Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

atlas vulnerabilities and exploits

(subscribe to this query)
7.5
CVSSv3
CVE-2023-1897
Atlas Copco Power Focus 6000 web server does not sanitize the login information stored by the authenticated user’s browser, which could allow an attacker with access to the user’s computer to gain credential information of the controller.
Atlascopco Power Focus 6000 Firmware -
8.8
CVSSv3
CVE-2016-6100
IBM Disposal and Governance Management for IT and IBM Global Retention Policy and Schedule Management, components of IBM Atlas Policy Suite 6.0.3 is vulnerable to cross-site request forgery which could allow an malicious user to execute malicious and unauthorized actions transmit...
Ibm Disposal And Governance Management For It 6.0.1.1Ibm Disposal And Governance Management For It 6.0.1.2Ibm Disposal And Governance Management For It 6.0.1.3Ibm Disposal And Governance Management For It 6.0.1.4Ibm Disposal And Governance Management For It 6.0.3.3Ibm Disposal And Governance Management For It 6.0.3Ibm Disposal And Governance Management For It 6.0.1.0Ibm Disposal And Governance Management For It 6.0.1.5Ibm Disposal And Governance Management For It 6.0.1.7Ibm Disposal And Governance Management For It 6.0.3.1Ibm Disposal And Governance Management For It 6.0Ibm Disposal And Governance Management For It 6.0.3.4Ibm Disposal And Governance Management For It 6.0.3.2Ibm Disposal And Governance Management For It 6.0.1.6Ibm Disposal And Governance Management For It 6.0.2Ibm Global Retention Policy And Schedule Management 6.0.1.0Ibm Global Retention Policy And Schedule Management 6.0.1.1Ibm Global Retention Policy And Schedule Management 6.0.1.2Ibm Global Retention Policy And Schedule Management 6.0.1.3Ibm Global Retention Policy And Schedule Management 6.0.3.3Ibm Global Retention Policy And Schedule Management 6.0.3Ibm Global Retention Policy And Schedule Management 6.0.1.5
7.8
CVSSv3
CVE-2018-3982
An exploitable arbitrary write vulnerability exists in the Word document parser of the Atlantis Word Processor 3.0.2.3 and 3.0.2.5. A specially crafted document can prevent Atlas from adding elements to an array that is indexed by a loop. When reading from this array, the applica...
Atlantiswordprocessor Atlantis Word Processor 3.0.2.5Atlantiswordprocessor Atlantis Word Processor 3.0.2.3
7.8
CVSSv3
CVE-2018-0802
Equation Editor in Microsoft Office 2007, Microsoft Office 2010, Microsoft Office 2013, and Microsoft Office 2016 allow a remote code execution vulnerability due to the way objects are handled in memory, aka "Microsoft Office Memory Corruption Vulnerability". This CVE i...
Microsoft Office 2007Microsoft Office 2013Microsoft Word 2013Microsoft Office 2016Microsoft Office Compatibility Pack -Microsoft Word 2007Microsoft Word 2010Microsoft Office 2010Microsoft Word 2016
NA
CVE-2012-0158
The (1) ListView, (2) ListView2, (3) TreeView, and (4) TreeView2 ActiveX controls in MSCOMCTL.OCX in the Common Controls in Microsoft Office 2003 SP3, 2007 SP2 and SP3, and 2010 Gold and SP1; Office 2003 Web Components SP3; SQL Server 2000 SP4, 2005 SP4, and 2008 SP2, SP3, and R2...
Microsoft Office 2010Microsoft Office 2003Microsoft Office Web Components 2003Microsoft Office 2007Microsoft Sql Server 2000Microsoft Sql Server 2008Microsoft Sql Server 2005Microsoft Biztalk Server 2002Microsoft Commerce Server 2002Microsoft Commerce Server 2007Microsoft Commerce Server 2009Microsoft Visual Foxpro 8.0Microsoft Visual Foxpro 9.0Microsoft Visual Basic 6.0
7.8
CVSSv3
CVE-2017-11882
Microsoft Office 2007 Service Pack 3, Microsoft Office 2010 Service Pack 2, Microsoft Office 2013 Service Pack 1, and Microsoft Office 2016 allow an malicious user to run arbitrary code in the context of the current user by failing to properly handle objects in memory, aka "...
Microsoft Office 2013Microsoft Office 2010Microsoft Office 2016Microsoft Office 2007
6.1
CVSSv3
CVE-2018-11027
A reflected XSS vulnerability on Ruckus ICX7450-48 devices allows remote malicious users to inject arbitrary web script or HTML.
Ruckussecurity Icx7450-48 Firmware -
6.1
CVSSv3
CVE-2018-11688
Ignite Realtime Openfire prior to 3.9.2 is vulnerable to cross-site scripting, caused by improper validation of user-supplied input. A remote attacker could exploit this vulnerability via a crafted URL to execute script in a victim's Web browser within the security context o...
Igniterealtime Openfire 3.7.1
6.1
CVSSv3
CVE-2018-11689
Web Viewer for Hanwha DVR 2.17 and Smart Viewer in Samsung Web Viewer for Samsung DVR are vulnerable to XSS via the /cgi-bin/webviewer_login_page data3 parameter. (The same Web Viewer codebase was transitioned from Samsung to Hanwha.)
Samsung Smartviewer -Hanwha-security Hrd-1642 FirmwareHanwha-security Hrd-842 FirmwareHanwha-security Hrd-442 FirmwareHanwha-security Hrd-1641 FirmwareHanwha-security Hrd-841 FirmwareHanwha-security Hrd-840 FirmwareHanwha-security Hrd-440 FirmwareHanwha-security Hrd-443 FirmwareHanwha-security Srd-1694u Firmware
6.1
CVSSv3
CVE-2018-11690
The Balbooa Gridbox extension version 2.4.0 and previous versions for Joomla! is vulnerable to cross-site scripting, caused by improper validation of user-supplied input. A remote attacker could exploit this vulnerability via a crafted URL to execute script in a victim's Web...
Balbooa Gridbox
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
client sideCVE-2023-31889template injectionCVE-2024-4304CVE-2006-4304CVE-2024-33272type confusionCVE-2024-21345CVE-2024-33271
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook