Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
simon . vulnerabilities and exploits
(subscribe to this query)
383
VMScore
CVE-2008-1241
GUI overlay vulnerability in Mozilla Firefox prior to 2.0.0.13 and SeaMonkey prior to 1.1.9 allows remote malicious users to spoof form elements and redirect user inputs via a borderless XUL pop-up window from a background tab.
Mozilla Firefox
Mozilla Seamonkey
445
VMScore
CVE-2008-1238
Mozilla Firefox prior to 2.0.0.13 and SeaMonkey prior to 1.1.9, when generating the HTTP Referer header, does not list the entire URL when it contains Basic Authentication credentials without a username, which makes it easier for remote malicious users to bypass application prote...
Mozilla Firefox
Mozilla Seamonkey
445
VMScore
CVE-2008-1240
LiveConnect in Mozilla Firefox prior to 2.0.0.13 and SeaMonkey prior to 1.1.9 does not properly parse the content origin for jar: URIs before sending them to the Java plugin, which allows remote malicious users to access arbitrary ports on the local machine. NOTE: this is closely...
Mozilla Firefox
Mozilla Seamonkey
828
VMScore
CVE-2008-1195
Unspecified vulnerability in Sun JDK and Java Runtime Environment (JRE) 6 Update 4 and previous versions and 5.0 Update 14 and previous versions; and SDK and JRE 1.4.2_16 and previous versions; allows remote malicious users to access arbitrary network services on the local host v...
Sun Jdk 1.6.0
Sun Jdk 1.5.0
Sun Jre 1.6.0
Sun Jre 1.4.2 7
Sun Jre 1.4.2 16
Sun Jre 1.4.2 4
Sun Jre 1.4.2 2
Sun Jre 1.5.0
Sun Jre 1.4.2 15
Sun Jre 1.4.2 13
Sun Jre 1.4.2 1
Sun Jre 1.4.2 8
Sun Jre 1.4.2 12
Sun Jre 1.4.2 14
Sun Jre 1.4.2 10
Sun Jre 1.4.2 9
Sun Jre 1.4.2
Sun Jre 1.4.2 11
Sun Jre 1.4.2 3
Sun Jre 1.4.2 5
Sun Jre 1.4.2 6
Sun Sdk 1.4.2
392
VMScore
CVE-2014-3635
Off-by-one error in D-Bus 1.3.0 up to and including 1.6.x prior to 1.6.24 and 1.8.x prior to 1.8.8, when running on a 64-bit system and the max_message_unix_fds limit is set to an odd number, allows local users to cause a denial of service (dbus-daemon crash) or possibly execute ...
D-bus Project D-bus
Freedesktop Dbus 1.6.4
Freedesktop Dbus 1.6.0
Freedesktop Dbus 1.8.0
Freedesktop Dbus 1.6.20
Freedesktop Dbus 1.6.10
Freedesktop Dbus 1.6.12
Freedesktop Dbus 1.6.16
Freedesktop Dbus 1.6.8
Freedesktop Dbus 1.6.14
Freedesktop Dbus 1.6.6
Freedesktop Dbus 1.8.6
Freedesktop Dbus 1.6.18
Freedesktop Dbus 1.8.4
Freedesktop Dbus 1.8.2
Freedesktop Dbus 1.6.2
Opensuse Opensuse 12.3
169
VMScore
CVE-2015-0245
D-Bus 1.4.x up to and including 1.6.x prior to 1.6.30, 1.8.x prior to 1.8.16, and 1.9.x prior to 1.9.10 does not validate the source of ActivationFailure signals, which allows local users to cause a denial of service (activation failure error returned) by leveraging a race condit...
Freedesktop Dbus 1.6.4
Freedesktop Dbus 1.4.18
Freedesktop Dbus 1.6.0
Freedesktop Dbus 1.5.6
Freedesktop Dbus 1.6.24
Freedesktop Dbus 1.8.0
Freedesktop Dbus 1.5.8
Freedesktop Dbus 1.5.4
Freedesktop Dbus 1.5.10
Freedesktop Dbus 1.9.0
Freedesktop Dbus 1.4.24
Freedesktop Dbus 1.4.12
Freedesktop Dbus 1.6.20
Freedesktop Dbus 1.6.10
Freedesktop Dbus 1.5.0
Freedesktop Dbus 1.6.12
Freedesktop Dbus 1.6.16
Freedesktop Dbus 1.4.6
Freedesktop Dbus 1.6.8
Freedesktop Dbus 1.4.16
Freedesktop Dbus 1.5.2
Freedesktop Dbus 1.6.26
231
VMScore
CVE-2007-5712
The internationalization (i18n) framework in Django 0.91, 0.95, 0.95.1, and 0.96, and as used in other products such as PyLucid, when the USE_I18N option and the i18n component are enabled, allows remote malicious users to cause a denial of service (memory consumption) via many H...
Django Project Django 0.91
Django Project Django 0.95.1
Django Project Django 0.96
Django Project Django 0.95
NA
CVE-2024-35902
In the Linux kernel, the following vulnerability has been resolved: net/rds: fix possible cp null dereference cp might be null, calling cp->cp_conn would produce null dereference [Simon Horman adds:] Analysis: * cp is a parameter of __rds_rdma_map and is not reassigned. * The ...
516
VMScore
CVE-2008-3909
The administration application in Django 0.91, 0.95, and 0.96 stores unauthenticated HTTP POST requests and processes them after successful authentication occurs, which allows remote malicious users to conduct cross-site request forgery (CSRF) attacks and delete or modify data vi...
Django Project Django 0.91
Django Project Django 0.96
Django Project Django 0.95
320
VMScore
CVE-2019-14822
A flaw exists in ibus in versions prior to 1.5.22 that allows any unprivileged user to monitor and send method calls to the ibus bus of another user due to a misconfiguration in the DBus server setup. A local attacker may use this flaw to intercept all keystrokes of a victim user...
Ibus Project Ibus
Redhat Enterprise Linux 7.0
Redhat Enterprise Linux 8.0
Canonical Ubuntu Linux 18.04
Canonical Ubuntu Linux 19.10
Canonical Ubuntu Linux 16.04
Oracle Zfs Storage Appliance Kit 8.8
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
buffer overflow
type confusion
server-side request forgery
CVE-2024-38440
CVE-2024-27801
CVE-2024-5868
CVE-2024-0582
CVE-2024-37643
CVE-2024-3105
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »