Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
publisher vulnerabilities and exploits
(subscribe to this query)
9.3
CVSSv2
CVE-2013-1321
Microsoft Publisher 2003 SP3 does not properly check the data type of an unspecified return value, which allows remote malicious users to execute arbitrary code via a crafted Publisher file, aka "Publisher Return Value Validation Vulnerability."
Microsoft Publisher 2003
10
CVSSv2
CVE-2013-1322
Microsoft Publisher 2003 SP3 does not properly check table range data, which allows remote malicious users to execute arbitrary code via a crafted Publisher file, aka "Publisher Invalid Range Check Vulnerability."
Microsoft Publisher 2003
9.3
CVSSv2
CVE-2013-1323
Microsoft Publisher 2003 SP3 does not properly handle NULL values for unspecified data items, which allows remote malicious users to execute arbitrary code via a crafted Publisher file, aka "Publisher Incorrect NULL Value Handling Vulnerability."
Microsoft Publisher 2003
9.3
CVSSv2
CVE-2013-1327
Integer signedness error in Microsoft Publisher 2003 SP3 allows remote malicious users to execute arbitrary code via a crafted Publisher file that triggers an improper memory allocation, aka "Publisher Signed Integer Vulnerability."
Microsoft Publisher 2003
NA
CVE-2023-1080
The GN Publisher plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the ‘tab’ parameter in versions up to, and including, 1.5.5 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated malicious users...
Gnpublisher Gn Publisher
6.8
CVSSv2
CVE-2022-25198
A cross-site request forgery (CSRF) vulnerability in Jenkins SCP publisher Plugin 1.8 and previous versions allows malicious users to connect to an attacker-specified SSH server using attacker-specified credentials.
Jenkins Scp Publisher
6.5
CVSSv2
CVE-2022-25199
A missing permission check in Jenkins SCP publisher Plugin 1.8 and previous versions allows attackers with Overall/Read permission to connect to an attacker-specified SSH server using attacker-specified credentials.
Jenkins Scp Publisher
4
CVSSv2
CVE-2018-1000175
A path traversal vulnerability exists in Jenkins HTML Publisher Plugin 1.15 and older in HtmlPublisherTarget.java that allows attackers able to configure the HTML Publisher build step to override arbitrary files on the Jenkins master.
Jenkins Html Publisher
4
CVSSv2
CVE-2019-1003067
Jenkins Trac Publisher Plugin stores credentials unencrypted in job config.xml files on the Jenkins master where they can be viewed by users with Extended Read permission, or access to the master file system.
Jenkins Trac Publisher
6.8
CVSSv2
CVE-2018-8245
A remote code execution vulnerability exists when Microsoft Publisher fails to utilize features that lock down the Local Machine zone when instantiating OLE objects, aka "Microsoft Publisher Remote Code Execution Vulnerability." This affects Microsoft Publisher.
Microsoft Publisher 2010
1 Article
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
firmware
CVE-2023-52866
CVE-2024-4367
CVE-2024-1721
CVE-2023-34992
XML injection
CVE-2023-52817
SQL
CVE-2023-52855
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
4
5
6
7
8
9
10
NEXT »