Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
x vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2014-8077
Cross-site scripting (XSS) vulnerability in the NewsFlash theme 6.x-1.x prior to 6.x-1.7 and 7.x-1.x prior to 7.x-2.5 for Drupal allows remote authenticated users with the "administer themes" permission to inject arbitrary web script or HTML via vectors related to font ...
Drupal Newsflash 6.x-1.x-dev
Drupal Newsflash 7.x-2.0
Drupal Newsflash 6.x-1.6
Drupal Newsflash 7.x-2.3
Drupal Newsflash 7.x-2.4
Drupal Newsflash 7.x-2.2
Drupal Newsflash 7.x-2.x-dev
Drupal Newsflash 7.x-1.x-dev
Drupal Newsflash 7.x-2.1
NA
CVE-2010-2353
The Node Reference module in Content Construction Kit (CCK) module 6.x prior to 6.x-2.7 for Drupal does not perform access checks for the source field in the backend URL for the autocomplete widget, which allows remote malicious users to discover titles and IDs of controlled node...
Yves Chedemois Cck 6.x-2.6
Yves Chedemois Cck 6.x-2.5
Yves Chedemois Cck 6.x-2.0
Yves Chedemois Cck 6.x-2.1
Yves Chedemois Cck 6.x-2.3
Yves Chedemois Cck 6.x-2.2
Yves Chedemois Cck 6.x-1.x-dev
Yves Chedemois Cck 6.x-2.4
Yves Chedemois Cck 6.x-3.x-dev
Yves Chedemois Cck 6.x-2.x-dev
Yves Chedemois Cck 6.x-1.0-alpha
NA
CVE-2012-5538
Cross-site scripting (XSS) vulnerability in the FileField Sources module 6.x-1.x prior to 6.x-1.6 and 7.x-1.x prior to 7.x-1.6 for Drupal, when the field has "Reference existing" source enabled, allows remote authenticated users to inject arbitrary web script or HTML vi...
Nathan Haug Filefield Sources 6.x-1.0
Nathan Haug Filefield Sources 6.x-1.x
Nathan Haug Filefield Sources 7.x-1.5
Nathan Haug Filefield Sources 7.x-1.4
Nathan Haug Filefield Sources 6.x-1.4
Nathan Haug Filefield Sources 6.x-1.2
Nathan Haug Filefield Sources 7.x-1.2
Nathan Haug Filefield Sources 6.x-1.5
Nathan Haug Filefield Sources 6.x-1.3
Nathan Haug Filefield Sources 6.x-1.1
Nathan Haug Filefield Sources 7.x-1.3
Nathan Haug Filefield Sources 7.x-1.x
NA
CVE-2012-1652
Cross-site scripting (XSS) vulnerability in the Hierarchical Select module 6.x-3.x prior to 6.x-3.8 for Drupal allows remote authenticated users with administer taxonomy permissions to inject arbitrary web script or HTML via unspecified vectors related to "the vocabulary...
Wim Leers Hierarchical Select 6.x-3.1
Wim Leers Hierarchical Select 6.x-3.0
Wim Leers Hierarchical Select 6.x-3.2
Wim Leers Hierarchical Select 6.x-3.3
Wim Leers Hierarchical Select 6.x-3.x
Wim Leers Hierarchical Select 6.x-3.6
Wim Leers Hierarchical Select 6.x-3.7
Wim Leers Hierarchical Select 6.x-3.4
Wim Leers Hierarchical Select 6.x-3.5
Wimleers Hierarchical Select 6.x-3.x
Wimleers Hierarchical Select 6.x-3.1
Wimleers Hierarchical Select 6.x-3.0
NA
CVE-2012-0914
Cross-site scripting (XSS) vulnerability in display_renderers/panels_renderer_editor.class.php in the admin view in the Panels module 6.x-2.x prior to 6.x-3.10 and 7.x-3.x prior to 7.x-3.0 for Drupal allows remote authenticated users with certain privileges to inject arbitrary we...
Earl Miles Panels 6.x-3.9
Earl Miles Panels 6.x-3.4
Earl Miles Panels 6.x-3.3
Earl Miles Panels 6.x-3.0
Earl Miles Panels 6.x-3.7
Earl Miles Panels 6.x-3.5
Earl Miles Panels 6.x-3.8
Earl Miles Panels 6.x-3.2
Earl Miles Panels 6.x-3.1
Earl Miles Panels 6.x-3.x
Earl Miles Panels 7.x-3.0
Earl Miles Panels 7.x-3.x
NA
CVE-2012-3721
Profile Manager in Apple Mac OS X prior to 10.7.5 does not properly perform authentication for the Device Management private interface, which allows malicious users to enumerate managed devices via unspecified vectors.
Apple Mac Os X 10.4.11
Apple Mac Os X 10.6.1
Apple Mac Os X 10.2.0
Apple Mac Os X 10.3.0
Apple Mac Os X 10.4.10
Apple Mac Os X 10.4.1
Apple Mac Os X 10.6.7
Apple Mac Os X 10.6.0
Apple Mac Os X 10.5.3
Apple Mac Os X 10.6.4
Apple Mac Os X 10.5.5
Apple Mac Os X 10.4.3
Apple Mac Os X 10.0.0
Apple Mac Os X 10.3.8
Apple Mac Os X 10.4.9
Apple Mac Os X 10.2.3
Apple Mac Os X 10.2.4
Apple Mac Os X 10.7.3
Apple Mac Os X 10.5.4
Apple Mac Os X 10.3.5
Apple Mac Os X 10.3.6
Apple Mac Os X 10.0.2
NA
CVE-2013-4384
Cross-site scripting (XSS) vulnerability in Google Site Search module 6.x-1.x prior to 6.x-1.4 and 7.x-1.x prior to 7.x-1.10 for Drupal allows remote malicious users to inject arbitrary web script or HTML by causing crafted data to be returned by the Google API.
Google Site Search Project Google Site Search Module 7.x-1.9
Google Site Search Project Google Site Search Module 7.x-1.3
Google Site Search Project Google Site Search Module 7.x-1.2
Google Site Search Project Google Site Search Module 6.x-1.0
Google Site Search Project Google Site Search Module 7.x-1.6
Google Site Search Project Google Site Search Module 7.x-1.5
Google Site Search Project Google Site Search Module 7.x-1.x
Google Site Search Project Google Site Search Module 7.x-1.0
Google Site Search Project Google Site Search Module 7.x-1.8
Google Site Search Project Google Site Search Module 7.x-1.7
Google Site Search Project Google Site Search Module 7.x-1.1
Google Site Search Project Google Site Search Module 6.x-1.x
Google Site Search Project Google Site Search Module 7.x-1.4
Google Site Search Project Google Site Search Module 6.x-1.3
Google Site Search Project Google Site Search Module 6.x-1.2
Google Site Search Project Google Site Search Module 6.x-1.1
NA
CVE-2014-8078
Cross-site scripting (XSS) vulnerability in the Print (aka Printer, e-mail and PDF versions) module 6.x-1.x prior to 6.x-1.19, 7.x-1.x prior to 7.x-1.3, and 7.x-2.x prior to 7.x-2.0 for Drupal allows remote authenticated users with certain permissions to inject arbitrary web scri...
Drupal Print 6.x-1.1
Drupal Print 6.x-1.2
Drupal Print 6.x-1.9
Drupal Print 6.x-1.10
Drupal Print 6.x-1.16
Drupal Print 6.x-1.17
Drupal Print 7.x-1.1
Drupal Print 7.x-1.2
Drupal Print 6.x-1.7
Drupal Print 6.x-1.8
Drupal Print 6.x-1.14
Drupal Print 6.x-1.15
Drupal Print 7.x-1.0
Drupal Print 6.x-1.5
Drupal Print 6.x-1.6
Drupal Print 6.x-1.12
Drupal Print 6.x-1.13
Drupal Print 7.x-2.0
Drupal Print 6.x-1.3
Drupal Print 6.x-1.4
Drupal Print 6.x-1.11
Drupal Print 6.x-1.18
NA
CVE-2012-5591
Cross-site scripting (XSS) vulnerability in the Zero Point module 6.x-1.x prior to 6.x-1.18 and 7.x-1.x prior to 7.x-1.4 for Drupal allows remote malicious users to inject arbitrary web script or HTML via the path aliases.
Catalin Florian Radut Zeropoint 6.x-1.8
Catalin Florian Radut Zeropoint 6.x-1.7
Catalin Florian Radut Zeropoint 6.x-1.6
Catalin Florian Radut Zeropoint 6.x-1.5
Catalin Florian Radut Zeropoint 6.x-1.17
Catalin Florian Radut Zeropoint 6.x-1.16
Catalin Florian Radut Zeropoint 6.x-1.15
Catalin Florian Radut Zeropoint 6.x-1.13
Catalin Florian Radut Zeropoint 6.x-1.x
Catalin Florian Radut Zeropoint 6.x-1.11
Catalin Florian Radut Zeropoint 6.x-1.9
Catalin Florian Radut Zeropoint 6.x-1.4
Catalin Florian Radut Zeropoint 6.x-1.2
Catalin Florian Radut Zeropoint 6.x-1.0
Catalin Florian Radut Zeropoint 6.x-1.14
Catalin Florian Radut Zeropoint 6.x-1.12
Catalin Florian Radut Zeropoint 6.x-1.10
Catalin Florian Radut Zeropoint 6.x-1.3
Catalin Florian Radut Zeropoint 6.x-1.1
Catalin Florian Radut Zeropoint 7.x-1.0
Catalin Florian Radut Zeropoint 7.x-1.x
Catalin Florian Radut Zeropoint 7.x-1.2
NA
CVE-2015-8095
The recycle bin feature in the Monster Menus module 7.x-1.21 prior to 7.x-1.24 for Drupal does not properly remove nodes from view, which allows remote malicious users to obtain sensitive information via an unspecified URL pattern.
Monster Menus Module Project Monster Menus 7.x-1.19
Monster Menus Module Project Monster Menus 7.x-1.20
Monster Menus Module Project Monster Menus 7.x-1.21
Monster Menus Module Project Monster Menus 7.x-1.22
Monster Menus Module Project Monster Menus 7.x-1.23
Monster Menus Module Project Monster Menus 7.x-1.11
Monster Menus Module Project Monster Menus 7.x-1.12
Monster Menus Module Project Monster Menus 7.x-1.13
Monster Menus Module Project Monster Menus 7.x-1.14
Monster Menus Module Project Monster Menus 7.x-1.6
Monster Menus Module Project Monster Menus 7.x-1.7
Monster Menus Module Project Monster Menus 7.x-1.8
Monster Menus Module Project Monster Menus 7.x-1.9
Monster Menus Module Project Monster Menus 7.x-1.0
Monster Menus Module Project Monster Menus 7.x-1.10
Monster Menus Module Project Monster Menus 7.x-1.15
Monster Menus Module Project Monster Menus 7.x-1.17
Monster Menus Module Project Monster Menus 7.x-1.2
Monster Menus Module Project Monster Menus 7.x-1.4
Monster Menus Module Project Monster Menus 7.x-1.1
Monster Menus Module Project Monster Menus 7.x-1.16
Monster Menus Module Project Monster Menus 7.x-1.18
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
camera
bypass
CVE-2024-3592
CVE-2024-37383
CVE-2024-24919
CVE-2024-27822
CVE-2024-36788
CVE-2024-36789
man-in-the-middle
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
2
3
4
5
6
7
8
9
10
NEXT »