Vulmon Recent Vulnerabilities Product List Research Posts Trends Blog About Contact

arbitrary code vulnerabilities and exploits

(subscribe to this query)
6.8
CVSSv2

CVE-2012-2496

A certain Java applet in the VPN downloader implementation in the WebLaunch feature in Cisco AnyConnect Secure Mobility Client 3.x prior to 3.0 MR7 on 64-bit Linux platforms does not properly restrict use of Java components, which allows remote malicious users to execute arbitrar...
Cisco Anyconnect Secure Mobility Client 3.0
4.3
CVSSv2

CVE-2012-2495

The HostScan downloader implementation in Cisco AnyConnect Secure Mobility Client 3.x prior to 3.0 MR8 and Cisco Secure Desktop prior to 3.6.6020 does not compare the timestamp of offered software to the timestamp of installed software, which allows remote malicious users to forc...
Cisco Anyconnect Secure Mobility Client 3.0Cisco Secure DesktopCisco Secure Desktop 3.1Cisco Secure Desktop 3.1.1Cisco Secure Desktop 3.1.1.27Cisco Secure Desktop 3.1.1.33Cisco Secure Desktop 3.1.1.45Cisco Secure Desktop 3.2Cisco Secure Desktop 3.2.1Cisco Secure Desktop 3.3Cisco Secure Desktop 3.4Cisco Secure Desktop 3.4.1
6.1
CVSSv3

CVE-2017-2284

Cross-site scripting vulnerability in Popup Maker prior to version 1.6.5 allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors.
Code-atlantic Popup Maker 1.0.0Code-atlantic Popup Maker 1.0.1Code-atlantic Popup Maker 1.0.2Code-atlantic Popup Maker 1.0.3Code-atlantic Popup Maker 1.0.4Code-atlantic Popup Maker 1.0.5Code-atlantic Popup Maker 1.1.0Code-atlantic Popup Maker 1.1.1Code-atlantic Popup Maker 1.1.2Code-atlantic Popup Maker 1.1.3Code-atlantic Popup Maker 1.1.4Code-atlantic Popup Maker 1.1.5
9.3
CVSSv2

CVE-2012-4655

The WebLaunch feature in Cisco Secure Desktop prior to 3.6.6020 does not properly validate binaries that are received by the downloader process, which allows remote malicious users to execute arbitrary code via vectors involving (1) ActiveX or (2) Java components, aka Bug IDs CSC...
Cisco Secure Desktop 3.1Cisco Secure Desktop 3.1.1Cisco Secure Desktop 3.1.1.27Cisco Secure Desktop 3.1.1.33Cisco Secure Desktop 3.1.1.45Cisco Secure Desktop 3.2Cisco Secure Desktop 3.2.1Cisco Secure Desktop 3.3Cisco Secure Desktop 3.4Cisco Secure Desktop 3.4.1Cisco Secure Desktop 3.4.2Cisco Secure Desktop 3.4.2048
9.3
CVSSv2

CVE-2012-2493

The VPN downloader implementation in the WebLaunch feature in Cisco AnyConnect Secure Mobility Client 2.x prior to 2.5 MR6 on Windows, and 2.x prior to 2.5 MR6 and 3.x prior to 3.0 MR8 on Mac OS X and Linux, does not properly validate binaries that are received by the downloader ...
Cisco Anyconnect Secure Mobility Client 2.0Cisco Anyconnect Secure Mobility Client 2.1Cisco Anyconnect Secure Mobility Client 2.2Cisco Anyconnect Secure Mobility Client 2.2.128Cisco Anyconnect Secure Mobility Client 2.2.133Cisco Anyconnect Secure Mobility Client 2.2.136Cisco Anyconnect Secure Mobility Client 2.2.140Cisco Anyconnect Secure Mobility Client 2.3Cisco Anyconnect Secure Mobility Client 2.3.185Cisco Anyconnect Secure Mobility Client 2.3.254Cisco Anyconnect Secure Mobility Client 2.3.2016Cisco Anyconnect Secure Mobility Client 2.4
4.3
CVSSv2

CVE-2012-2494

The VPN downloader implementation in the WebLaunch feature in Cisco AnyConnect Secure Mobility Client 2.x prior to 2.5 MR6 and 3.x prior to 3.0 MR8 does not compare the timestamp of offered software to the timestamp of installed software, which allows remote malicious users to fo...
Cisco Anyconnect Secure Mobility Client 2.0Cisco Anyconnect Secure Mobility Client 2.1Cisco Anyconnect Secure Mobility Client 2.2Cisco Anyconnect Secure Mobility Client 2.2.128Cisco Anyconnect Secure Mobility Client 2.2.133Cisco Anyconnect Secure Mobility Client 2.2.136Cisco Anyconnect Secure Mobility Client 2.2.140Cisco Anyconnect Secure Mobility Client 2.3Cisco Anyconnect Secure Mobility Client 2.3.185Cisco Anyconnect Secure Mobility Client 2.3.254Cisco Anyconnect Secure Mobility Client 2.3.2016Cisco Anyconnect Secure Mobility Client 2.4
6.2
CVSSv2

CVE-2000-0722

Helix GNOME Updater helix-update 0.5 and previous versions allows local users to install arbitrary RPM packages by creating the /tmp/helix-install installation directory before root has begun installing packages.
Helix Code Gnome Updater 0.1Helix Code Gnome Updater 0.2Helix Code Gnome Updater 0.3Helix Code Gnome Updater 0.4Helix Code Gnome Updater 0.5
5
CVSSv2

CVE-2004-1626

Buffer overflow in Ability Server 2.34, and possibly other versions, allows remote malicious users to execute arbitrary code via a long STOR command.
Code-crafters Ability Server 2.2.5Code-crafters Ability Server 2.3.2Code-crafters Ability Server 2.3.4
7.5
CVSSv2

CVE-2004-1627

Buffer overflow in Ability Server 2.25, 2.32, 2.34, and possibly other versions, allows remote malicious users to execute arbitrary code via a long APPE command.
Code-crafters Ability Server 2.2.5Code-crafters Ability Server 2.3.2Code-crafters Ability Server 2.3.4
4.3
CVSSv2

CVE-2004-1746

Cross-site scripting (XSS) vulnerability in index.php in PHP Code Snippet Library allows remote malicious users to inject arbitrary web script or HTML via the (1) cat_select or (2) show parameters.
Php Code Snippet Library Php Code Snippet Library 0.8
Preferred Score:
CVSSv3
CVSSv2
CVSSv3
CVSSv4
EPSS
VMScore
Recommendations:
path traversalCVE-2025-2657CVE-2025-30066CVE-2025-24813apache commons vfsCVE-2025-2478validationCVE-2025-2674code injectionmedical card generation systemmicrosoft edge (chromium-based)CVE-2025-2688cicadascms
Home
/
Search Results
Vulmon Logo Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Product List Vendor List Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook