Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
stephen vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2007-3352
Cross-site scripting (XSS) vulnerability in the preview form in Stephen Ostermiller Contact Form prior to 2.00.02 allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors that contain an apostrophe.
Stephen Ostermiller Contact Form 2.00.02
8.8
CVSSv3
CVE-2023-33315
Cross-Site Request Forgery (CSRF) vulnerability in Stephen Darlington, Wandle Software Limited Smart App Banner plugin <= 1.1.2 versions.
Wandlesoftware Smart App Banner
4.8
CVSSv3
CVE-2023-46200
Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Stephen Darlington, Wandle Software Limited Smart App Banner plugin <= 1.1.3 versions.
Wandlesoftware Smart App Banner
NA
CVE-2011-1346
Unspecified vulnerability in Microsoft Internet Explorer 8 on Windows 7 allows remote malicious users to execute arbitrary code via unknown vectors, as demonstrated by Stephen Fewer as the second of three chained vulnerabilities during a Pwn2Own competition at CanSecWest 2011.
Microsoft Internet Explorer 8
NA
CVE-2011-1347
Unspecified vulnerability in Microsoft Internet Explorer 8 on Windows 7 allows remote malicious users to bypass Protected Mode and create arbitrary files by leveraging access to a Low integrity process, as demonstrated by Stephen Fewer as the third of three chained vulnerabilitie...
Microsoft Internet Explorer 8
NA
CVE-2011-1345
Microsoft Internet Explorer 6, 7, and 8 does not properly handle objects in memory, which allows remote malicious users to execute arbitrary code by accessing an object that (1) was not properly initialized or (2) is deleted, as demonstrated by Stephen Fewer as the first of three...
Microsoft Internet Explorer 8
NA
CVE-2008-0167
The write_array_file function in utils/include.pl in GForge 4.5.14 updates configuration files by truncating them to zero length and then writing new data, which might allow malicious users to bypass intended access restrictions or have unspecified other impact in opportunistic c...
Gforge Gforge 4.5.14
1 EDB exploit
NA
CVE-2008-5353
The Java Runtime Environment (JRE) for Sun JDK and JRE 6 Update 10 and previous versions; JDK and JRE 5.0 Update 16 and previous versions; and SDK and JRE 1.4.2_18 and previous versions does not properly enforce context of ZoneInfo objects during deserialization, which allows rem...
Sun Jdk 6
Sun Jre 6
Sun Jre 5.0
Sun Jre
Sun Jdk 5.0
Sun Sdk
Sun Sdk 1.4.2 14
Sun Jre 1.4.2 13
Sun Sdk 1.4.2 10
Sun Jre 1.4.2 9
Sun Sdk 1.4.2 6
Sun Jre 1.4.2 5
Sun Jre 1.4.2 1
Sun Sdk 1.4.2 1
Sun Jre 1.4.2 16
Sun Sdk 1.4.2 16
Sun Sdk 1.4.2 12
Sun Jre 1.4.2 11
Sun Sdk 1.4.2 8
Sun Jre 1.4.2 7
Sun Sdk 1.4.2 4
Sun Jre 1.4.2 3
4 EDB exploits
2 Github repositories
3 Articles
NA
CVE-2014-1418
Django 1.4 prior to 1.4.13, 1.5 prior to 1.5.8, 1.6 prior to 1.6.5, and 1.7 prior to 1.7b4 does not properly include the (1) Vary: Cookie or (2) Cache-Control header in responses, which allows remote malicious users to obtain sensitive information or poison the cache via a reques...
Djangoproject Django 1.7
Djangoproject Django 1.4.12
Djangoproject Django 1.4.2
Djangoproject Django 1.4.4
Djangoproject Django 1.4
Djangoproject Django 1.4.1
Djangoproject Django 1.4.7
Djangoproject Django 1.4.8
Djangoproject Django 1.4.5
Djangoproject Django 1.4.6
Djangoproject Django 1.4.10
Djangoproject Django 1.4.11
Djangoproject Django 1.4.9
Djangoproject Django 1.5.7
Djangoproject Django 1.5.6
Djangoproject Django 1.5.3
Djangoproject Django 1.5.4
Djangoproject Django 1.5
Djangoproject Django 1.5.5
Djangoproject Django 1.5.1
Djangoproject Django 1.5.2
Canonical Ubuntu Linux 12.04
NA
CVE-2005-4798
Buffer overflow in NFS readlink handling in the Linux Kernel 2.4 up to 2.4.31 allows remote NFS servers to cause a denial of service (crash) via a long symlink, which is not properly handled in (1) nfs2xdr.c or (2) nfs3xdr.c and causes a crash in the NFS client.
Linux Linux Kernel 2.4.18
Linux Linux Kernel 2.4.15
Linux Linux Kernel 2.4.30
Linux Linux Kernel 2.4.0
Linux Linux Kernel 2.4.11
Linux Linux Kernel 2.4.27
Linux Linux Kernel 2.4.26
Linux Linux Kernel 2.4.19
Linux Linux Kernel 2.4.21
Linux Linux Kernel 2.4.12
Linux Linux Kernel 2.4.13
Linux Linux Kernel 2.4.17
Linux Linux Kernel 2.4.23 Ow2
Linux Linux Kernel 2.4.22
Linux Linux Kernel 2.4.23
Linux Linux Kernel 2.4.29
Linux Linux Kernel 2.4.25
Linux Linux Kernel 2.4.24
Linux Linux Kernel 2.4.28
Linux Linux Kernel 2.4.24 Ow1
Linux Linux Kernel 2.4.10
Linux Linux Kernel 2.4.2
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-29895
blind SQL injection
CVE-2024-5064
CVE-2023-52677
CVE-2023-52682
CVE-2024-30051
CVE-2024-35849
remote attackers
remote
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
NEXT »