Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
application framework vulnerabilities and exploits
(subscribe to this query)
9.3
CVSSv2
CVE-2017-8759
Microsoft .NET Framework 2.0, 3.5, 3.5.1, 4.5.2, 4.6, 4.6.1, 4.6.2 and 4.7 allow an malicious user to execute code remotely via a malicious document or application, aka ".NET Framework Remote Code Execution Vulnerability."
Microsoft .net Framework 4.6.1
Microsoft .net Framework 4.6.2
Microsoft .net Framework 4.5.2
Microsoft .net Framework 4.6
Microsoft .net Framework 2.0
Microsoft .net Framework 3.5
Microsoft .net Framework 3.5.1
Microsoft .net Framework 4.7
1 EDB exploit
24 Github repositories
13 Articles
5
CVSSv2
CVE-2018-1000632
dom4j version prior to version 2.1.1 contains a CWE-91: XML Injection vulnerability in Class: Element. Methods: addElement, addAttribute that can result in an attacker tampering with XML documents through XML injection. This attack appear to be exploitable via an attacker specify...
Dom4j Project Dom4j
Debian Debian Linux 8.0
Oracle Flexcube Investor Servicing 12.3.0
Oracle Flexcube Investor Servicing 12.1.0
Oracle Flexcube Investor Servicing 12.0.4
Oracle Retail Integration Bus 15.0
Oracle Utilities Framework 4.2.0.3.0
Oracle Utilities Framework 4.2.0.2.0
Oracle Flexcube Investor Servicing 12.4.0
Oracle Flexcube Investor Servicing 14.0.0
Oracle Retail Integration Bus 16.0
Oracle Utilities Framework 4.4.0.0.0
Oracle Primavera P6 Enterprise Project Portfolio Management
Oracle Rapid Planning 12.1
Oracle Rapid Planning 12.2
Oracle Utilities Framework 4.4.0.2
Oracle Utilities Framework 2.2.0
Oracle Utilities Framework
Redhat Satellite Capsule 6.6
Redhat Satellite 6.6
Redhat Jboss Enterprise Application Platform 6.0.0
Redhat Jboss Enterprise Application Platform 6.4.0
NA
CVE-2024-22233
In Spring Framework versions 6.0.15 and 6.1.2, it is possible for a user to provide specially crafted HTTP requests that may cause a denial-of-service (DoS) condition. Specifically, an application is vulnerable when all of the following are true: * the application uses Spring MVC...
Vmware Spring Framework 6.1.2
Vmware Spring Framework 6.0.15
9.3
CVSSv2
CVE-2013-3131
Microsoft .NET Framework 2.0 SP2, 3.5, 3.5.1, 4, and 4.5, and Silverlight 5 prior to 5.1.20513.0, does not properly prevent changes to data in multidimensional arrays of structures, which allows remote malicious users to execute arbitrary code via (1) a crafted .NET Framework app...
Microsoft .net Framework 2.0
Microsoft .net Framework 3.5
Microsoft Silverlight 5.0.60818.0
Microsoft Silverlight 5.1.10411.0
Microsoft .net Framework 3.5.1
Microsoft .net Framework 4.0
Microsoft Silverlight 5.1.20125.0
Microsoft .net Framework 4.5
Microsoft Silverlight 5.0.60401.0
Microsoft Silverlight 5.0.61118.0
7.2
CVSSv2
CVE-2016-0148
Microsoft .NET Framework 4.6 and 4.6.1 mishandles library loading, which allows local users to gain privileges via a crafted application, aka ".NET Framework Remote Code Execution Vulnerability."
Microsoft .net Framework 4.6.1
Microsoft .net Framework 4.6
5
CVSSv2
CVE-2014-3625
Directory traversal vulnerability in Pivotal Spring Framework 3.0.4 up to and including 3.2.x prior to 3.2.12, 4.0.x prior to 4.0.8, and 4.1.x prior to 4.1.2 allows remote malicious users to read arbitrary files via unspecified vectors, related to static resource handling.
Vmware Spring Framework
Pivotal Software Spring Framework
4.3
CVSSv2
CVE-2016-1183
NTT Data TERASOLUNA Server Framework for Java(WEB) 2.0.0.1 up to and including 2.0.6.1, as used in Fujitsu Interstage Business Application Server and other products, allows remote malicious users to bypass a file-extension protection mechanism, and consequently read arbitrary fil...
Nttdata Terasoluna Server Framework For Java Web 2.0.6.1
Nttdata Terasoluna Server Framework For Java Web 2.0.5.3
Nttdata Terasoluna Server Framework For Java Web 2.0.5.2
Nttdata Terasoluna Server Framework For Java Web 2.0.5.1
Nttdata Terasoluna Server Framework For Java Web 2.0.2.0
Nttdata Terasoluna Server Framework For Java Web 2.0.0.2
Nttdata Terasoluna Server Framework For Java Web 2.0.1.0
Nttdata Terasoluna Server Framework For Java Web 2.0.0.1
NA
CVE-2022-43484
TERASOLUNA Global Framework 1.0.0 (Public review version) and TERASOLUNA Server Framework for Java (Rich) 2.0.0.2 to 2.0.5.1 are vulnerable to a ClassLoader manipulation vulnerability due to using the old version of Spring Framework which contains the vulnerability.The vulnerabil...
Nttdata Terasoluna Global Framework 1.0.0
Nttdata Terasoluna Server Framework For Java \\(rich\\)
NA
CVE-2023-34053
In Spring Framework versions 6.0.0 - 6.0.13, it is possible for a user to provide specially crafted HTTP requests that may cause a denial-of-service (DoS) condition. Specifically, an application is vulnerable when all of the following are true: * the application uses Spring MVC o...
Vmware Spring Framework
6.8
CVSSv2
CVE-2017-3759
The Lenovo Service Framework Android application accepts some responses from the server without proper validation. This exposes the application to man-in-the-middle attacks leading to possible remote code execution.
Lenovo Service Framework -
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-7028
memory leak
log injection
CVE-2024-3400
CVE-2022-48695
CVE-2022-48675
CVE-2024-34487
CVE-2024-33792
spoof
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »