Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
web studio vulnerabilities and exploits
(subscribe to this query)
828
VMScore
CVE-2011-4052
Stack-based buffer overflow in CEServer.exe in the CEServer component in the Remote Agent module in InduSoft Web Studio 6.1 and 7.0 allows remote malicious users to execute arbitrary code via a crafted 0x15 (aka Remove File) operation for a file with a long name.
Indusoft Web Studio 6.1
Indusoft Web Studio 7.0
890
VMScore
CVE-2011-0342
Multiple buffer overflows in the InduSoft ISSymbol ActiveX control in ISSymbol.ocx 301.1104.601.0 in InduSoft Web Studio 7.0B2 hotfix 7.0.01.04 allow remote malicious users to execute arbitrary code via a long parameter to the (1) Open, (2) Close, or (3) SetCurrentLanguage method...
Indusoft Web Studio 7.0b2
383
VMScore
CVE-2011-2644
Cross-site scripting (XSS) vulnerability in Kiwi prior to 3.74.2, as used in SUSE Studio 1.1 prior to 1.1.4, allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors, related to an RPM info display.
Marcus Schafer Kiwi
Novell Suse Studio Onsite 1.1
383
VMScore
CVE-2011-2650
Cross-site scripting (XSS) vulnerability in Kiwi prior to 3.74.2, as used in SUSE Studio 1.1 prior to 1.1.4, allows remote malicious users to inject arbitrary web script or HTML via a crafted pattern name that is included in an RPM info display.
Novell Suse Studio Onsite 1.1
Marcus Schafer Kiwi
383
VMScore
CVE-2011-2652
Cross-site scripting (XSS) vulnerability in Kiwi prior to 3.74.2, as used in SUSE Studio 1.1 prior to 1.1.4, allows remote malicious users to inject arbitrary web script or HTML via a crafted archive file list that is used in an overlay file.
Marcus Schafer Kiwi
Novell Suse Studio Onsite 1.1
383
VMScore
CVE-2011-2226
Cross-site scripting (XSS) vulnerability in Kiwi prior to 3.74.2, as used in SUSE Studio 1.1 prior to 1.1.4, allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors, related to a pattern listing.
Novell Suse Studio Onsite 1.1
Marcus Schafer Kiwi
435
VMScore
CVE-2011-1976
Cross-site scripting (XSS) vulnerability in the Report Viewer Control in Microsoft Visual Studio 2005 SP1 and Report Viewer 2005 SP1 allows remote malicious users to inject arbitrary web script or HTML via a parameter in a data source, aka "Report Viewer Controls XSS Vulnera...
Microsoft Report Viewer 2005
Microsoft Visual Studio 2005
1 EDB exploit
383
VMScore
CVE-2011-1280
The XML Editor in Microsoft InfoPath 2007 SP2 and 2010; SQL Server 2005 SP3 and SP4 and 2008 SP1, SP2, and R2; SQL Server Management Studio Express (SSMSE) 2005; and Visual Studio 2005 SP1, 2008 SP1, and 2010 does not properly handle external entities, which allows remote malicio...
Microsoft Sql Server 2005
Microsoft Sql Server 2008
Microsoft Sql Server Management Studio Express 2005
Microsoft Visual Studio 2005
Microsoft Visual Studio 2008
Microsoft Office Infopath 2010
Microsoft Office Infopath 2007
Microsoft Visual Studio 2010
935
VMScore
CVE-2011-0340
Multiple buffer overflows in the ISSymbol ActiveX control in ISSymbol.ocx 61.6.0.0 and 301.1009.2904.0 in the ISSymbol virtual machine, as distributed in Advantech Studio 6.1 SP6 61.6.01.05, InduSoft Web Studio prior to 7.0+SP1, and InduSoft Thin Client 7.0, allow remote maliciou...
Indusoft Web Studio
Indusoft Web Studio 6.1
Indusoft Thin Client 7.0
Advantech Advantech Studio 6.1
1 EDB exploit
1000
VMScore
CVE-2011-1900
Directory traversal vulnerability in NTWebServer in InduSoft Web Studio 6.1 and 7.x prior to 7.0+Patch 1 allows remote malicious users to execute arbitrary code via an invalid request.
Indusoft Web Studio 7.0
Indusoft Web Studio 6.1
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
cross-site scripting
CVE-2024-5158
XML external entity
CVE-2024-4262
CVE-2024-2036
CVE-2024-4985
CVE-2024-21791
remote attackers
CVE-2023-43208
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
3
4
5
6
7
8
9
10
NEXT »