Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ask vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2006-5621
PHP remote file inclusion vulnerability in end.php in ask_rave 0.9 PR, and other versions prior to 0.9b, allows remote malicious users to execute arbitrary PHP code via a URL in the footfile parameter.
Ask Rave Ask Rave
1 EDB exploit
9.8
CVSSv3
CVE-2023-27843
SQL injection vulnerability found in PrestaShop askforaquote v.5.4.2 and before allow a remote malicious user to gain privileges via the QuotesProduct::deleteProduct component.
Ask For A Quote Project Ask For A Quote
NA
CVE-2014-5865
The Ask.com (aka com.ask.android) application 2.2.5 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle malicious users to spoof servers and obtain sensitive information via a crafted certificate.
Ask Ask.com 2.2.5
NA
CVE-2007-5107
Stack-based buffer overflow in the AskJeevesToolBar.SettingsPlugin.1 ActiveX control in askBar.dll in IAC Search & Media ask.com Ask Toolbar 4.0.2.53 and previous versions allows remote malicious users to execute arbitrary code via a long ShortFormat property value. NOTE: som...
Ask.com Ask Toolbar
2 EDB exploits
4.7
CVSSv3
CVE-2022-3750
The has a CSRF vulnerability that allows the deletion of a post without using a nonce or prompting for confirmation.
Inkthemes Ask Me
6.1
CVSSv3
CVE-2022-1241
The Ask me WordPress theme prior to 6.8.2 does not properly sanitise and escape several of the fields in the Edit Profile page, leading to Reflected Cross-Site Scripting issues
2code Ask Me
4.3
CVSSv3
CVE-2022-1251
The Ask me WordPress theme prior to 6.8.4 does not perform nonce checks when processing POST requests to the Edit Profile page, allowing an malicious user to trick a user to change their profile information by sending a crafted request.
Inkthemes Ask Me
6.5
CVSSv3
CVE-2022-1424
The Ask me WordPress theme prior to 6.8.2 does not perform CSRF checks for any of its AJAX actions, allowing an malicious user to trick logged in users to perform various actions on their behalf on the site.
2code Ask Me
NA
CVE-2007-5108
Unspecified vulnerability in IAC Search & Media ask.com toolbar has unknown impact and remote attack vectors. NOTE: this information is based upon a vague advisory by a vulnerability information sales organization that does not coordinate with vendors or release actionable ad...
Ask.com Ask Toolbar
1 EDB exploit
NA
CVE-2007-2210
A certain ActiveX control in askPopStp.dll in Netsprint Ask IE Toolbar 1.1 allows remote malicious users to cause a denial of service (Internet Explorer crash) via a long AddAllowed property value, related to "improper memory handling," possibly a buffer overflow.
Netsprint Ask Ie Toolbar 1.1
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
camera
bypass
CVE-2024-3592
CVE-2024-37383
CVE-2024-24919
CVE-2024-27822
CVE-2024-36788
CVE-2024-36789
man-in-the-middle
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »