Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
advertisement vulnerabilities and exploits
(subscribe to this query)
5
CVSSv2
CVE-2012-2704
The Advertisement module 6.x-2.x prior to 6.x-2.3 for Drupal does not properly restrict access to debug information, which allows remote malicious users to obtain sensitive site configuration information that is specified by the $conf variable in settings.php.
John Franklin Advertisement 6.x-2.3
John Franklin Advertisement 6.x-2.1
John Franklin Advertisement 6.x-2.x
John Franklin Advertisement 6.x-2.2
John Franklin Advertisement 6.x-2.0
John Franklin Advertisement 6.x-2.0-rc1
2.6
CVSSv2
CVE-2012-2703
Cross-site scripting (XSS) vulnerability in the Advertisement module 6.x-2.x prior to 6.x-2.3 for Drupal, when debug mode is enabled, allows remote malicious users to inject arbitrary web script or HTML via vectors related to the "$conf variable in settings.php."
John Franklin Advertisement 6.x-2.0
John Franklin Advertisement 6.x-2.1
John Franklin Advertisement 6.x-2.x
John Franklin Advertisement 6.x-2.0-rc1
John Franklin Advertisement 6.x-2.2
John Franklin Advertisement 6.x-2.3
6.4
CVSSv2
CVE-2011-3602
Directory traversal vulnerability in device-linux.c in the router advertisement daemon (radvd) prior to 1.8.2 allows local users to overwrite arbitrary files, and remote malicious users to overwrite certain files, via a .. (dot dot) in an interface name. NOTE: this can be leverag...
Litech Router Advertisement Daemon
7.5
CVSSv2
CVE-2011-3604
The process_ra function in the router advertisement daemon (radvd) prior to 1.8.2 allows remote malicious users to cause a denial of service (stack-based buffer over-read and crash) via unspecified vectors.
Litech Router Advertisement Daemon
5
CVSSv2
CVE-2011-3605
The process_rs function in the router advertisement daemon (radvd) prior to 1.8.2, when UnicastOnly is enabled, allows remote malicious users to cause a denial of service (temporary service hang) via a large number of ND_ROUTER_SOLICIT requests.
Litech Router Advertisement Daemon
7.5
CVSSv2
CVE-2018-5982
SQL Injection exists in the Advertisement Board 3.1.0 component for Joomla! via a task=show_rss_categories&catname= request.
Ordasoft Advertisement Board 3.1.0
1 EDB exploit
7.5
CVSSv2
CVE-2011-3601
Buffer overflow in the process_ra function in the router advertisement daemon (radvd) prior to 1.8.2 allows remote malicious users to execute arbitrary code or cause a denial of service (crash) via a negative value in a label_len value.
Litech Router Advertisement Daemon
4.4
CVSSv2
CVE-2011-3603
The router advertisement daemon (radvd) prior to 1.8.2 does not properly handle errors in the privsep_init function, which causes the radvd daemon to run as root and has an unspecified impact.
Litech Router Advertisement Daemon
4
CVSSv2
CVE-2014-8153
The L3 agent in OpenStack Neutron 2014.2.x prior to 2014.2.2, when using radvd 2.0+, allows remote authenticated users to cause a denial of service (blocked router update processing) by creating eight routers and assigning an ipv6 non-provider subnet to each.
Litech Router Advertisement Daemon 2.0
Openstack Neutron 2014.2
Openstack Neutron 2014.2.1
5
CVSSv2
CVE-2015-6432
Cisco IOS XR 4.2.0, 4.3.0, 5.0.0, 5.1.0, 5.2.0, 5.2.2, 5.2.4, 5.3.0, and 5.3.2 does not properly restrict the number of Path Computation Elements (PCEs) for OSPF LSA opaque area updates, which allows remote malicious users to cause a denial of service (device reload) via a crafte...
Cisco Ios Xr 5.0.0
Cisco Ios Xr 5.3.2
Cisco Ios Xr 4.3.0
Cisco Ios Xr 4.2.0
Cisco Ios Xr 5.2.4
Cisco Ios Xr 5.3.0
Cisco Ios Xr 5.2.2
Cisco Ios Xr 5.2.0
Cisco Ios Xr 5.1.0
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
path traversal
CVE-2024-26978
CVE-2024-26982
wireless
CVE-2023-6949
CVE-2024-26980
CVE-2024-32766
CVE-2024-26939
cache poisoning
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »