Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
offensive vulnerabilities and exploits
(subscribe to this query)
4.8
CVSSv3
CVE-2023-23883
Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in David Gwyer WP Content Filter plugin <= 3.0.1 versions.
Wp Content Filter - Censor All Offensive Content From Your Site Project Wp Content Filter - Censor All Offensive Content From Your Site
NA
CVE-2006-5058
Buffer overflow in (1) Call of Duty 1.5b and previous versions, (2) Call of Duty United Offensive 1.51b and previous versions, and (3) Call of Duty 2 1.3 and previous versions allows remote malicious users to execute arbitrary code via a long map argument to the "callvote ma...
Activision Call Of Duty
Activision Call Of Duty 2
Activision Call Of Duty United Offensive
Activision Call Of Duty 1.4
Activision Call Of Duty United Offensive 1.41
1 EDB exploit
NA
CVE-2004-1664
Call of Duty 1.4 and previous versions allows remote malicious users to cause a denial of service (game end) via a large (1) query or (2) reply packet, which is not properly handled by the buffer overflow protection mechanism. NOTE: this issue might overlap CVE-2005-0430.
Activision Call Of Duty 1.4
Activision Call Of Duty United Offensive 1.41
1 EDB exploit
NA
CVE-2005-0983
Quake 3 engine, as used in multiple games, allows remote malicious users to cause a denial of service (client disconnect) via a long message, which is not properly truncated and causes the engine to process the remaining data as if it were network data.
Activision Call Of Duty 1.4
Activision Call Of Duty 1.5b
Id Software Quake 3 Arena 1.31
Id Software Quake 3 Arena Server 1.29f
Raven Software Soldier Of Fortune 2 1.0.3
Activision Return To Castle Wolfenstein 1.0
Activision Return To Castle Wolfenstein 1.1
Id Software Wolfenstein Enemy Territory 1.0.2
Id Software Wolfenstein Enemy Territory 2.56
Activision Call Of Duty United Offensive 1.41
Activision Call Of Duty United Offensive 1.51b
Id Software Quake 3 Arena Server 1.29g
Id Software Quake 3 Engine
Id Software Quake 3 Arena 1.1.7
Id Software Quake 3 Arena 1.16
Lucasarts Star Wars Jedi Knight Ii Jedi Outcast 1.0.4
Lucasarts Star Wars Jedi Knight Jedi Academy 1.0.11
Raven Software Soldier Of Fortune 2 1.0.2
8.8
CVSSv3
CVE-2019-15943
vphysics.dll in Counter-Strike: Global Offensive prior to 1.37.1.1 allows remote malicious users to achieve code execution or denial of service by creating a gaming server and inviting a victim to this server, because a crafted map is mishandled during a memset call.
Valvesoftware Counter-strike\\ Global Offensive
1 EDB exploit
1 Article
5.3
CVSSv3
CVE-2019-15944
In Counter-Strike: Global Offensive prior to 8/29/2019, community game servers can display unsafe HTML in a disconnection message.
Valvesoftware Counter-strike\\ Global Offensive
8.8
CVSSv3
CVE-2022-41128
Windows Scripting Languages Remote Code Execution Vulnerability
Microsoft Windows Server 2008 R2
Microsoft Windows Server 2012 R2
Microsoft Windows 10 1607
Microsoft Windows 8.1 -
Microsoft Windows Server 2016 -
Microsoft Windows Server 2012 -
Microsoft Windows 10 -
Microsoft Windows Server 2019 -
Microsoft Windows 10 1809
Microsoft Windows 7 Sp1
Microsoft Windows 10 20h2
Microsoft Windows 10 21h1
Microsoft Windows Server 2022 -
Microsoft Windows 11 -
Microsoft Windows 10 21h2
Microsoft Windows 11 22h2
Microsoft Windows 10 22h2
3 Articles
6.1
CVSSv3
CVE-2019-3686
openQA before commit c172e8883d8f32fced5e02f9b6faaacc913df27b was vulnerable to XSS in the distri and version parameter. This was reported through the bug bounty program of Offensive Security
Suse Openqa
NA
CVE-2012-2971
The server in CA ARCserve Backup r12.5, r15, and r16 on Windows does not properly process RPC requests, which allows remote malicious users to execute arbitrary code or cause a denial of service via a crafted request.
NA
CVE-2012-2972
The (1) server and (2) agent components in CA ARCserve Backup r12.5, r15, and r16 on Windows do not properly validate RPC requests, which allows remote malicious users to cause a denial of service (service crash) via a crafted request.
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27322
cross-site request forgery
unauthorized
CVE-2024-33925
reflected XSS
CVE-2023-51580
CVE-2023-51579
CVE-2015-2051
CVE-2023-51609
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »