Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
next vulnerabilities and exploits
(subscribe to this query)
9.1
CVSSv3
CVE-2022-35924
NextAuth.js is a complete open source authentication solution for Next.js applications. `next-auth` users who are using the `EmailProvider` either in versions before `4.10.3` or `3.29.10` are affected. If an attacker could forge a request that sent a comma-separated list of email...
Nextauth.js Next-auth
4.8
CVSSv3
CVE-2023-45768
Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Stephanie Leary Next Page plugin <= 1.5.2 versions.
Stephanieleary Next Page
6.1
CVSSv3
CVE-2022-29214
NextAuth.js (next-auth) is am open source authentication solution for Next.js applications. Prior to versions 3.29.3 and 4.3.3, an open redirect vulnerability is present when the developer is implementing an OAuth 1 provider. Versions 3.29.3 and 4.3.3 contain a patch for this iss...
Nextauth.js Next-auth
9.8
CVSSv3
CVE-2018-17137
Prezi Next 1.3.101.11 has a documented purpose of creating HTML5 presentations but has SE_DEBUG_PRIVILEGE on Windows, which might allow malicious users to bypass intended access restrictions.
Prezi Next 1.3.101.11
6.1
CVSSv3
CVE-2022-24858
next-auth v3 users before version 3.29.2 are impacted. next-auth version 4 users before version 4.3.2 are also impacted. Upgrading to 3.29.2 or 4.3.2 will patch this vulnerability. If you are not able to upgrade for any reason, you can add a configuration to your callbacks option...
Nextauth.js Next-auth
5.9
CVSSv3
CVE-2021-21310
NextAuth.js (next-auth) is am open source authentication solution for Next.js applications. In next-auth before version 3.3.0 there is a token verification vulnerability. Implementations using the Prisma database adapter in conjunction with the Email provider are impacted. Implem...
Nextauth.js Next-auth
5.4
CVSSv3
CVE-2017-1546
IBM DOORS Next Generation (DNG/RRC) 4.07, 5.0, and 6.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted s...
Ibm Rational Doors Next Generation 6.0
Ibm Rational Doors Next Generation 6.0.2
Ibm Rational Doors Next Generation 6.0.3
Ibm Rational Doors Next Generation 6.0.4
Ibm Rational Requirements Composer 4.0
Ibm Rational Requirements Composer 4.0.7
Ibm Rational Requirements Composer 5.0
Ibm Rational Requirements Composer 5.0.1
Ibm Rational Requirements Composer 5.0.2
Ibm Rational Doors Next Generation 6.0.1
5.4
CVSSv3
CVE-2017-1127
IBM Rational DOORS Next Generation 4.0, 5.0 and 6.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted sess...
Ibm Rational Requirements Composer 4.0
Ibm Rational Requirements Composer 4.0.0
Ibm Rational Doors Next Generation 5.0.2
Ibm Rational Doors Next Generation 6.0.0
Ibm Rational Doors Next Generation 6.0.1
Ibm Rational Doors Next Generation 6.0.2
Ibm Rational Requirements Composer 4.0.0.2
Ibm Rational Requirements Composer 4.0.2
Ibm Rational Doors Next Generation 5.0
Ibm Rational Doors Next Generation 5.0.1
Ibm Rational Requirements Composer 4.0.3
Ibm Rational Requirements Composer 4.0.4
Ibm Rational Requirements Composer 4.0.5
Ibm Rational Requirements Composer 4.0.6
Ibm Rational Requirements Composer 4.0.7
Ibm Rational Requirements Composer 4.0.0.1
Ibm Rational Requirements Composer 4.0.1
Ibm Rational Doors Next Generation 6.0
Ibm Rational Doors Next Generation 5.0.0
NA
CVE-1999-1468
rdist in various UNIX systems uses popen to execute sendmail, which allows local users to gain root privileges by modifying the IFS (Internal Field Separator) variable.
Next Next 2.0
Sgi Irix 3.3.3
Next Next 2.1
Sgi Irix 3.3
Sgi Irix 3.3.1
Sgi Irix 3.3.2
Sgi Irix 4.0
Cray Unicos 6.0e
Sun Sunos 4.1.1
Cray Unicos 6.1
Sun Sunos 4.0.3
Sun Sunos 4.0.3c
Sun Sunos 4.1
Cray Unicos 6.0
Sun Sunos 4.1psr A
5.4
CVSSv3
CVE-2019-10325
A cross-site scripting vulnerability in Jenkins Warnings NG Plugin 5.0.0 and previous versions allowed attacker with Job/Configure permission to inject arbitrary JavaScript in build overview pages.
Jenkins Warnings Next Generation
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3380
CVE-2024-1694
local file inclusion
CVE-2024-5645
CVE-2024-24919
XSS
CVE-2024-36774
CVE-2024-21306
SQL
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »