Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
aim vulnerabilities and exploits
(subscribe to this query)
570
VMScore
CVE-2006-1811
Multiple SQL injection vulnerabilities in FlexBB 0.5.5 BETA allow remote malicious users to execute arbitrary SQL commands via the (1) id, (2) forumid, or (3) threadid parameter to index.php; the (4) ICQ, (5) AIM, (6) MSN, (7) Google Talk, (8) Website Name, (9) Website Address, (...
Flexbb Flexbb 0.5.5 Beta
490
VMScore
CVE-2017-15532
before 10.6.4, Symantec Messaging Gateway may be susceptible to a path traversal attack (also known as directory traversal). These types of attacks aim to access files and directories that are stored outside the web root folder. By manipulating variables, it may be possible to ac...
Symantec Messaging Gateway
570
VMScore
CVE-2020-35685
An issue exists in HCC Nichestack 3.0. The code that generates Initial Sequence Numbers (ISNs) for TCP connections derives the ISN from an insufficiently random source. As a result, an attacker may be able to determine the ISN of current and future TCP connections and either hija...
Hcc-embedded Nichestack 3.0
Siemens Sentron 3wa Com190 Firmware
Siemens Sentron 3wl Com35 Firmware
445
VMScore
CVE-2009-2975
Mozilla Firefox 3.5.2 on Windows XP, in some situations possibly involving an incompletely configured protocol handler, does not properly implement setting the document.location property to a value specifying a protocol associated with an external application, which allows remote...
Mozilla Firefox 3.5.2
460
VMScore
CVE-2005-2569
Multiple cross-site scripting (XSS) vulnerabilities in FunkBoard 0.66CF, and possibly earlier versions, allow remote malicious users to inject arbitrary web script or HTML via the fbusername or fbpassword parameter to (1) editpost.php, (2) prefs.php, (3) newtopic.php, (4) reply.p...
Funkboard Funkboard
6 EDB exploits
NA
CVE-2024-2363
** UNSUPPORTED WHEN ASSIGNED ** A vulnerability was found in AOL AIM Triton 1.0.4. It has been declared as problematic. This vulnerability affects unknown code of the component Invite Handler. The manipulation of the argument CSeq leads to denial of service. The attack can be ini...
445
VMScore
CVE-2012-1178
The msn_oim_report_to_user function in oim.c in the MSN protocol plugin in libpurple in Pidgin prior to 2.10.2 allows remote servers to cause a denial of service (application crash) via an OIM message that lacks UTF-8 encoding.
Pidgin Pidgin 2.7.10
Pidgin Pidgin 2.7.9
Pidgin Pidgin 2.7.2
Pidgin Pidgin 2.7.1
Pidgin Pidgin 2.5.9
Pidgin Pidgin 2.5.8
Pidgin Pidgin 2.5.1
Pidgin Pidgin 2.5.0
Pidgin Pidgin 2.2.2
Pidgin Pidgin 2.2.1
Pidgin Pidgin 2.2.0
Pidgin Pidgin 2.10.0
Pidgin Pidgin 2.9.0
Pidgin Pidgin 2.7.6
Pidgin Pidgin 2.7.5
Pidgin Pidgin 2.6.3
Pidgin Pidgin 2.6.2
Pidgin Pidgin 2.5.5
Pidgin Pidgin 2.5.4
Pidgin Pidgin 2.4.1
Pidgin Pidgin 2.4.0
Pidgin Pidgin 2.0.2
570
VMScore
CVE-2011-4939
The pidgin_conv_chat_rename_user function in gtkconv.c in Pidgin prior to 2.10.2 allows remote malicious users to cause a denial of service (NULL pointer dereference and application crash) by changing a nickname while in an XMPP chat room.
Pidgin Pidgin 2.9.0
Pidgin Pidgin 2.8.0
Pidgin Pidgin 2.7.5
Pidgin Pidgin 2.7.4
Pidgin Pidgin 2.6.2
Pidgin Pidgin 2.6.1
Pidgin Pidgin 2.5.4
Pidgin Pidgin 2.5.3
Pidgin Pidgin 2.4.0
Pidgin Pidgin 2.3.1
Pidgin Pidgin 2.0.1
Pidgin Pidgin 2.0.0
Pidgin Pidgin 2.7.9
Pidgin Pidgin 2.7.8
Pidgin Pidgin 2.7.1
Pidgin Pidgin 2.6.6
Pidgin Pidgin 2.6.5
Pidgin Pidgin 2.5.8
Pidgin Pidgin 2.5.7
Pidgin Pidgin 2.5.0
Pidgin Pidgin 2.4.3
Pidgin Pidgin 2.2.0
NA
CVE-2023-30621
Gipsy is a multi-purpose discord bot which aim to be as modular and user-friendly as possible. In versions before 1.3 users can run command on the host machine with sudoer permission. The `!ping` command when provided with an IP or hostname used to run a bash `ping <IP>` wi...
Gipsy Project Gipsy
445
VMScore
CVE-2011-4602
The XMPP protocol plugin in libpurple in Pidgin prior to 2.10.1 does not properly handle missing fields in (1) voice-chat and (2) video-chat stanzas, which allows remote malicious users to cause a denial of service (application crash) via a crafted message.
Pidgin Pidgin 2.7.8
Pidgin Pidgin 2.7.7
Pidgin Pidgin 2.6.6
Pidgin Pidgin 2.6.5
Pidgin Pidgin 2.5.8
Pidgin Pidgin 2.5.7
Pidgin Pidgin 2.5.6
Pidgin Pidgin 2.4.3
Pidgin Pidgin 2.4.2
Pidgin Pidgin 2.2.0
Pidgin Pidgin 2.1.1
Pidgin Pidgin 2.7.10
Pidgin Pidgin 2.7.9
Pidgin Pidgin 2.7.2
Pidgin Pidgin 2.7.1
Pidgin Pidgin 2.6.0
Pidgin Pidgin 2.5.9
Pidgin Pidgin 2.5.1
Pidgin Pidgin 2.5.0
Pidgin Pidgin 2.2.2
Pidgin Pidgin 2.2.1
Pidgin Pidgin
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
inject
CVE-2024-34001
CVE-2024-37018
LFI
CVE-2024-1275
CVE-2024-1086
CSRF
CVE-2024-31030
CVE-2024-24919
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
3
4
5
6
7
8
9
10
NEXT »