Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
local vulnerabilities and exploits
(subscribe to this query)
5.5
CVSSv3
CVE-2019-4335
IBM Watson Studio Local 1.2.3 stores key files in the user's home directory which could be obtained by another local user. IBM X-Force ID: 161413.
Ibm Watson Studio Local 1.2.3
4.9
CVSSv3
CVE-2021-29739
IBM Planning Analytics Local 2.0 could allow a remote malicious user to obtain sensitive information when a stack trace is returned in the browser. X-Force ID: 198846.
Ibm Planning Analytics Local 2.0.0
6.5
CVSSv3
CVE-2017-17443
OPC Foundation Local Discovery Server (LDS) 1.03.370 required a security update to resolve multiple vulnerabilities that allow malicious users to trigger a crash by placing invalid data into the configuration file. This vulnerability requires an attacker with access to the file s...
Opcfoundation Local Discovery Server 1.03.370
5.3
CVSSv3
CVE-2018-1682
IBM Watson Studio Local 1.2.3 could disclose sensitive information over the network that an attacked could use in further attacks against the system. IBM X-Force ID: 145238.
Ibm Watston Studio Local 1.2.3
5.4
CVSSv3
CVE-2023-28520
IBM Planning Analytics Local 2.0 is vulnerable to stored cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-F...
Ibm Planning Analytics Local 2.0.0
NA
CVE-2008-7189
Multiple unspecified vulnerabilities in Local Media Browser prior to 0.1 have unknown impact and attack vectors related to "Security holes."
Bastian Blumentritt Local Media Browser
NA
CVE-2014-5887
The Yell Local Search (aka com.yell.launcher2) application 4.2.1.4 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle malicious users to spoof servers and obtain sensitive information via a crafted certificate.
Yell Yell Local Search 4.2.1.4
4.3
CVSSv3
CVE-2022-40702
Missing Authorization vulnerability in Zorem Advanced Local Pickup for WooCommerce.This issue affects Advanced Local Pickup for WooCommerce: from n/a up to and including 1.5.2.
Zorem Advanced Local Pickup For Woocommerce
7.2
CVSSv3
CVE-2023-2841
The Advanced Local Pickup for WooCommerce plugin for WordPress is vulnerable to time-based SQL Injection via the id parameter in versions up to, and including, 1.5.5 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL...
Zorem Advanced Local Pickup For Woocommerce
9.8
CVSSv3
CVE-2018-5973
SQL Injection exists in Professional Local Directory Script 1.0 via the sellers_subcategories.php IndustryID parameter, or the suppliers.php IndustryID or CategoryID parameter.
Eihitech Professional Local Directory Script 1.0
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3380
CVE-2024-1694
local file inclusion
CVE-2024-5645
CVE-2024-24919
XSS
CVE-2024-36774
CVE-2024-21306
SQL
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »