Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
chris vulnerabilities and exploits
(subscribe to this query)
5.4
CVSSv3
CVE-2023-46782
Auth. (contributor+) Stored Cross-Site Scripting (XSS) vulnerability in Chris Yee MomentoPress for Momento360 plugin <= 1.0.1 versions.
Chrisyee Momentopress For Momento360
7.8
CVSSv3
CVE-2021-28954
In Chris Walz bit prior to 1.0.5 on Windows, attackers can run arbitrary code via a .exe file in a crafted repository.
Bit Project Bit
6.1
CVSSv3
CVE-2023-32101
URL Redirection to Untrusted Site ('Open Redirect') vulnerability in Pexle Chris Library Viewer.This issue affects Library Viewer: from n/a up to and including 2.0.6.
Pexlechris Library Viewer
NA
CVE-2008-3587
Cross-site scripting (XSS) vulnerability in result.php in Chris Bunting Homes 4 Sale allows remote malicious users to inject arbitrary web script or HTML via the r parameter.
Needscripts Homes 4 Sale
1 EDB exploit
NA
CVE-2006-5077
PHP remote file inclusion vulnerability in admin/admin_topic_action_logging.php in Chris Smith Minerva Build 238 and previous versions allows remote malicious users to execute arbitrary PHP code via a URL in the phpbb_root_path parameter.
Minerva Minerva 2.0.19
Minerva Minerva 2.0.21
Minerva Minerva 2.0.8
1 EDB exploit
NA
CVE-2009-0581
Memory leak in LittleCMS (aka lcms or liblcms) prior to 1.18beta2, as used in Firefox 3.1beta, OpenJDK, and GIMP, allows context-dependent malicious users to cause a denial of service (memory consumption and application crash) via a crafted image file.
Littlecms Little Cms
Mozilla Firefox 3.1
Gimp Gimp
Sun Openjdk
NA
CVE-2009-0723
Multiple integer overflows in LittleCMS (aka lcms or liblcms) prior to 1.18beta2, as used in Firefox 3.1beta, OpenJDK, and GIMP, allow context-dependent malicious users to execute arbitrary code via a crafted image file that triggers a heap-based buffer overflow. NOTE: some of th...
Gimp Gimp
Mozilla Firefox 3.1
Sun Openjdk
Littlecms Little Cms
9.8
CVSSv3
CVE-2023-26015
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Chris Richardson MapPress Maps for WordPress mappress-google-maps-for-wordpress allows SQL Injection.This issue affects MapPress Maps for WordPress: from n/a up to and ...
Mappresspro Mappress Maps For Wordpress
NA
CVE-2009-0733
Multiple stack-based buffer overflows in the ReadSetOfCurves function in LittleCMS (aka lcms or liblcms) prior to 1.18beta2, as used in Firefox 3.1beta, OpenJDK, and GIMP, allow context-dependent malicious users to execute arbitrary code via a crafted image file associated with a...
Gimp Gimp
Mozilla Firefox 3.1
Sun Openjdk
Littlecms Little Cms
NA
CVE-2006-3025
Cross-site scripting (XSS) vulnerability in Cal.PHP3 in Chris Lea Lucid Calendar 0.22 allows remote malicious users to inject arbitrary web script or HTML via unspecified parameters. NOTE: the provenance of this information is unknown; the details are obtained from third party in...
Lucid Designs Lucid Calendar 0.22
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
firmware
CVE-2023-52866
CVE-2024-4367
CVE-2024-1721
CVE-2023-34992
XML injection
CVE-2023-52817
SQL
CVE-2023-52855
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »