Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
a-link vulnerabilities and exploits
(subscribe to this query)
10
CVSSv2
CVE-2018-20718
In Pydio prior to 8.2.2, an attack is possible via PHP Object Injection because a user is allowed to use the $phpserial$a:0:{} syntax to store a preference. An attacker either needs a "public link" of a file, or access to any unprivileged user account for creation of su...
Pydio Pydio
1 Github repository
10
CVSSv2
CVE-2009-2665
The nsDocument::SetScriptGlobalObject function in content/base/src/nsDocument.cpp in Mozilla Firefox 3.5.x prior to 3.5.2, when certain add-ons are enabled, does not properly handle a Link HTTP header, which allows remote malicious users to execute arbitrary JavaScript with chrom...
Mozilla Firefox 3.5
Mozilla Firefox 3.5.1
Mozilla Firefox 3.5.2
10
CVSSv2
CVE-2008-6824
The management interface on the A-LINK WL54AP3 and WL54AP2 access points has a blank default password for the admin account, which makes it easier for remote malicious users to obtain access.
A-link Wl54ap3
A-link Wl54ap2
1 EDB exploit
10
CVSSv2
CVE-2009-1043
Unspecified vulnerability in Microsoft Internet Explorer 8 on Windows 7 allows remote malicious users to execute arbitrary code via unknown vectors triggered by clicking on a link, as demonstrated by Nils during a PWN2OWN competition at CanSecWest 2009.
Microsoft Internet Explorer 8
10
CVSSv2
CVE-2008-5282
Multiple stack-based buffer overflows in W3C Amaya Web Browser 10.0.1 allow remote malicious users to execute arbitrary code via (1) a link with a long HREF attribute, and (2) a DIV tag with a long id attribute.
W3c Amaya Web Browser 10.0.1
2 EDB exploits
10
CVSSv2
CVE-2008-0016
Stack-based buffer overflow in the URL parsing implementation in Mozilla Firefox prior to 2.0.0.17 and SeaMonkey prior to 1.1.12 allows remote malicious users to execute arbitrary code via a crafted UTF-8 URL in a link.
Mozilla Seamonkey 1.1.10
Mozilla Seamonkey
Mozilla Firefox 0.9 Rc
Mozilla Seamonkey 1.0.3
Mozilla Firefox 0.8
Mozilla Firefox 2.0.0.12
Mozilla Firefox 1.5
Mozilla Firefox 1.5.2
Mozilla Seamonkey 1.0.1
Mozilla Seamonkey 1.0.6
Mozilla Firefox 1.5.0.6
Mozilla Firefox 1.8
Mozilla Seamonkey 1.0.9
Mozilla Firefox 1.5.0.10
Mozilla Firefox 1.5.0.3
Mozilla Seamonkey 1.0
Mozilla Firefox 1.5.0.11
Mozilla Firefox
Mozilla Seamonkey 1.0.99
Mozilla Firefox 1.5.4
Mozilla Seamonkey 1.0.7
Mozilla Firefox 1.0.2
1 EDB exploit
10
CVSSv2
CVE-2004-0902
Multiple heap-based buffer overflows in Mozilla Firefox before the Preview Release, Mozilla prior to 1.7.3, and Thunderbird prior to 0.8 allow remote malicious users to cause a denial of service (application crash) or execute arbitrary code via (1) the "Send page" funct...
Mozilla Thunderbird 0.7.2
Conectiva Linux 9.0
Mozilla Mozilla 1.7
Mozilla Mozilla 1.7.1
Mozilla Thunderbird 0.7.3
Mozilla Thunderbird 0.7
Conectiva Linux 10.0
Mozilla Mozilla 1.7.2
Mozilla Thunderbird 0.7.1
Suse Suse Linux 9.0
Redhat Enterprise Linux 2.1
Redhat Linux 7.3
Redhat Enterprise Linux Desktop 3.0
Redhat Linux Advanced Workstation 2.1
Suse Suse Linux 8.2
Redhat Enterprise Linux 3.0
Suse Suse Linux 8
Suse Suse Linux 1.0
Redhat Fedora Core Core 1.0
Redhat Linux 9.0
Suse Suse Linux 9.1
Suse Suse Linux 8.1
10
CVSSv2
CVE-2004-2403
Cross-site request forgery (CSRF) vulnerability in YaBB 1 GOLD SP 1.3.2 allows remote malicious users to perform unauthorized actions as the administrative user via a link or IMG tag to YaBB.pl that specifies the desired action, id, and moda parameters.
Yabb Yabb 2000-09-11
Yabb Yabb 1.40
Yabb Yabb 1 Gold - Sp 1
Yabb Yabb 1 Gold - Sp 1.3.2
Yabb Yabb 1 Gold - Sp 1.3
Yabb Yabb 2000-09-01
Yabb Yabb 1 Gold - Sp 1.2
Yabb Yabb 1.41
Yabb Yabb 1 Gold Release
Yabb Yabb 1 Gold - Sp 1.3.1
10
CVSSv2
CVE-2004-0262
Stack-based buffer overflow in The Palace 3.5 and previous versions client allows remote malicious users to execute arbitrary code via a link to a palace:// url followed by a long server address string.
The Palace The Palace Client 3.5
9.3
CVSSv2
CVE-2020-3603
Multiple vulnerabilities in Cisco Webex Network Recording Player for Windows and Cisco Webex Player for Windows could allow an malicious user to execute arbitrary code on an affected system. The vulnerabilities are due to insufficient validation of certain elements of a Webex rec...
Cisco Webex Meetings Server 3.0
Cisco Webex Meetings Server 4.0
Cisco Webex Meetings
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27802
template injection
CVE-2024-0044
code injection
CVE-2024-35474
CVE-2024-27857
CVE-2024-23251
CVE-2024-23692
physical
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »