Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
anchor vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2023-24620
An issue exists in Esoteric YamlBeans up to and including 1.15. A crafted YAML document is able perform am XML Entity Expansion attack against YamlBeans YamlReader. By exploiting the Anchor feature in YAML, it is possible to generate a small YAML document that, when read, is expa...
Esotericsoftware Yamlbeans
231
VMScore
CVE-2010-0213
BIND 9.7.1 and 9.7.1-P1, when a recursive validating server has a trust anchor that is configured statically or via DNSSEC Lookaside Validation (DLV), allows remote malicious users to cause a denial of service (infinite loop) via a query for an RRSIG record whose answer is not in...
Isc Bind 9.7.1
312
VMScore
CVE-2022-23637
K-Box is a web-based application to manage documents, images, videos and geodata. Prior to version 0.33.1, a stored Cross-Site-Scripting (XSS) vulnerability is present in the markdown editor used by the document abstract and markdown file preview. A specifically crafted anchor li...
K-link K-box
187
VMScore
CVE-2012-5553
Multiple cross-site scripting (XSS) vulnerabilities in the OM Maximenu module 6.x-1.x prior to 6.x-1.44 and 7.x-1.x prior to 7.x-1.44 for Drupal allow remote authenticated users with the "administer OM Maximenu" permission to inject arbitrary web script or HTML via the ...
Daniel Honrade Om Maximenu 6.x-1.40
Daniel Honrade Om Maximenu 6.x-1.39
Daniel Honrade Om Maximenu 6.x-1.38
Daniel Honrade Om Maximenu 6.x-1.37
Daniel Honrade Om Maximenu 6.x-1.24
Daniel Honrade Om Maximenu 6.x-1.23
Daniel Honrade Om Maximenu 6.x-1.22
Daniel Honrade Om Maximenu 6.x-1.21
Daniel Honrade Om Maximenu 6.x-1.20
Daniel Honrade Om Maximenu 6.x-1.7
Daniel Honrade Om Maximenu 6.x-1.6
Daniel Honrade Om Maximenu 6.x-1.5
Daniel Honrade Om Maximenu 6.x-1.4
Daniel Honrade Om Maximenu 7.x-1.42
Daniel Honrade Om Maximenu 7.x-1.41
Daniel Honrade Om Maximenu 7.x-1.40
Daniel Honrade Om Maximenu 7.x-1.39
Daniel Honrade Om Maximenu 7.x-1.26
Daniel Honrade Om Maximenu 7.x-1.25
Daniel Honrade Om Maximenu 7.x-1.24
Daniel Honrade Om Maximenu 7.x-1.23
Daniel Honrade Om Maximenu 7.x-1.22
NA
CVE-2024-1999
The Gutenberg Blocks by Kadence Blocks – Page Builder Features plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the Testimonial Widget's anchor style parameter in all versions up to, and including, 3.2.25 due to insufficient input sanitization and ...
445
VMScore
CVE-2018-6922
One of the data structures that holds TCP segments in all versions of FreeBSD before 11.2-RELEASE-p1, 11.1-RELEASE-p12, and 10.4-RELEASE-p10 uses an inefficient algorithm to reassemble the data. This causes the CPU time spent on segment processing to grow linearly with the number...
Freebsd Freebsd 10.4
Freebsd Freebsd 11.1
Freebsd Freebsd 11.2
356
VMScore
CVE-2006-0799
Microsoft Internet Explorer allows remote malicious users to spoof a legitimate URL in the status bar and conduct a phishing attack via a web page with an anchor element with a legitimate "href" attribute, a form whose action points to a malicious URL, and an INPUT subm...
Microsoft Internet Explorer 6.0.2900
755
VMScore
CVE-2004-1104
Microsoft Internet Explorer 6.0 SP2 allows remote malicious users to spoof a legitimate URL in the status bar and conduct a phishing attack via a web page that contains a BASE element that points to the legitimate site, followed by an anchor (a) element with an empty "href&q...
Microsoft Ie 6.0
1 EDB exploit
383
VMScore
CVE-2008-2640
Multiple cross-site scripting (XSS) vulnerabilities in the Flex 3 History Management feature in Adobe Flex 3.0.1 SDK and Flex Builder 3, and generated applications, allow remote malicious users to inject arbitrary web script or HTML via the anchor identifier to (1) client-side-de...
Adobe Flex Builder 3
Adobe Flex 3.0.1
570
VMScore
CVE-2006-5913
Microsoft Internet Explorer 7 allows remote malicious users to (1) cause a security certificate from a secure web site to appear invalid via a link to res://ieframe.dll/sslnavcancel.htm with the target site in the anchor identifier, which displays the site's URL in the addre...
Microsoft Ie 7.0
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
path traversal
CVE-2024-33545
CVE-2024-35725
CVE-2024-32704
overflow
file upload
CVE-2024-0230
CVE-2024-32705
CVE-2024-23692
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »