Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
toolbar vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2021-30459
A SQL Injection issue in the SQL Panel in Jazzband Django Debug Toolbar prior to 1.11.1, 2.x prior to 2.2.1, and 3.x prior to 3.2.1 allows malicious users to execute SQL statements by changing the raw_sql input field of the SQL explain, analyze, or select form.
9.3
CVSSv2
CVE-2010-1260
The IE8 Developer Toolbar in Microsoft Internet Explorer 8 SP1, SP2, and SP3 allows user-assisted remote malicious users to execute arbitrary code by accessing an object that (1) was not properly initialized or (2) is deleted, leading to memory corruption, aka "HTML Element ...
Microsoft Internet Explorer 8
4.3
CVSSv2
CVE-2021-38264
Cross-site scripting (XSS) vulnerability in the Frontend Taglib module in Liferay Portal 7.4.0 and 7.4.1 allows remote malicious users to inject arbitrary web script or HTML into the management toolbar search via the `keywords` parameter. This issue is caused by an incomplete fix...
Liferay Liferay Portal 7.4.0
Liferay Liferay Portal 7.4.1
3.5
CVSSv2
CVE-2020-10099
An XSS issue exists in Zammad 3.0 up to and including 3.2. Malicious code can be provided by a low-privileged user through the Ticket functionality in Zammad. The malicious JavaScript will execute within the browser of any user who opens the ticket or has the ticket within the To...
Zammad Zammad
5
CVSSv2
CVE-2008-6774
internettoolbar/edit.php in YourPlace 1.0.2 and previous versions does not end execution when an invalid username is detected, which allows remote malicious users to bypass intended restrictions and edit toolbar settings via an invalid username. NOTE: the provenance of this infor...
Peterselie Yourplace 1.0.1
Peterselie Yourplace
Peterselie Yourplace 1.0
7.2
CVSSv2
CVE-2011-2010
The Microsoft Office Input Method Editor (IME) for Simplified Chinese in Microsoft Pinyin IME 2010, Office Pinyin SimpleFast Style 2010, and Office Pinyin New Experience Style 2010 does not properly restrict access to configuration options, which allows local users to gain privil...
Microsoft Pinyin New Experience Style 2010
Microsoft Pinyin Ime 2010
Microsoft Pinyin Simple Fast Style 2010
NA
CVE-2024-1894
The Burst Statistics – Privacy-Friendly Analytics for WordPress plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'burst_total_pageviews_count' custom meta field in all versions up to, and including, 1.5.6.1 due to insufficient input saniti...
NA
CVE-2022-2163
Use after free in Cast UI and Toolbar in Google Chrome before 103.0.5060.134 allowed an attacker who convinced a user to install a malicious extension to potentially exploit heap corruption via UI interaction.
Google Chrome
Fedoraproject Extra Packages For Enterprise Linux 8.0
Fedoraproject Fedora 35
Fedoraproject Fedora 36
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2021-35000
CVE-2024-4439
unauthorized
CVE-2024-0042
CVE-2024-31848
CVE-2023-40694
cache poisoning
CVE-2024-23707
firmware
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6