Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
absolute vulnerabilities and exploits
(subscribe to this query)
7.2
CVSSv2
CVE-2009-5150
Absolute Computrace Agent V80.845 and V80.866 does not have a digital signature for the configuration block, which allows malicious users to set up communication with a web site other than the intended search.namequery.com site by modifying data within a disk's inter-partiti...
Absolute Computrace Agent 80.845
Absolute Computrace Agent 80.866
7.5
CVSSv2
CVE-2008-6861
Xigla Software Absolute Newsletter 6.0 and 6.1 allows remote malicious users to bypass authentication and gain administrative access by setting a cookie to a certain value.
Xigla Absolute Newsletter 6.0
Xigla Absolute Newsletter 6.1
1 EDB exploit
7.5
CVSSv2
CVE-2008-6855
Xigla Software Absolute News Feed 1.0 and possibly 1.5 allows remote malicious users to bypass authentication and gain administrative access by setting a certain cookie.
Xigla Absolute News Feed 1.0
Xigla Absolute News Feed 1.5
1 EDB exploit
NA
CVE-2023-4276
The Absolute Privacy plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 2.1. This is due to missing nonce validation on the 'abpr_profileShortcode' function. This makes it possible for unauthenticated malicious users to ch...
Johnkolbert Absolute Privacy
1.9
CVSSv2
CVE-2009-5152
Absolute Computrace Agent, as distributed on certain Dell Inspiron systems through 2009, has a race condition with the Dell Client Configuration Utility (DCCU), which allows privileged local users to change Computrace Agent's activation/deactivation status to the factory def...
Absolute Computrace Agent -
NA
CVE-2021-4426
The Absolute Reviews plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 1.0.8. This is due to missing or incorrect nonce validation on the metabox_review_save() function. This makes it possible for unauthenticated malicious users to...
Ashstonestudios Absolute Reviews
7.2
CVSSv2
CVE-2009-5151
The stub component of Absolute Computrace Agent V70.785 executes code from a disk's inter-partition space without requiring a digital signature for that code, which allows malicious users to execute code on the BIOS. This allows a privileged local user to achieve persistent ...
Absolute Computrace Agent 70.785
7.5
CVSSv2
CVE-2008-6857
Absolute Podcast .NET 1.0 allows remote malicious users to bypass authentication and gain administrative access by setting a cookie to a certain value.
Xigla Absolute Podcast.net 1.0
1 EDB exploit
9.3
CVSSv2
CVE-2011-4223
Unspecified vulnerability in Investintech.com Absolute PDF Server allows remote malicious users to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted PDF document.
Investintech Absolute Pdf Server
6.5
CVSSv2
CVE-2018-16715
An issue exists in Absolute Software CTES Windows Agent up to and including 1.0.0.1479. The security permissions on the %ProgramData%\CTES folder and sub-folders may allow write access to low-privileged user accounts. This allows unauthorized replacement of service program execut...
Absolute Ctes Windows Agent
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-33572
CVE-2024-24919
CVE-2024-0230
CVE-2024-32714
HTML injection
local file inclusion
CVE-2024-31098
CVE-2024-31244
privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »