Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
newsletter vulnerabilities and exploits
(subscribe to this query)
5.4
CVSSv3
CVE-2022-4508
The ConvertKit WordPress plugin prior to 2.0.5 does not validate and escapes some of its shortcode attributes before outputting them back in the page, which could allow users with a role as low as a contributor to perform Stored Cross-Site Scripting attacks, which could be used a...
Convertkit Convertkit - Email Marketing\\, Email Newsletter And Landing Pages
6.1
CVSSv3
CVE-2023-2337
The ConvertKit WordPress plugin prior to 2.2.1 does not escape a parameter before outputting it back in an attribute, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin
Convertkit Convertkit - Email Marketing\\, Email Newsletter And Landing Pages
9.8
CVSSv3
CVE-2023-27032
Prestashop advancedpopupcreator v1.1.21 to v1.1.24 exists to contain a SQL injection vulnerability via the component AdvancedPopup::getPopups().
Idnovate Popup Module \\(on Entering\\, Exit Popup\\, Add Product\\) And Newsletter
NA
CVE-2012-3588
Directory traversal vulnerability in preview.php in the Plugin Newsletter plugin 1.5 for WordPress allows remote malicious users to read arbitrary files via a .. (dot dot) in the data parameter.
Wordpress Plugin Newsletter Plugin 1.5
1 EDB exploit
3.3
CVSSv3
CVE-2020-24426
Acrobat Reader DC versions 2020.012.20048 (and previous versions), 2020.001.30005 (and previous versions) and 2017.011.30175 (and previous versions) are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage t...
Adobe Acrobat
Adobe Acrobat Dc
Adobe Acrobat Reader
Adobe Acrobat Reader Dc
3.3
CVSSv3
CVE-2020-24427
Acrobat Reader versions 2020.012.20048 (and previous versions), 2020.001.30005 (and previous versions) and 2017.011.30175 (and previous versions) are affected by an input validation vulnerability when decoding a crafted codec that could result in the disclosure of sensitive memor...
Adobe Acrobat
Adobe Acrobat Dc
Adobe Acrobat Reader
Adobe Acrobat Reader Dc
7.7
CVSSv3
CVE-2020-24428
Acrobat Reader DC versions 2020.012.20048 (and previous versions), 2020.001.30005 (and previous versions) and 2017.011.30175 (and previous versions) for macOS are affected by a time-of-check time-of-use (TOCTOU) race condition vulnerability that could result in local privilege es...
Adobe Acrobat
Adobe Acrobat Dc
Adobe Acrobat Reader
Adobe Acrobat Reader Dc
4.4
CVSSv3
CVE-2020-24431
Acrobat Reader DC versions 2020.012.20048 (and previous versions), 2020.001.30005 (and previous versions) and 2017.011.30175 (and previous versions) for macOS are affected by a security feature bypass that could result in dynamic library code injection by the Adobe Reader process...
Adobe Acrobat
Adobe Acrobat Dc
Adobe Acrobat Reader
Adobe Acrobat Reader Dc
7.8
CVSSv3
CVE-2020-24435
Acrobat Reader DC versions 2020.012.20048 (and previous versions), 2020.001.30005 (and previous versions) and 2017.011.30175 (and previous versions) are affected by a heap-based buffer overflow vulnerability in the submitForm function, potentially resulting in arbitrary code exec...
Adobe Acrobat
Adobe Acrobat Dc
Adobe Acrobat Reader
Adobe Acrobat Reader Dc
7.8
CVSSv3
CVE-2020-24436
Acrobat Pro DC versions 2020.012.20048 (and previous versions), 2020.001.30005 (and previous versions) and 2017.011.30175 (and previous versions) are affected by an out-of-bounds write vulnerability that could result in writing past the end of an allocated memory structure. An at...
Adobe Acrobat
Adobe Acrobat Dc
Adobe Acrobat Reader
Adobe Acrobat Reader Dc
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-30310
CVE-2024-21683
CVE-2024-22187
chrome
deserialization
XPath injection
CVE-2024-27842
denial of service
CVE-2024-24851
google
CVE-2024-35400
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
3
4
5
6
7
8
9
10
NEXT »