Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
abysssec vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2012-4958
Directory traversal vulnerability in NFRAgent.exe in Novell File Reporter 1.0.2 allows remote malicious users to read arbitrary files via a 126 /FSF/CMD request with a .. (dot dot) in a FILE element of an FSFUI record.
Novell File Reporter 1.0.2
1 EDB exploit
NA
CVE-2010-1245
Unspecified vulnerability in Microsoft Office Excel 2002 SP3, Office 2004 for Mac, Office 2008 for Mac, and Open XML File Format Converter for Mac allows remote malicious users to execute arbitrary code via an Excel file with a malformed SxView (0xB0) record, aka "Excel Reco...
Microsoft Excel 2002
Microsoft Office 2004
Microsoft Office 2008
Microsoft Open Xml File Format Converter
1 EDB exploit
NA
CVE-2010-1247
Unspecified vulnerability in Microsoft Office Excel 2002 SP3 allows remote malicious users to execute arbitrary code via an Excel file with a malformed RTD (0x813) record that triggers heap corruption, aka "Excel Memory Corruption Vulnerability," a different vulnerabili...
Microsoft Excel 2002
1 EDB exploit
NA
CVE-2010-2866
Integer signedness error in the DIRAPI module in Adobe Shockwave Player prior to 11.5.8.612 allows remote malicious users to cause a denial of service (memory corruption) or execute arbitrary code via a count value associated with an "undocumented structure" and the tSA...
Adobe Shockwave Player 2.0
Adobe Shockwave Player 9
Adobe Shockwave Player 11.5.0.595
Adobe Shockwave Player 11.5.0.596
Adobe Shockwave Player 10.2.0.021
Adobe Shockwave Player 10.1.4.020
Adobe Shockwave Player 10.1.1.016
Adobe Shockwave Player 8.5.1.103
Adobe Shockwave Player 8.5.1.100
Adobe Shockwave Player 8.0.204
Adobe Shockwave Player 8.0.196a
Adobe Shockwave Player 5.0
Adobe Shockwave Player 6.0
Adobe Shockwave Player 11.5.6.606
Adobe Shockwave Player
Adobe Shockwave Player 10.0.0.210
Adobe Shockwave Player 9.0.432
Adobe Shockwave Player 8.5.323
Adobe Shockwave Player 8.5.324
Adobe Shockwave Player 11.0.3.471
Adobe Shockwave Player 1.0
Adobe Shockwave Player 10.1.0.11
1 EDB exploit
NA
CVE-2011-0073
Mozilla Firefox prior to 3.5.19 and 3.6.x prior to 3.6.17, and SeaMonkey prior to 2.0.14, does not properly use nsTreeRange data structures, which allows remote malicious users to execute arbitrary code via unspecified vectors that lead to a "dangling pointer."
Mozilla Firefox 3.6.2
Mozilla Firefox 3.6.10
Mozilla Firefox 3.6.9
Mozilla Firefox 3.6
Mozilla Firefox 3.6.8
Mozilla Firefox 3.6.15
Mozilla Firefox 3.6.16
Mozilla Firefox 3.6.3
Mozilla Firefox 3.6.4
Mozilla Firefox 3.6.11
Mozilla Firefox 3.6.12
Mozilla Firefox 3.6.6
Mozilla Firefox 3.6.7
Mozilla Firefox 3.6.13
Mozilla Firefox 3.6.14
Mozilla Seamonkey 1.0
Mozilla Seamonkey 1.0.1
Mozilla Seamonkey 1.0.8
Mozilla Seamonkey 1.0.9
Mozilla Seamonkey 1.1.12
Mozilla Seamonkey 1.1.13
Mozilla Seamonkey 1.1.2
2 EDB exploits
NA
CVE-2010-3653
The Director module (dirapi.dll) in Adobe Shockwave Player prior to 11.5.9.615 allows remote malicious users to execute arbitrary code or cause a denial of service (memory corruption) via a Director movie with a crafted rcsL chunk containing a field whose value is used as a point...
