Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
paul taylor vulnerabilities and exploits
(subscribe to this query)
8.4
CVSSv3
CVE-2017-6970
AlienVault USM and OSSIM prior to 5.3.7 and NfSen prior to 1.3.8 allow local users to execute arbitrary commands in a privileged context via an NfSen socket, aka AlienVault ID ENG-104863.
Alienvault Unified Security Management
Alienvault Ossim
Nfsen Nfsen
1 EDB exploit
9.8
CVSSv3
CVE-2017-6972
AlienVault USM and OSSIM prior to 5.3.7 and NfSen prior to 1.3.8 have an error in privilege dropping and unnecessarily execute the NfSen Perl code as root, aka AlienVault ID ENG-104945, a different vulnerability than CVE-2017-6970 and CVE-2017-6971.
Alienvault Ossim
Alienvault Unified Security Management
Nfsen Nfsen
1 EDB exploit
9.9
CVSSv3
CVE-2017-7175
NfSen prior to 1.3.8 allows remote malicious users to execute arbitrary OS commands via shell metacharacters in the customfmt parameter (aka the "Custom output format" field).
Nfsen Nfsen
1 EDB exploit
6.7
CVSSv3
CVE-2018-1185
An issue exists in EMC RecoverPoint for Virtual Machines versions before 5.1.1, EMC RecoverPoint version 5.1.0.0, and EMC RecoverPoint versions before 5.0.1.3. Command injection vulnerability in Admin CLI may allow a malicious user with admin privileges to escape from the restric...
Dell Emc Recoverpoint
Dell Emc Recoverpoint For Virtual Machines
Dell Emc Recoverpoint 5.1.0.0
1 EDB exploit
1 Github repository
NA
CVE-2008-5500
The layout engine in Mozilla Firefox 3.x prior to 3.0.5 and 2.x prior to 2.0.0.19, Thunderbird 2.x prior to 2.0.0.19, and SeaMonkey 1.x prior to 1.1.14 allows remote malicious users to cause a denial of service (crash) and possibly trigger memory corruption via vectors related to...
Mozilla Firefox
Mozilla Thunderbird
Mozilla Seamonkey
Canonical Ubuntu Linux 7.10
Canonical Ubuntu Linux 8.04
Canonical Ubuntu Linux 8.10
Canonical Ubuntu Linux 6.06
Debian Debian Linux 4.0
Debian Debian Linux 5.0
NA
CVE-2008-5506
Mozilla Firefox 3.x prior to 3.0.5 and 2.x prior to 2.0.0.19, Thunderbird 2.x prior to 2.0.0.19, and SeaMonkey 1.x prior to 1.1.14 allows remote malicious users to bypass the same origin policy by causing the browser to issue an XMLHttpRequest to an attacker-controlled resource t...
Mozilla Firefox
Mozilla Thunderbird
Mozilla Seamonkey
Canonical Ubuntu Linux 6.06
Canonical Ubuntu Linux 7.10
Canonical Ubuntu Linux 8.04
Canonical Ubuntu Linux 8.10
Debian Debian Linux 4.0
Debian Debian Linux 5.0
NA
CVE-2008-5511
Mozilla Firefox 3.x prior to 3.0.5 and 2.x prior to 2.0.0.19, Thunderbird 2.x prior to 2.0.0.19, and SeaMonkey 1.x prior to 1.1.14 allows remote malicious users to bypass the same origin policy and conduct cross-site scripting (XSS) attacks via an XBL binding to an "unloaded...
Mozilla Firefox
Mozilla Seamonkey
Mozilla Thunderbird
Canonical Ubuntu Linux 6.06
Canonical Ubuntu Linux 7.10
Canonical Ubuntu Linux 8.04
Canonical Ubuntu Linux 8.10
Debian Debian Linux 5.0
Debian Debian Linux 4.0
NA
CVE-2008-5507
Mozilla Firefox 3.x prior to 3.0.5 and 2.x prior to 2.0.0.19, Thunderbird 2.x prior to 2.0.0.19, and SeaMonkey 1.x prior to 1.1.14 allow remote malicious users to bypass the same origin policy and access portions of data from another domain via a JavaScript URL that redirects to ...
Mozilla Firefox
Mozilla Seamonkey
Mozilla Thunderbird
Canonical Ubuntu Linux 8.10
Canonical Ubuntu Linux 7.10
Canonical Ubuntu Linux 6.06
Canonical Ubuntu Linux 8.04
Debian Debian Linux 4.0
Debian Debian Linux 5.0
NA
CVE-2008-5512
Multiple unspecified vulnerabilities in Mozilla Firefox 3.x prior to 3.0.5 and 2.x prior to 2.0.0.19, Thunderbird 2.x prior to 2.0.0.19, and SeaMonkey 1.x prior to 1.1.14 allow remote malicious users to run arbitrary JavaScript with chrome privileges via unknown vectors in which ...
Mozilla Seamonkey
Mozilla Firefox
Mozilla Thunderbird
Canonical Ubuntu Linux 6.06
Canonical Ubuntu Linux 7.10
Canonical Ubuntu Linux 8.04
Canonical Ubuntu Linux 8.10
Debian Debian Linux 5.0
Debian Debian Linux 4.0
9.8
CVSSv3
CVE-2017-11357
Progress Telerik UI for ASP.NET AJAX before R2 2017 SP2 does not properly restrict user input to RadAsyncUpload, which allows remote malicious users to perform arbitrary file uploads or execute arbitrary code.
Telerik Ui For Asp.net Ajax
1 EDB exploit
4 Github repositories
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
privilege escalation
CVE-2024-20696
CVE-2024-29829
CVE-2024-33999
CVE-2024-35646
physical
CVE-2024-24919
CVE-2024-31030
local users
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »