Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
yahoo vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2006-1272
Multiple cross-site scripting (XSS) vulnerabilities in member.php in MyBulletin Board (MyBB) 1.0.3 allow remote malicious users to inject arbitrary web script or HTML via the (1) aim, (2) yahoo, (3) msn, or (4) website field.
Mybulletinboard Mybulletinboard 1.0.3
5
CVSSv2
CVE-2005-0875
Multiple buffer overflows in the Yahoo plug-in for Trillian 2.0, 3.0, and 3.1 allow remote web servers to cause a denial of service (application crash) via a long string in an HTTP 1.1 response header.
Cerulean Studios Trillian 3.1
Cerulean Studios Trillian 2.0
Cerulean Studios Trillian 3.0
2.1
CVSSv2
CVE-2005-2444
Trillian Pro 3.1 build 121, when checking Yahoo e-mail, stores the password in plaintext in a world readable file and does not delete the file after login, which allows local users to obtain sensitive information.
Cerulean Studios Trillian Pro 3.1 Build 121
6.8
CVSSv2
CVE-2007-5396
Format string vulnerability in the ext_yahoo_contact_added function in yahoo.c in Miranda IM 0.7.1 allows remote malicious users to execute arbitrary code via a Y7 Buddy Authorization packet with format string specifiers in the contact Yahoo! handle (who).
Miranda-im Miranda Im 0.7.1
4.3
CVSSv2
CVE-2013-6916
Cross-site scripting (XSS) vulnerability in the Yahoo! User Interface Library in Cybozu Garoon prior to 3.7.2, when Internet Explorer 9 or 10 or Chrome is used, allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors.
Cybozu Garoon
Cybozu Garoon 3.5
Cybozu Garoon 3.1
Cybozu Garoon 2.0
Cybozu Garoon 2.1
Cybozu Garoon 3.0
Cybozu Garoon 2.5
Cybozu Garoon 3.7
5
CVSSv2
CVE-2005-1269
Gaim prior to 1.3.1 allows remote malicious users to cause a denial of service (application crash) via a Yahoo! message with non-ASCII characters in a file name.
Rob Flynn Gaim 0.50
Rob Flynn Gaim 0.51
Rob Flynn Gaim 0.58
Rob Flynn Gaim 0.59
Rob Flynn Gaim 0.66
Rob Flynn Gaim 0.67
Rob Flynn Gaim 0.74
Rob Flynn Gaim 0.75
Rob Flynn Gaim 0.82
Rob Flynn Gaim 0.82.1
Rob Flynn Gaim 1.1.2
Rob Flynn Gaim 1.1.3
Rob Flynn Gaim 0.10
Rob Flynn Gaim 0.10.3
Rob Flynn Gaim 0.56
Rob Flynn Gaim 0.57
Rob Flynn Gaim 0.64
Rob Flynn Gaim 0.65
Rob Flynn Gaim 0.72
Rob Flynn Gaim 0.73
Rob Flynn Gaim 0.80
Rob Flynn Gaim 0.81
6.8
CVSSv2
CVE-2008-3191
Multiple SQL injection vulnerabilities in usercp.php in mForum 0.1a, when magic_quotes_gpc is disabled, allow remote malicious users to execute arbitrary SQL commands via the (1) City, (2) Interest, (3) Email, (4) Icq, (5) msn, or (6) Yahoo Messenger field in an edit_profile acti...
Marcioforum Mforum 0.1a
1 EDB exploit
7.5
CVSSv2
CVE-2007-2941
Multiple PHP remote file inclusion vulnerabilities in the creator in vBulletin Google Yahoo Site Map (vBGSiteMap) 2.41 for vBulletin allow remote malicious users to execute arbitrary PHP code via a URL in the base parameter to (1) vbgsitemap/vbgsitemap-config.php or (2) vbgsitema...
Michael Brandon Vbgsitemap 2.41
1 EDB exploit
4.3
CVSSv2
CVE-2009-3934
The WebFrameLoaderClient::dispatchDidChangeLocationWithinPage function in src/webkit/glue/webframeloaderclient_impl.cc in Google Chrome prior to 3.0.195.32 allows user-assisted remote malicious users to cause a denial of service via a page-local link, related to an "empty re...
Google Chrome 1.0.154.39
Google Chrome 0.4.154.33
Google Chrome 2.0.172.37
Google Chrome 1.0.154.53
Google Chrome 2.0.157.2
Google Chrome 2.0.172.8
Google Chrome 2.0.172.31
Google Chrome 0.4.154.18
Google Chrome 2.0.172
Google Chrome 0.2.152.1
Google Chrome 1.0.154.59
Google Chrome 1.0.154.65
Google Chrome 1.0.154.43
Google Chrome 1.0.154.48
Google Chrome 2.0.172.27
Google Chrome 3.0.182.2
Google Chrome 0.3.154.0
Google Chrome 2.0.172.33
Google Chrome 1.0.154.52
Google Chrome 2.0.159.0
Google Chrome 2.0.169.0
Google Chrome 0.4.154.31
6.8
CVSSv2
CVE-2007-5590
Multiple buffer overflows in Miranda prior to 0.7.1 allow remote malicious users to execute arbitrary code via unspecified vectors involving (1) IRC options, (2) Jabber forms, and unspecified aspects of the (3) ICQ and (4) Yahoo! instant messaging functionality. NOTE: some of the...
Miranda-im Miranda
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-4463
CVE-2024-3400
deserialization
CVE-2024-21788
CVE-2023-42433
CVE-2024-21841
CVE-2024-22095
local file inclusion
memory leak
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
4
5
6
7
8
9
10
NEXT »