Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
script security vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2023-3446
Issue summary: Checking excessively long DH keys or parameters may be very slow. Impact summary: Applications that use the functions DH_check(), DH_check_ex() or EVP_PKEY_param_check() to check a DH key or DH parameters may experience long delays. Where the key or parameters that...
Openssl Openssl 1.0.2
Openssl Openssl 1.1.1
Openssl Openssl 3.0.0
Openssl Openssl 3.1.1
Openssl Openssl 3.1.0
NA
CVE-2022-24834
Redis is an in-memory database that persists on disk. A specially crafted Lua script executing in Redis can trigger a heap overflow in the cjson library, and result with heap corruption and potentially remote code execution. The problem exists in all versions of Redis with Lua sc...
Redis Redis
Fedoraproject Fedora 37
Fedoraproject Fedora 38
1 Github repository
NA
CVE-2023-29449
JavaScript preprocessing, webhooks and global scripts can cause uncontrolled CPU, memory, and disk I/O utilization. Preprocessing/webhook/global script configuration and testing are only available to Administrative roles (Admin and Superadmin). Administrative privileges should be...
Zabbix Zabbix 6.4.0
Zabbix Zabbix
NA
CVE-2023-1183
A flaw was found in the Libreoffice package. An attacker can craft an odb containing a "database/script" file with a SCRIPT command where the contents of the file could be written to a new file whose location was determined by the attacker.
Libreoffice Libreoffice 7.5.0
Libreoffice Libreoffice
Fedoraproject Fedora 38
Redhat Enterprise Linux 8.0
Redhat Enterprise Linux 9.0
NA
CVE-2023-20133
A vulnerability in the web interface of Cisco Webex Meetings could allow an authenticated, remote malicious user to conduct a stored cross-site scripting (XSS) attack against a user of the interface. This vulnerability exists because of insufficient validation of user-supplied in...
Cisco Webex Meetings 39.7.4
Cisco Webex Meetings 39.10
Cisco Webex Meetings 39.11
Cisco Webex Meetings 39.6
Cisco Webex Meetings 39.7
Cisco Webex Meetings 39.7.7
Cisco Webex Meetings 39.8
Cisco Webex Meetings 39.8.2
Cisco Webex Meetings 39.8.3
Cisco Webex Meetings 39.8.4
Cisco Webex Meetings 39.9
Cisco Webex Meetings 39.9.1
Cisco Webex Meetings 40.1
Cisco Webex Meetings 40.2
Cisco Webex Meetings 40.4
Cisco Webex Meetings 40.4.10
Cisco Webex Meetings 40.6
Cisco Webex Meetings 40.6.2
Cisco Webex Meetings 42.10
Cisco Webex Meetings 42.11
Cisco Webex Meetings 42.6
Cisco Webex Meetings 42.9
NA
CVE-2023-36468
XWiki Platform is a generic wiki platform offering runtime services for applications built on top of it. When an XWiki installation is upgraded and that upgrade contains a fix for a bug in a document, just a new version of that document is added. In some cases, it's still po...
Xwiki Xwiki 15.0
Xwiki Xwiki
Xwiki Xwiki 15.1
NA
CVE-2023-36469
XWiki Platform is a generic wiki platform offering runtime services for applications built on top of it. Any user who can edit their own user profile and notification settings can execute arbitrary script macros including Groovy and Python macros that allow remote code execution ...
Xwiki Xwiki 15.0
Xwiki Xwiki 15.1
Xwiki Xwiki
NA
CVE-2023-20119
A vulnerability in the web-based management interface of Cisco AsyncOS Software for Cisco Secure Email and Web Manager, formerly known as Content Security Management Appliance (SMA) could allow an unauthenticated, remote malicious user to conduct a cross-site scripting (XSS) atta...
Cisco Secure Email Gateway 14.0.1-053
Cisco Web Security Appliance 14.0.1-053
Cisco Secure Email And Web Manager 14.0.1-053
Cisco Secure Email And Web Manager 15.0.0-256
Cisco Secure Email Gateway 15.0.0-256
Cisco Web Security Appliance 15.0.0-256
Cisco Secure Email And Web Manager 14.0.1-033
Cisco Secure Email Gateway 14.0.1-033
Cisco Web Security Appliance 14.0.1-033
Cisco Secure Email And Web Manager 14.0.0-418
Cisco Secure Email Gateway 14.0.0-418
Cisco Web Security Appliance 14.0.0-418
Cisco Secure Email And Web Manager 15.0.0-050
Cisco Secure Email Gateway 15.0.0-050
Cisco Web Security Appliance 15.0.0-050
NA
CVE-2023-20188
A vulnerability in the web-based management interface of Cisco Small Business 200 Series Smart Switches, Cisco Small Business 300 Series Managed Switches, and Cisco Small Business 500 Series Stackable Managed Switches could allow an authenticated, remote malicious user to conduct...
Cisco Sf200-24 Firmware 1.4.11.02
Cisco Sf200-24fp Firmware 1.4.11.02
Cisco Sf200-24p Firmware 1.4.11.02
Cisco Sf200-48 Firmware 1.4.11.02
Cisco Sf200-48p Firmware 1.4.11.02
Cisco Sf300-08 Firmware 1.4.11.02
Cisco Sf300-24 Firmware 1.4.11.02
Cisco Sf300-24mp Firmware 1.4.11.02
Cisco Sf300-24p Firmware 1.4.11.02
Cisco Sf300-24pp Firmware 1.4.11.02
Cisco Sf300-48 Firmware 1.4.11.02
Cisco Sf300-48p Firmware 1.4.11.02
Cisco Sf300-48pp Firmware 1.4.11.02
Cisco Sf302-08 Firmware 1.4.11.02
Cisco Sf302-08mp Firmware 1.4.11.02
Cisco Sf302-08mpp Firmware 1.4.11.02
Cisco Sf302-08p Firmware 1.4.11.02
Cisco Sf302-08pp Firmware 1.4.11.02
Cisco Sf500-24 Firmware 1.4.11.02
Cisco Sf500-24mp Firmware 1.4.11.02
Cisco Sf500-24p Firmware 1.4.11.02
Cisco Sf500-48 Firmware 1.4.11.02
NA
CVE-2023-32208
Service workers could reveal script base URL due to dynamic `import()`. This vulnerability affects Firefox < 113.
Mozilla Firefox
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
authentication bypass
CVE-2024-30051
remote
CVE-2024-27954
CVE-2023-51483
CVE-2023-47782
SSRF
CVE-2024-24715
CVE-2023-52424
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
4
5
6
7
8
9
10
NEXT »