anonymous vulnerabilities and exploits

(subscribe to this query)

Cross-site scripting (XSS) vulnerability in the Anonymous Posting module 7.x-1.2 and 7.x-1.3 for Drupal allows remote malicious users to inject arbitrary web script or HTML via the contact name field.

Anonymous Posting Project Anonymous Posting 7.x-1.2 Anonymous Posting Project Anonymous Posting 7.x-1.3

An issue exists in Decentralized Anonymous Payment System (DAPS) through 2019-08-26. The content to be signed is composed of a representation of strings, rather than being composed of their binary representations. This is a weak signature scheme design that would allow the reuse ...

Decentralized Anonymous Payment System Project Decentralized Anonymous Payment System Pivx Private Instant Verified Transactions

The Anonymous Restricted Content plugin for WordPress is vulnerable to information disclosure in all versions up to, and including, 1.6.2. This is due to insufficient restrictions through the REST API on the posts/pages that protections are being place on. This makes it possible ...

Tarassych Anonymous Restricted Content

An issue exists in the AccessKeys AccessPress Anonymous Post Pro plugin up to and including 3.1.9 for WordPress. Improper input sanitization allows the malicious user to override the settings for allowed file extensions and upload file size, related to inc/cores/file-uploader.php...

Accesspressthemes Anonymous Post Pro

1 EDB exploit

Buffer overflow in A-FTP Anonymous FTP Server allows remote malicious users to cause a denial of service via a long USER command.

A-ftp Anonymous Ftp Server

An issue exists in Decentralized Anonymous Payment System (DAPS) through 2019-08-26. It is possible to force wallets to send HTTP requests to arbitrary locations, both on the local network and on the internet. This is a serious threat to user privacy, since it can possibly leak t...

Dash Dash Core Officialdapscoin Decentralized Anonymous Payment System Pivx Private Instant Verified Transactions

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Christian Leuenberg, L.net Web Solutions Restrict Anonymous Access allows Stored XSS. This issue affects Restrict Anonymous Access: from n/a up to and including 1.2.

Christian Leuenberg, L.net Web Solutions Restrict Anonymous Access

Cross-site scripting (XSS) vulnerability in the anonymous comments feature in lib-comment.php in glFusion 1.1.0, 1.1.1, and previous versions versions allows remote malicious users to inject arbitrary web script or HTML via the username parameter to comment.php.

Glfusion Glfusion Glfusion Glfusion 1.1.0

1 EDB exploit

The Server service (srvsvc.dll) in Windows XP SP1 and SP2 allows remote malicious users to obtain sensitive information (users who are accessing resources) via an anonymous logon using a named pipe, which is not properly authenticated, aka the "Named Pipe Vulnerability."...

Microsoft Windows Xp

SAP NetWeaver Knowledge Management allows remote malicious users to redirect users to arbitrary websites and conduct phishing attacks via a URL stored in a component. This could enable the malicious user to compromise the user's confidentiality and integrity.

Sap Netweaver Knowledge Management 7.30 Sap Netweaver Knowledge Management 7.31 Sap Netweaver Knowledge Management 7.40 Sap Netweaver Knowledge Management 7.50

1 2 3 4 5 NEXT »

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Product List Vendor List Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook