Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ins vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2003-0284
Adobe Acrobat 5 does not properly validate JavaScript in PDF files, which allows remote malicious users to write arbitrary files into the Plug-ins folder that spread to other PDF documents, as demonstrated by the W32.Yourde virus.
Adobe Acrobat 5.0
NA
CVE-2004-1023
Kerio Winroute Firewall prior to 6.0.9, ServerFirewall prior to 1.0.1, and MailServer prior to 6.0.5, when installed on Windows based systems, do not modify the ACLs for critical files, which allows local users with Power Users privileges to modify programs, install malicious DLL...
Kerio Kerio Mailserver 6.0.0
Kerio Kerio Mailserver 6.0.1
Kerio Kerio Mailserver 6.0.2
Kerio Winroute Firewall 6.0.3
Kerio Winroute Firewall 6.0.4
Kerio Winroute Firewall 6.0.1
Kerio Winroute Firewall 6.0.2
Kerio Serverfirewall 1.0.0
Kerio Winroute Firewall 6.0.0
Kerio Winroute Firewall 6.0.7
Kerio Winroute Firewall 6.0.8
Kerio Kerio Mailserver 6.0.3
Kerio Kerio Mailserver 6.0.4
Kerio Winroute Firewall 6.0.5
Kerio Winroute Firewall 6.0.6
NA
CVE-2010-3116
Multiple use-after-free vulnerabilities in WebKit, as used in Apple Safari prior to 4.1.3 and 5.0.x prior to 5.0.3, Google Chrome prior to 5.0.375.127, and webkitgtk prior to 1.2.6, allow remote malicious users to execute arbitrary code or cause a denial of service (application c...
Google Chrome
Apple Safari
Apple Iphone Os
Webkitgtk Webkitgtk
Canonical Ubuntu Linux 9.10
Canonical Ubuntu Linux 10.04
Canonical Ubuntu Linux 10.10
NA
CVE-2012-3402
Integer overflow in plug-ins/common/psd.c in the Adobe Photoshop PSD plugin in GIMP 2.2.13 and previous versions allows remote malicious users to cause a denial of service and possibly execute arbitrary code via a crafted channels header value in a PSD image file, which triggers ...
Gimp Gimp
8.8
CVSSv3
CVE-2023-4570
An improper access restriction in NI MeasurementLink Python services could allow an attacker on an adjacent network to reach services exposed on localhost. These services were previously thought to be unreachable outside of the node. This affects measurement plug-ins written in P...
Ni Measurementlink
8.1
CVSSv3
CVE-2021-41033
In all released versions of Eclipse Equinox, at least until version 4.21 (September 2021), installation can be vulnerable to man-in-the-middle attack if using p2 repos that are HTTP; that can then be exploited to serve incorrect p2 metadata and entirely alter the local installati...
Eclipse Equinox
Eclipse Equinox 4.21
NA
CVE-2010-3144
Untrusted search path vulnerability in the Internet Connection Signup Wizard in Microsoft Windows XP SP2 and SP3 and Server 2003 SP2 allows local users to gain privileges via a Trojan horse smmscrpt.dll file in the current working directory, as demonstrated by a directory that co...
Microsoft Windows Xp -
Microsoft Windows Xp
Microsoft Windows Server 2003
1 EDB exploit
NA
CVE-2010-4179
The installation documentation for Red Hat Enterprise Messaging, Realtime and Grid (MRG) 1.3 recommends that Condor should be configured so that the MRG Management Console (cumin) can submit jobs for users, which creates a trusted channel with insufficient access control that all...
Redhat Enterprise Mrg 1.3
5.3
CVSSv3
CVE-2022-39161
IBM WebSphere Application Server 7.0, 8.0, 8.5, 9.0, and IBM WebSphere Application Server Liberty, when configured to communicate with the Web Server Plug-ins for IBM WebSphere Application Server, could allow an authenticated user to conduct spoofing attacks. A man-in-the-middle ...
Ibm Websphere Application Server 9.0
Ibm Websphere Application Server 7.0
Ibm Websphere Application Server 8.0
Ibm Websphere Application Server 8.5
Ibm Websphere Application Server -
NA
CVE-2011-3845
Use-after-free vulnerability in Apple Safari 5.1.2, when a plug-in with a blocking function is installed, allows user-assisted remote malicious users to execute arbitrary code via a crafted web page that is accessed during user interaction with the plug-in, leading to improper co...
Apple Safari 5.1.2
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-33572
CVE-2024-24919
CVE-2024-0230
CVE-2024-32714
HTML injection
local file inclusion
CVE-2024-31098
CVE-2024-31244
privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
4
5
6
7
8
9
10
NEXT »