Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
messenger vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv3
CVE-2022-41708
Relatedcode's Messenger version 7bcd20b allows an authenticated external malicious user to access existing chats in the workspaces of any user of the application. This is possible because the application does not validate permissions correctly.
Relatedcode Messenger -
NA
CVE-2014-7216
Multiple stack-based buffer overflows in Yahoo! Messenger 11.5.0.228 and previous versions allow remote malicious users to cause a denial of service (crash) and possibly execute arbitrary code via the (1) shortcut or (2) title keys in an emoticons.xml file.
Yahoo Messenger
1 Article
NA
CVE-2007-4515
Buffer overflow in a certain ActiveX control in YVerInfo.dll prior to 2007.8.27.1 in the Yahoo! services suite for Yahoo! Messenger prior to 8.1.0.419 allows remote malicious users to execute arbitrary code via unspecified vectors involving arguments to the (1) fvCom and (2) info...
Yahoo Messenger
2 EDB exploits
6.1
CVSSv3
CVE-2020-17476
Mibew Messenger prior to 3.2.7 allows XSS via a crafted user name.
Mibew Messenger
5.4
CVSSv3
CVE-2023-30095
A stored cross-site scripting (XSS) vulnerability in TotalJS messenger commit b6cf1c9 allows malicious users to execute arbitrary web scripts or HTML via a crafted payload injected into the channel description field.
Totaljs Messenger -
5.4
CVSSv3
CVE-2023-30096
A stored cross-site scripting (XSS) vulnerability in TotalJS messenger commit b6cf1c9 allows malicious users to execute arbitrary web scripts or HTML via a crafted payload injected into the user information field.
Totaljs Messenger -
5.4
CVSSv3
CVE-2023-30097
A stored cross-site scripting (XSS) vulnerability in TotalJS messenger commit b6cf1c9 allows malicious users to execute arbitrary web scripts or HTML via a crafted payload injected into the private task field.
Totaljs Messenger -
NA
CVE-2004-1676
Heap-based buffer overflow in the image sending feature in Gadu-Gadu 6.0 build 149 allows remote malicious users to execute arbitrary code via a crafted GG_MSG_IMAGE_REPLY message.
Gadu-gadu Gadu-gadu Instant Messenger 6.0 Build149
Gadu-gadu Gadu-gadu Instant Messenger 6.0
NA
CVE-2004-0597
Multiple buffer overflows in libpng 1.2.5 and previous versions, as used in multiple products, allow remote malicious users to execute arbitrary code via malformed PNG images in which (1) the png_handle_tRNS function does not properly validate the length of transparency chunk (tR...
Microsoft Windows Messenger 5.0
Greg Roelofs Libpng
Microsoft Msn Messenger 6.1
Microsoft Msn Messenger 6.2
Microsoft Windows Media Player 9
Microsoft Windows 98se
Microsoft Windows Me
3 EDB exploits
2 Github repositories
7.5
CVSSv3
CVE-2019-17191
The Signal Private Messenger application prior to 4.47.7 for Android allows a caller to force a call to be answered, without callee user interaction, via a connect message. The existence of the call is noticeable to the callee; however, the audio channel may be open before the ca...
Signal Private Messenger
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
camera
bypass
CVE-2024-3592
CVE-2024-37383
CVE-2024-24919
CVE-2024-27822
CVE-2024-36788
CVE-2024-36789
man-in-the-middle
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
2
3
4
5
6
7
8
9
10
NEXT »