Adobe Shockwave Player 11.5.6.606
Adobe Shockwave Player 11.5.2.602
Adobe Shockwave Player 10.2.0.022
Adobe Shockwave Player 10.1.0.11
Adobe Shockwave Player 9.0.383
Adobe Shockwave Player 9.0.432
Adobe Shockwave Player 8.5.325
Adobe Shockwave Player 8.0.196
Adobe Shockwave Player 5.0
Adobe Shockwave Player 4.0
Adobe Shockwave Player 11.5.0.596
Adobe Shockwave Player 11.5.7.609
Adobe Shockwave Player 10.1.1.016
Adobe Shockwave Player 10.1.0.011
Adobe Shockwave Player 8.0.204
Adobe Shockwave Player 8.0.205
Adobe Shockwave Player 8.5.1.106
Adobe Shockwave Player 8.0
Adobe Shockwave Player 8.5.1.105
Adobe Shockwave Player 1.0
Adobe Shockwave Player
Adobe Shockwave Player 11.0.0.456
2 EDB exploits
1 Article
NA
CVE-2009-4088
Multiple directory traversal vulnerabilities in telepark.wiki 2.4.23 and previous versions allow remote malicious users to read arbitrary files via directory traversal sequences in the css parameter to (1) getjs.php and (2) getcsslocal.php; and include and execute arbitrary local...
Telepark Telepark.wiki
2 EDB exploits
NA
CVE-2009-4089
telepark.wiki 2.4.23 and previous versions allows remote malicious users to bypass authorization and (1) delete arbitrary pages via a modified pageID parameter to ajax/deletePage.php or (2) delete arbitrary comments via a modified pageID parameter to ajax/deleteComment.php.
Telepark Telepark.wiki 2.4.23
2 EDB exploits
NA
CVE-2011-2140
Adobe Flash Player prior to 10.3.183.5 on Windows, Mac OS X, Linux, and Solaris and prior to 10.3.186.3 on Android, and Adobe AIR prior to 2.7.1 on Windows and Mac OS X and prior to 2.7.1.1961 on Android, allows malicious users to execute arbitrary code or cause a denial of servi...
Adobe Flash Player 10.1.102.64
Adobe Flash Player 10.1.92.10
Adobe Flash Player 9.0.112.0
Adobe Flash Player 9.0.246.0
Adobe Flash Player 9.0.260.0
Adobe Flash Player 9.0.45.0
Adobe Flash Player 9.0.283.0
Adobe Flash Player 9.0.31.0
Adobe Flash Player 8.0.22.0
Adobe Flash Player 9.0.115.0
Adobe Flash Player 8.0.42.0
Adobe Flash Player 7.0.60.0
Adobe Flash Player 7.0.73.0
Adobe Flash Player 7.1.1
Adobe Flash Player 10.1.52.15
Adobe Flash Player 10.0.15.3
Adobe Flash Player 10.0.12.36
Adobe Flash Player 9.0.152.0
Adobe Flash Player 9.0.151.0
Adobe Flash Player 9.0.114.0
Adobe Flash Player 9.125.0
Adobe Flash Player 9.0.124.0
2 EDB exploits
NA
CVE-2011-0222
WebKit, as used in Apple Safari prior to 5.0.6, allows remote malicious users to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than other WebKit CVEs listed in APPLE-SA-2011-07-20-1.
Apple Safari 2.0.1
Apple Safari 2.0.2
Apple Safari 1.2.0
Apple Safari 1.0.3
Apple Safari 1.0.2
Apple Safari 1.0.0
Apple Safari 2.0.3
Apple Safari 1.3
Apple Safari 3.0.3
Apple Safari 2.0
Apple Safari 1.1
Apple Safari 3.2.1
Apple Safari 4.1
Apple Safari 3.0.4b
Apple Safari 3.0.2
Apple Webkit
Apple Safari 1.2.3
Apple Safari 1.3.1
Apple Safari 1.3.2
Apple Safari 1.0.0b1
Apple Safari 1.0.0b2
Apple Safari 3.0.0b
2 EDB exploits
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-26925
CVE-2023-41826
LFI
CVE-2022-22364
CVE-2024-2887
command injection
remote code execution
CVE-2024-34446
CVE-2022-48699
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
NEXT »