Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
icq vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2001-0233
Buffer overflow in micq client 0.4.6 and previous versions allows remote malicious users to cause a denial of service, and possibly execute arbitrary commands, via a long Description field.
Matthew Smith Micq
Debian Debian Linux 2.2
Redhat Linux 6.0
Redhat Linux 6.1
Redhat Linux 6.2
Redhat Linux 7.0
1 EDB exploit
NA
CVE-2005-0651
Multiple SQL injection vulnerabilities in ProjectBB 0.4.5.1 allow remote malicious users to execute arbitrary SQL commands via (1) liste or (2) desc parameters to divers.php (incorrectly referred to as "drivers.php" by some sources), (3) the search feature text area, (4...
Projectbb Projectbb 0.4.5.1
NA
CVE-2011-4939
The pidgin_conv_chat_rename_user function in gtkconv.c in Pidgin prior to 2.10.2 allows remote malicious users to cause a denial of service (NULL pointer dereference and application crash) by changing a nickname while in an XMPP chat room.
Pidgin Pidgin 2.9.0
Pidgin Pidgin 2.8.0
Pidgin Pidgin 2.7.5
Pidgin Pidgin 2.7.4
Pidgin Pidgin 2.6.2
Pidgin Pidgin 2.6.1
Pidgin Pidgin 2.5.4
Pidgin Pidgin 2.5.3
Pidgin Pidgin 2.4.0
Pidgin Pidgin 2.3.1
Pidgin Pidgin 2.0.1
Pidgin Pidgin 2.0.0
Pidgin Pidgin 2.7.9
Pidgin Pidgin 2.7.8
Pidgin Pidgin 2.7.1
Pidgin Pidgin 2.6.6
Pidgin Pidgin 2.6.5
Pidgin Pidgin 2.5.8
Pidgin Pidgin 2.5.7
Pidgin Pidgin 2.5.0
Pidgin Pidgin 2.4.3
Pidgin Pidgin 2.2.0
NA
CVE-2012-1178
The msn_oim_report_to_user function in oim.c in the MSN protocol plugin in libpurple in Pidgin prior to 2.10.2 allows remote servers to cause a denial of service (application crash) via an OIM message that lacks UTF-8 encoding.
Pidgin Pidgin 2.7.10
Pidgin Pidgin 2.7.9
Pidgin Pidgin 2.7.2
Pidgin Pidgin 2.7.1
Pidgin Pidgin 2.5.9
Pidgin Pidgin 2.5.8
Pidgin Pidgin 2.5.1
Pidgin Pidgin 2.5.0
Pidgin Pidgin 2.2.2
Pidgin Pidgin 2.2.1
Pidgin Pidgin 2.2.0
Pidgin Pidgin 2.10.0
Pidgin Pidgin 2.9.0
Pidgin Pidgin 2.7.6
Pidgin Pidgin 2.7.5
Pidgin Pidgin 2.6.3
Pidgin Pidgin 2.6.2
Pidgin Pidgin 2.5.5
Pidgin Pidgin 2.5.4
Pidgin Pidgin 2.4.1
Pidgin Pidgin 2.4.0
Pidgin Pidgin 2.0.2
NA
CVE-2006-3063
Multiple cross-site scripting (XSS) vulnerabilities in myPHP Guestbook 1.x up to and including 2.0.0-r1 and prior to 2.0.1 RC5 allow remote malicious users to inject arbitrary web script or HTML via the (1) comment, (2) email, (3) homepage, (4) id, (5) name, and (6) text paramete...
Myphp Guestbook Myphp Guestbook 1.8
Myphp Guestbook Myphp Guestbook 1.8.3
Myphp Guestbook Myphp Guestbook 2.0.0 Rc1
Myphp Guestbook Myphp Guestbook 2.0.0 Rc2
Myphp Guestbook Myphp Guestbook 1.0
Myphp Guestbook Myphp Guestbook 2.0.0 Alpha
Myphp Guestbook Myphp Guestbook 2.0.0 Beta
Myphp Guestbook Myphp Guestbook 2.0.1 Rc3
Myphp Guestbook Myphp Guestbook 2.0.1 Rc4
Myphp Guestbook Myphp Guestbook 2.0.0
Myphp Guestbook Myphp Guestbook 2.0.0-r1
Myphp Guestbook Myphp Guestbook 2.0.1 Rc1
Myphp Guestbook Myphp Guestbook 2.0.1 Rc2
Myphp Guestbook Myphp Guestbook 1.9
Myphp Guestbook Myphp Guestbook 1.9.2
Myphp Guestbook Myphp Guestbook 2.0.0 Rc3
Myphp Guestbook Myphp Guestbook 2.0.0 Rc4
Myphp Guestbook Myphp Guestbook 2.0.1 Beta
NA
CVE-2012-2318
msg.c in the MSN protocol plugin in libpurple in Pidgin prior to 2.10.4 does not properly handle crafted characters, which allows remote servers to cause a denial of service (application crash) by placing these characters in a text/plain message.
Pidgin Pidgin 2.7.6
Pidgin Pidgin 2.7.7
Pidgin Pidgin 2.5.5
Pidgin Pidgin 2.0.0
Pidgin Pidgin 2.5.2
Pidgin Pidgin 2.5.8
Pidgin Pidgin 2.7.2
Pidgin Pidgin 2.7.0
Pidgin Pidgin 2.10.0
Pidgin Pidgin 2.10.1
Pidgin Pidgin 2.9.0
Pidgin Pidgin 2.5.9
Pidgin Pidgin 2.4.3
Pidgin Pidgin 2.7.8
Pidgin Pidgin 2.5.4
Pidgin Pidgin 2.3.0
Pidgin Pidgin 2.2.2
Pidgin Pidgin 2.6.4
Pidgin Pidgin 2.7.1
Pidgin Pidgin 2.5.7
Pidgin Pidgin 2.2.1
Pidgin Pidgin 2.7.9
NA
CVE-2012-2214
proxy.c in libpurple in Pidgin prior to 2.10.4 does not properly handle canceled SOCKS5 connection attempts, which allows user-assisted remote authenticated users to cause a denial of service (application crash) via a sequence of XMPP file-transfer requests.
Pidgin Pidgin 2.7.7
Pidgin Pidgin 2.7.4
Pidgin Pidgin 2.0.0
Pidgin Pidgin 2.4.1
Pidgin Pidgin 2.5.8
Pidgin Pidgin 2.5.3
Pidgin Pidgin 2.7.0
Pidgin Pidgin 2.6.0
Pidgin Pidgin 2.0.2
Pidgin Pidgin 2.10.1
Pidgin Pidgin 2.10.2
Pidgin Pidgin 2.4.3
Pidgin Pidgin 2.7.6
Pidgin Pidgin 2.5.4
Pidgin Pidgin 2.5.5
Pidgin Pidgin 2.2.2
Pidgin Pidgin 2.5.2
Pidgin Pidgin 2.7.1
Pidgin Pidgin 2.7.2
Pidgin Pidgin 2.2.1
Pidgin Pidgin 2.10.0
Pidgin Pidgin 2.8.0
NA
CVE-2011-4602
The XMPP protocol plugin in libpurple in Pidgin prior to 2.10.1 does not properly handle missing fields in (1) voice-chat and (2) video-chat stanzas, which allows remote malicious users to cause a denial of service (application crash) via a crafted message.
Pidgin Pidgin 2.7.8
Pidgin Pidgin 2.7.7
Pidgin Pidgin 2.6.6
Pidgin Pidgin 2.6.5
Pidgin Pidgin 2.5.8
Pidgin Pidgin 2.5.7
Pidgin Pidgin 2.5.6
Pidgin Pidgin 2.4.3
Pidgin Pidgin 2.4.2
Pidgin Pidgin 2.2.0
Pidgin Pidgin 2.1.1
Pidgin Pidgin 2.7.10
Pidgin Pidgin 2.7.9
Pidgin Pidgin 2.7.2
Pidgin Pidgin 2.7.1
Pidgin Pidgin 2.6.0
Pidgin Pidgin 2.5.9
Pidgin Pidgin 2.5.1
Pidgin Pidgin 2.5.0
Pidgin Pidgin 2.2.2
Pidgin Pidgin 2.2.1
Pidgin Pidgin
NA
CVE-2011-4922
cipher.c in the Cipher API in libpurple in Pidgin prior to 2.7.10 retains encryption-key data in process memory, which might allow local users to obtain sensitive information by reading a core file or other representation of memory contents.
Pidgin Pidgin 2.7.6
Pidgin Pidgin 2.7.5
Pidgin Pidgin 2.6.5
Pidgin Pidgin 2.6.4
Pidgin Pidgin 2.5.5
Pidgin Pidgin 2.5.3
Pidgin Pidgin 2.4.0
Pidgin Pidgin 2.4.2
Pidgin Pidgin 2.1.1
Pidgin Pidgin 2.10.4
Pidgin Pidgin
Pidgin Pidgin 2.7.2
Pidgin Pidgin 2.7.1
Pidgin Pidgin 2.7.4
Pidgin Pidgin 2.7.3
Pidgin Pidgin 2.6.1
Pidgin Pidgin 2.6.2
Pidgin Pidgin 2.5.0
Pidgin Pidgin 2.5.1
Pidgin Pidgin 2.3.1
Pidgin Pidgin 2.3.0
Pidgin Pidgin 2.10.0
NA
CVE-2009-3615
The OSCAR protocol plugin in libpurple in Pidgin prior to 2.6.3 and Adium prior to 1.3.7 allows remote malicious users to cause a denial of service (application crash) via crafted contact-list data for (1) ICQ and possibly (2) AIM, as demonstrated by the SIM IM client.
Adium Adium 1.3.3
Adium Adium 1.3.4
Adium Adium 1.0.3
Adium Adium 1.3
Adium Adium 1.1.3
Pidgin Pidgin 2.6.1
Pidgin Pidgin 2.5.4
Pidgin Pidgin 2.5.3
Pidgin Pidgin 2.3.1
Pidgin Pidgin 2.3.0
Pidgin Pidgin 2.0.1
Pidgin Pidgin 2.0.0
Adium Adium 1.3.5
Adium Adium 1.0
Adium Adium 1.0.4
Adium Adium 1.1
Pidgin Pidgin 2.6.0
Pidgin Pidgin 2.5.9
Pidgin Pidgin 2.5.2
Pidgin Pidgin 2.5.1
Pidgin Pidgin 2.2.2
Pidgin Pidgin 2.2.1
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-33572
CVE-2024-24919
CVE-2024-0230
CVE-2024-32714
HTML injection
local file inclusion
CVE-2024-31098
CVE-2024-31244
privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
2
3
4
5
6
7
8
NEXT »