Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
navigator vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2014-0874
Cross-site scripting (XSS) vulnerability in IBM Content Navigator 2.x prior to 2.0.2.2-ICN-FP002 allows remote authenticated users to inject arbitrary web script or HTML via an unspecified parameter.
Ibm Content Navigator 2.0.0
Ibm Content Navigator 2.0.1
Ibm Content Navigator 2.0.2
NA
CVE-2014-0858
IBM Content Navigator 2.x prior to 2.0.2.2-ICN-FP002 allows remote authenticated users to bypass intended access restrictions and conduct deleteAction attacks via a modified URL.
Ibm Content Navigator 2.0.1
Ibm Content Navigator 2.0.2
Ibm Content Navigator 2.0.0
NA
CVE-2013-6723
IBM WebSphere Portal 8.0.0.1 before CF09 does not properly handle references in compute="always" Web Content Manager (WCM) navigator components, which allows remote malicious users to obtain sensitive component information via unspecified vectors.
Ibm Websphere Portal 8.0.0.1
NA
CVE-2013-5462
IBM/ECMClient/configure/explodedformat/navigator/header.jsp in IBM Content Navigator 2.0.0, 2.0.1 prior to 2.0.1.2-ICN-FP002, and 2.0.2 prior to 2.0.2.1-ICN-FP001 allows remote malicious users to conduct clickjacking attacks via vectors involving FRAME elements.
Ibm Content Navigator 2.0.0
Ibm Content Navigator 2.0.1
Ibm Content Navigator 2.0.2
NA
CVE-2013-3958
The login implementation in the Web Navigator in Siemens WinCC prior to 7.2 Update 1, as used in SIMATIC PCS7 8.0 SP1 and previous versions and other products, has a hardcoded account, which makes it easier for remote malicious users to obtain access via an unspecified request.
Siemens Simatic Pcs7 8.0
Siemens Simatic Pcs7
Siemens Wincc
Siemens Wincc 7.0
Siemens Wincc 7.1
NA
CVE-2013-3957
SQL injection vulnerability in the login screen in the Web Navigator in Siemens WinCC prior to 7.2 Update 1, as used in SIMATIC PCS7 8.0 SP1 and previous versions and other products, allows remote malicious users to execute arbitrary SQL commands via unspecified vectors.
Siemens Wincc 7.0
Siemens Wincc
Siemens Wincc 7.1
Siemens Simatic Pcs7 8.0
Siemens Simatic Pcs7
NA
CVE-2013-3959
The Web Navigator in Siemens WinCC prior to 7.2 Update 1, as used in SIMATIC PCS7 8.0 SP1 and previous versions and other products, exhibits different behavior for NetBIOS user names depending on whether the user account exists, which allows remote authenticated users to enumerat...
Siemens Wincc 7.0
Siemens Wincc 7.1
Siemens Wincc
Siemens Simatic Pcs7 8.0
Siemens Simatic Pcs7
NA
CVE-2012-1630
Cross-site scripting (XSS) vulnerability in the Taxonomy Navigator module for Drupal allows remote authenticated users with certain permissions to inject arbitrary web script or HTML via unspecified vectors.
Nestor Mata Cuthbert Taxonomy Navigator -
NA
CVE-2010-2767
The navigator.plugins implementation in Mozilla Firefox prior to 3.5.12 and 3.6.x prior to 3.6.9, Thunderbird prior to 3.0.7 and 3.1.x prior to 3.1.3, and SeaMonkey prior to 2.0.7 does not properly handle destruction of the DOM plugin array, which might allow remote malicious use...
Mozilla Firefox 3.6.3
Mozilla Firefox 3.6.4
Mozilla Firefox 3.6.6
Mozilla Firefox 3.6.2
Mozilla Firefox 3.6.8
Mozilla Firefox 3.6.7
Mozilla Firefox 3.6
Mozilla Seamonkey 1.0.2
Mozilla Seamonkey 1.0.3
Mozilla Seamonkey 1.1
Mozilla Seamonkey 1.1.1
Mozilla Seamonkey 1.1.15
Mozilla Seamonkey 1.1.16
Mozilla Seamonkey 1.1.5
Mozilla Seamonkey 1.1.6
Mozilla Seamonkey 1.5.0.8
Mozilla Seamonkey 1.5.0.9
Mozilla Seamonkey 2.0
Mozilla Seamonkey 1.0
Mozilla Seamonkey 1.0.1
Mozilla Seamonkey 1.0.8
Mozilla Seamonkey 1.0.9
NA
CVE-2009-2641
PHP remote file inclusion vulnerability in app_and_readme/navigator/index.php in School Data Navigator allows remote malicious users to execute arbitrary PHP code via a URL in the page parameter. NOTE: this can also be leveraged to include and execute arbitrary local files via .....
Rich White School Data Nav
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-40673
CVE-2024-36674
CVE-2024-27348
unspecified
CVE-2024-24919
CVE-2024-4870
malicious code
CVE-2024-2019
hard-coded
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
4
5
6
7
8
9
10
NEXT »