
Horde Horde Application Framework 2.0
Horde Horde Application Framework 1.2.4
Horde Horde Application Framework 3.0.0
Horde Horde Application Framework 2.2.5
Horde Horde Application Framework 3.0.4
Horde Horde Application Framework 3.1.0
Horde Horde Application Framework 3.1.2
Horde Horde Application Framework 2.2.9
Horde Horde Application Framework 2.2.3
Horde Horde Application Framework 1.2.1
Horde Horde Application Framework 1.3.3
Horde Horde Application Framework 3.0.5
Horde Horde Application Framework 3.0.10
Horde Horde Application Framework 3.0.1
Horde Horde Application Framework 1.2.6
Horde Horde Application Framework 2.2.8
Horde Horde Application Framework 2.2.6
Horde Horde Application Framework 1.2.0
Horde Horde Application Framework 1.2.7
Horde Horde Application Framework 3.1.1
Horde Horde Application Framework 3.0.8
1 EDB exploit
NA
CVE-2005-4190
Multiple cross-site scripting (XSS) vulnerabilities in Horde Application Framework prior to 3.0.8 allow remote authenticated users to inject arbitrary web script or HTML via multiple vectors, as demonstrated by (1) the identity field, (2) Category and (3) Label search fields, (4)...
Horde Horde Application Framework 1.2.3
Horde Horde Application Framework 1.0.3 4
Horde Horde Application Framework 1.0.2 1
Horde Horde Application Framework 2.0
Horde Horde Application Framework 1.2.4
Horde Horde Application Framework 1.0.3 3
Horde Horde Application Framework 2.2.5
Horde Horde Application Framework 3.0.4
Horde Horde Application Framework 1.0.10
Horde Horde Application Framework 2.2.9
Horde Horde Application Framework 2.2.3
Horde Horde Application Framework 1.2.1
Horde Horde Application Framework 1.0.9
Horde Horde Application Framework 1.3.3
Horde Horde Application Framework 3.0.5
Horde Horde Application Framework 3.0.1
Horde Horde Application Framework 1.2.6
Horde Horde Application Framework 2.2.8
Horde Horde Application Framework 2.2.6
Horde Horde Application Framework 1.2.0
Horde Horde Application Framework 1.0.0
Horde Horde Application Framework 1.2.7
7.5
CVSSv3
CVE-2018-0765
A denial of service vulnerability exists when .NET and .NET Core improperly process XML documents, aka ".NET and .NET Core Denial of Service Vulnerability." This affects Microsoft .NET Framework 2.0, Microsoft .NET Framework 3.0, Microsoft .NET Framework 4.7.1, Microsof...
Microsoft .net Core 2.0
Microsoft .net Framework 2.0
Microsoft .net Framework 3.0
Microsoft .net Framework 3.5
Microsoft .net Framework 3.5.1
Microsoft .net Framework 4.5.2
Microsoft .net Framework 4.6
Microsoft .net Framework 4.6.2
Microsoft .net Framework 4.7
Microsoft .net Framework 4.7.1
Microsoft .net Framework 4.6.1
Microsoft .net Framework 4.7.2
NA
CVE-2014-0257
Microsoft .NET Framework 1.0 SP3, 1.1 SP1, 2.0 SP2, 3.5, 3.5.1, 4, 4.5, and 4.5.1 does not properly determine whether it is safe to execute a method, which allows remote malicious users to execute arbitrary code via (1) a crafted web site or (2) a crafted .NET Framework applicati...
Microsoft .net Framework 4.0
Microsoft .net Framework 1.1
Microsoft .net Framework 4.5.1
Microsoft .net Framework 2.0
Microsoft .net Framework 4.5
Microsoft .net Framework 3.5
Microsoft .net Framework 1.0
Microsoft .net Framework 3.5.1
1 EDB exploit
7.8
CVSSv3
CVE-2017-0160
Microsoft .NET Framework 2.0, 3.5, 4.5.2, 4.6, 4.6.1, 4.6.2 and 4.7 allows an attacker with access to the local system to execute malicious code, aka ".NET Remote Code Execution Vulnerability."
Microsoft .net Framework 4.5.2
Microsoft .net Framework 2.0
Microsoft .net Framework 4.6.1
Microsoft .net Framework 4.6
Microsoft .net Framework 4.6.2
Microsoft .net Framework 3.5
Microsoft .net Framework 3.5.1
Microsoft .net Framework 4.7
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
TCP
CVE-2024-4577
CVE-2024-2695
CVE-2024-31870
injection
CVE-2024-3813
arbitrary code
CVE-2024-27801
CVE-2024-30120
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »