Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
number 7 vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2013-4139
The Stage File Proxy module 7.x-1.x prior to 7.x-1.4 for Drupal allows remote malicious users to cause a denial of service (file operations performance degradation and failure) via a large number of requests.
Stage File Proxy Project Stage File Proxy 7.x-1.2
Stage File Proxy Project Stage File Proxy 7.x-1.1
Stage File Proxy Project Stage File Proxy 7.x-1.0
Stage File Proxy Project Stage File Proxy 7.x-1.x
Stage File Proxy Project Stage File Proxy 7.x-1.3
NA
CVE-2013-2197
The Login Security module 6.x-1.x prior to 6.x-1.3 and 7.x-1.x prior to 7.x-1.3 for Drupal, when using the login delay option, allows remote malicious users to cause a denial of service (CPU consumption) via a large number of failed login attempts.
Login Security Project Login Security 7.x-1.0
Login Security Project Login Security 7.x-1.1
Login Security Project Login Security 7.x-1.2
Login Security Project Login Security 6.x-1.x
Login Security Project Login Security 6.x-1.0
Login Security Project Login Security 6.x-1.1
Login Security Project Login Security 6.x-1.3
Login Security Project Login Security 6.x-1.2
Login Security Project Login Security 7.x-1.x
NA
CVE-2009-1528
Microsoft Internet Explorer 6 and 7 for Windows XP SP2 and SP3; 6 and 7 for Server 2003 SP2; 7 for Vista Gold, SP1, and SP2; and 7 for Server 2008 SP2 does not properly synchronize AJAX requests, which allows allows remote malicious users to execute arbitrary code via a large num...
Microsoft Internet Explorer 6
Microsoft Internet Explorer 7
9.8
CVSSv3
CVE-2018-14551
The ReadMATImageV4 function in coders/mat.c in ImageMagick 7.0.8-7 uses an uninitialized variable, leading to memory corruption.
Imagemagick Imagemagick 7.0.8-7
Canonical Ubuntu Linux 18.04
NA
CVE-2009-3678
Integer overflow in cdd.dll in the Canonical Display Driver (CDD) in Microsoft Windows Server 2008 R2 and Windows 7 on 64-bit platforms, when the Windows Aero theme is installed, allows context-dependent malicious users to cause a denial of service (reboot) or possibly execute ar...
Microsoft Windows 7 -
Microsoft Windows Server 2008 R2
NA
CVE-2013-0431
Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, and OpenJDK 7, allows user-assisted remote malicious users to bypass the Java security sandbox via unspecified vectors related to JMX, aka "Issue 52," a diff...
Oracle Jre 1.7.0
Oracle Openjdk 7
1 EDB exploit
1 Github repository
2 Articles
NA
CVE-2008-4381
Microsoft Internet Explorer 7 allows remote malicious users to cause a denial of service (application crash) via Javascript that calls the alert function with a URL-encoded string of a large number of invalid characters.
Microsoft Internet Explorer 5
Microsoft Internet Explorer 7
Microsoft Internet Explorer 6
NA
CVE-2007-5962
Memory leak in a certain Red Hat patch, applied to vsftpd 2.0.5 on Red Hat Enterprise Linux (RHEL) 5 and Fedora 6 through 8, and on Foresight Linux and rPath appliances, allows remote malicious users to cause a denial of service (memory consumption) via a large number of CWD comm...
Redhat Enterprise Linux 5.0
Redhat Fedora 6
Redhat Fedora 7
Redhat Fedora 8
Foresight Linux Appliances
Rpath Appliance Platform Agent
3 EDB exploits
1 Github repository
6.7
CVSSv3
CVE-2022-21499
KGDB and KDB allow read and write access to kernel memory, and thus should be restricted during lockdown. An attacker with access to a serial port could trigger the debugger so it is important that the debugger respect the lockdown mode when/if it is triggered. CVSS 3.1 Base Scor...
Oracle Linux 6
Oracle Linux 7
Oracle Linux 8
Debian Debian Linux 11.0
1 Github repository
NA
CVE-2013-5211
The monlist feature in ntp_request.c in ntpd in NTP prior to 4.2.7p26 allows remote malicious users to cause a denial of service (traffic amplification) via forged (1) REQ_MON_GETLIST or (2) REQ_MON_GETLIST_1 requests, as exploited in the wild in December 2013.
Opensuse Opensuse 11.4
Ntp Ntp 4.2.7
Ntp Ntp
Oracle Linux 6
Oracle Linux 7
1 EDB exploit
9 Github repositories
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27322
cross-site request forgery
unauthorized
CVE-2024-33925
reflected XSS
CVE-2023-51580
CVE-2023-51579
CVE-2015-2051
CVE-2023-51609
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »