Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
atom vulnerabilities and exploits
(subscribe to this query)
383
VMScore
CVE-2006-4711
Multiple cross-site scripting (XSS) vulnerabilities in Sage allow remote malicious users to inject arbitrary web script or HTML via an Atom 1.0 feed, as demonstrated by certain test cases of the James M. Snell Atom 1.0 feed reader test suite.
Sage Sage
605
VMScore
CVE-2018-14326
In MP4v2 2.0.0, there is an integer overflow (with resultant memory corruption) when resizing MP4Array for the ftyp atom in mp4array.h.
Techsmith Mp4v2 2.0.0
383
VMScore
CVE-2006-4710
Multiple cross-site scripting (XSS) vulnerabilities in NewsGator FeedDemon prior to 2.0.0.25 allow remote malicious users to inject arbitrary web script or HTML via an Atom 1.0 feed, as demonstrated by certain test cases of the James M. Snell Atom 1.0 feed reader test suite.
Newsgator Feeddemon
383
VMScore
CVE-2012-0479
Mozilla Firefox 4.x up to and including 11.0, Firefox ESR 10.x prior to 10.0.4, Thunderbird 5.0 up to and including 11.0, Thunderbird ESR 10.x prior to 10.0.4, and SeaMonkey prior to 2.9 allow remote malicious users to spoof the address bar via an https URL for invalid (1) RSS or...
Mozilla Firefox 4.0
Mozilla Firefox 6.0.2
Mozilla Firefox 7.0
Mozilla Firefox 7.0.1
Mozilla Firefox 10.0.2
Mozilla Firefox 11.0
Mozilla Firefox 4.0.1
Mozilla Firefox 6.0
Mozilla Firefox 6.0.1
Mozilla Firefox 10.0
Mozilla Firefox 10.0.1
Mozilla Firefox 5.0
Mozilla Firefox 5.0.1
Mozilla Firefox 9.0
Mozilla Firefox 9.0.1
Mozilla Firefox 8.0
Mozilla Firefox 8.0.1
Mozilla Firefox Esr 10.0.3
Mozilla Firefox Esr 10.0.1
Mozilla Firefox Esr 10.0.2
Mozilla Firefox Esr 10.0
Mozilla Thunderbird 5.0
828
VMScore
CVE-2007-4675
Heap-based buffer overflow in the QuickTime VR extension 7.2.0.240 in QuickTime.qts in Apple QuickTime prior to 7.3 allows remote malicious users to execute arbitrary code via a QTVR (QuickTime Virtual Reality) movie file containing a large size field in the atom header of a pano...
Apple Mac Os X 10.3.9
Apple Mac Os X 10.4.10
Apple Mac Os X 10.5
Microsoft Windows Vista -
Microsoft Windows Xp
356
VMScore
CVE-2012-4421
The create_post function in wp-includes/class-wp-atom-server.php in WordPress prior to 3.4.2 does not perform a capability check, which allows remote authenticated users to bypass intended access restrictions and publish new posts by leveraging the Contributor role and using the ...
Wordpress Wordpress
Wordpress Wordpress 3.3
Wordpress Wordpress 3.2
Wordpress Wordpress 3.1.4
Wordpress Wordpress 3.0.5
Wordpress Wordpress 3.0.6
Wordpress Wordpress 2.3
Wordpress Wordpress 2.8
Wordpress Wordpress 2.8.6
Wordpress Wordpress 2.8.4
Wordpress Wordpress 2.0.1
Wordpress Wordpress 2.0.2
Wordpress Wordpress 2.1.2
Wordpress Wordpress 2.7
Wordpress Wordpress 2.8.3
Wordpress Wordpress 2.8.5
Wordpress Wordpress 1.5.1.1
Wordpress Wordpress 1.5.1.3
Wordpress Wordpress 1.2
Wordpress Wordpress 1.0.1
Wordpress Wordpress 1.1.1
Wordpress Wordpress 1.3
NA
CVE-2023-43527
Information disclosure while parsing dts header atom in Video.
668
VMScore
CVE-2018-14403
MP4NameFirstMatches in mp4util.cpp in MP4v2 2.0.0 mishandles substrings of atom names, leading to use of an inappropriate data type for associated atoms. The resulting type confusion can cause out-of-bounds memory access.
Techsmith Mp4v2 2.0.0
668
VMScore
CVE-2022-25488
Atom CMS v2.0 exists to contain a SQL injection vulnerability via the id parameter in /admin/ajax/avatar.php.
Thedigitalcraft Atomcms 2.0
NA
CVE-2023-43519
Memory corruption in video while parsing the Videoinfo, when the size of atom is greater than the videoinfo size.
Qualcomm Aqt1000 Firmware -
Qualcomm Fastconnect 6200 Firmware -
Qualcomm Fastconnect 6700 Firmware -
Qualcomm Fastconnect 6800 Firmware -
Qualcomm Fastconnect 6900 Firmware -
Qualcomm Fastconnect 7800 Firmware -
Qualcomm Qam8255p Firmware -
Qualcomm Qam8295p Firmware -
Qualcomm Qam8650p Firmware -
Qualcomm Qam8775p Firmware -
Qualcomm Qamsrv1h Firmware -
Qualcomm Qamsrv1m Firmware -
Qualcomm Qca6310 Firmware -
Qualcomm Qca6320 Firmware -
Qualcomm Qca6391 Firmware -
Qualcomm Qca6420 Firmware -
Qualcomm Qca6430 Firmware -
Qualcomm Qca6574 Firmware -
Qualcomm Qca6574a Firmware -
Qualcomm Qca6574au Firmware -
Qualcomm Qca6595 Firmware -
Qualcomm Qca6595au Firmware -
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-49223
CVE-2024-0044
information disclosure
CVE-2024-35753
HTML injection
CVE-2024-21306
CVE-2024-35733
SQL injection
CVE-2024-35732
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »