Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
application framework vulnerabilities and exploits
(subscribe to this query)
5
CVSSv2
CVE-2012-0164
Microsoft .NET Framework 4 does not properly compare index values, which allows remote malicious users to cause a denial of service (application hang) via crafted requests to a Windows Presentation Foundation (WPF) application, aka ".NET Framework Index Comparison Vulnerabil...
Microsoft .net Framework 4.0
9.3
CVSSv2
CVE-2012-0162
Microsoft .NET Framework 4 does not properly allocate buffers, which allows remote malicious users to execute arbitrary code via (1) a crafted XAML browser application (aka XBAP) or (2) a crafted .NET Framework application, aka ".NET Framework Buffer Allocation Vulnerability...
Microsoft .net Framework 4.0
5
CVSSv2
CVE-2022-31018
Play Framework is a web framework for Java and Scala. A denial of service vulnerability has been discovered in verions 2.8.3 up to and including 2.8.15 of Play's forms library, in both the Scala and Java APIs. This can occur when using either the `Form#bindFromRequest` metho...
Lightbend Play Framework
5
CVSSv2
CVE-2021-31867
Pimcore Customer Data Framework version 3.0.0 and previous versions suffers from a Boolean-based blind SQL injection issue in the $id parameter of the SegmentAssignmentController.php component of the application. This issue was fixed in version 3.0.2 of the product.
Pimcore Customer Management Framework
5
CVSSv2
CVE-2006-1300
Microsoft .NET framework 2.0 (ASP.NET) in Microsoft Windows 2000 SP4, XP SP1 and SP2, and Server 2003 up to SP1 allows remote malicious users to bypass access restrictions via unspecified "URL paths" that can access Application Folder objects "explicitly by name.&q...
Microsoft .net Framework 2.0
9.3
CVSSv2
CVE-2015-2479
The RyuJIT compiler in Microsoft .NET Framework 4.6 produces incorrect code during an attempt at optimization, which allows remote malicious users to execute arbitrary code via a crafted .NET application, aka "RyuJIT Optimization Elevation of Privilege Vulnerability," a...
Microsoft .net Framework 4.6
9.3
CVSSv2
CVE-2015-2480
The RyuJIT compiler in Microsoft .NET Framework 4.6 produces incorrect code during an attempt at optimization, which allows remote malicious users to execute arbitrary code via a crafted .NET application, aka "RyuJIT Optimization Elevation of Privilege Vulnerability," a...
Microsoft .net Framework 4.6
9.3
CVSSv2
CVE-2015-2481
The RyuJIT compiler in Microsoft .NET Framework 4.6 produces incorrect code during an attempt at optimization, which allows remote malicious users to execute arbitrary code via a crafted .NET application, aka "RyuJIT Optimization Elevation of Privilege Vulnerability," a...
Microsoft .net Framework 4.6
6.8
CVSSv2
CVE-2011-1320
The Security component in IBM WebSphere Application Server (WAS) 6.1.0.x prior to 6.1.0.35 and 7.x prior to 7.0.0.15, when the Tivoli Integrated Portal / embedded WebSphere Application Server (TIP/eWAS) framework is used, does not properly delete AuthCache entries upon a logout, ...
Ibm Websphere Application Server 6.1.0.21
Ibm Websphere Application Server 6.1.0.23
Ibm Websphere Application Server 6.1.0.1
Ibm Websphere Application Server 6.1.0.2
Ibm Websphere Application Server 6.1.0.3
Ibm Websphere Application Server 6.1.0.0
Ibm Websphere Application Server 6.1.0
Ibm Websphere Application Server 6.1.0.25
Ibm Websphere Application Server 6.1.0.27
Ibm Websphere Application Server 6.1.0.29
Ibm Websphere Application Server 6.1.0.33
Ibm Websphere Application Server 6.1.0.9
Ibm Websphere Application Server 6.1.0.12
Ibm Websphere Application Server 6.1.0.15
Ibm Websphere Application Server 6.1.0.19
Ibm Websphere Application Server 6.1.0.17
Ibm Websphere Application Server 6.1.0.31
Ibm Websphere Application Server 6.1.0.11
Ibm Websphere Application Server 6.1.0.5
Ibm Websphere Application Server 6.1.0.7
Ibm Websphere Application Server 7.0.0.4
Ibm Websphere Application Server 7.0.0.3
6.4
CVSSv2
CVE-2021-23901
An XML external entity (XXE) injection vulnerability exists in the Nutch DmozParser and is known to affect Nutch versions < 1.18. XML external entity injection (also known as XXE) is a web security vulnerability that allows an malicious user to interfere with an application...
Apache Nutch
Netapp Snap Creator Framework -
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
NULL pointer dereference
CVE-2023-52689
CVE-2024-23803
client side
CVE-2023-52696
information disclosure
CVE-2024-35843
CVE-2024-27130
CVE-2023-52697
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
3
4
5
6
7
8
9
10
NEXT »