Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
henri salo vulnerabilities and exploits
(subscribe to this query)
8.8
CVSSv3
CVE-2018-11683
Liblouis 3.5.0 has a stack-based Buffer Overflow in the function parseChars in compileTranslationTable.c, a different vulnerability than CVE-2018-11440.
Liblouis Liblouis 3.5.0
Canonical Ubuntu Linux 14.04
Canonical Ubuntu Linux 16.04
Canonical Ubuntu Linux 17.10
Canonical Ubuntu Linux 18.04
Opensuse Leap 15.0
6.5
CVSSv3
CVE-2018-17294
The matchCurrentInput function inside lou_translateString.c of Liblouis before 3.7 does not check the input string's length, allowing malicious users to cause a denial of service (application crash via out-of-bounds read) by crafting an input file with certain translation di...
Liblouis Liblouis
Canonical Ubuntu Linux 14.04
Canonical Ubuntu Linux 16.04
Canonical Ubuntu Linux 18.04
Opensuse Leap 15.0
8.8
CVSSv3
CVE-2018-12085
Liblouis 3.6.0 has a stack-based Buffer Overflow in the function parseChars in compileTranslationTable.c, a different vulnerability than CVE-2018-11440.
Liblouis Liblouis 3.6.0
Canonical Ubuntu Linux 16.04
Canonical Ubuntu Linux 18.04
Canonical Ubuntu Linux 14.04
Opensuse Leap 15.0
8.8
CVSSv3
CVE-2018-11684
Liblouis 3.5.0 has a stack-based Buffer Overflow in the function includeFile in compileTranslationTable.c.
Liblouis Liblouis 3.5.0
Canonical Ubuntu Linux 16.04
Canonical Ubuntu Linux 17.10
Canonical Ubuntu Linux 18.04
Canonical Ubuntu Linux 14.04
Opensuse Leap 15.0
8.8
CVSSv3
CVE-2018-11685
Liblouis 3.5.0 has a stack-based Buffer Overflow in the function compileHyphenation in compileTranslationTable.c.
Liblouis Liblouis 3.5.0
Canonical Ubuntu Linux 14.04
Canonical Ubuntu Linux 16.04
Canonical Ubuntu Linux 17.10
Canonical Ubuntu Linux 18.04
Opensuse Leap 15.0
NA
CVE-2014-3854
Cross-site request forgery (CSRF) vulnerability in admin/addScript.py in Pyplate 0.08 allows remote malicious users to hijack the authentication of administrators for requests that conduct cross-site scripting (XSS) attacks via the title parameter.
Pyplate Pyplate 0.08
1 EDB exploit
NA
CVE-2014-5368
Directory traversal vulnerability in the file_get_contents function in downloadfiles/download.php in the WP Content Source Control (wp-source-control) plugin 3.0.0 and previous versions for WordPress allows remote malicious users to read arbitrary files via a .. (dot dot) in the ...
Wp Content Source Control Project Wp Content Source Control
1 EDB exploit
NA
CVE-2013-7240
Directory traversal vulnerability in download-file.php in the Advanced Dewplayer plugin 1.2 for WordPress allows remote malicious users to read arbitrary files via a .. (dot dot) in the dew_file parameter.
Westerndeal Advanced Dewplayer 1.2
Wordpress Wordpress -
1 EDB exploit
1 Github repository
5.4
CVSSv3
CVE-2013-0161
Havalite CMS 1.1.7 has a stored XSS vulnerability
Havalite Havalite 1.1.7
1 EDB exploit
NA
CVE-2014-9129
Cross-site request forgery (CSRF) vulnerability in the CreativeMinds CM Downloads Manager plugin prior to 2.0.7 for WordPress allows remote malicious users to hijack the authentication of administrators for requests that conduct cross-site scripting (XSS) attacks via the addons_t...
Cminds Cm Download Manager
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-34377
CVE-2024-20859
CVE-2023-49606
inject
arbitrary
CVE-2024-33788
CVE-2024-30973
IDOR
CVE-2024-33907
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »