Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
autocomplete vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2010-3256
Google Chrome prior to 6.0.472.53 does not properly limit the number of stored autocomplete entries, which has unspecified impact and attack vectors.
Google Chrome
6.1
CVSSv3
CVE-2022-0167
An issue has been discovered in GitLab affecting all versions starting from 14.0 prior to 14.4.5, all versions starting from 14.5.0 prior to 14.5.3, all versions starting from 14.6.0 prior to 14.6.2. GitLab was not disabling the Autocomplete attribute of fields related to sensiti...
Gitlab Gitlab
8.8
CVSSv3
CVE-2021-28142
CITSmart prior to 9.1.2.28 mishandles the "filtro de autocomplete."
4.8
CVSSv3
CVE-2018-18717
An issue exists in Eleanor CMS through 2015-03-19. XSS exists via the ajax.php?direct=admin&file=autocomplete&query=[XSS] URI.
Eleanor-cms Eleanor Cms
4.3
CVSSv3
CVE-2019-18449
An issue exists in GitLab Community and Enterprise Edition prior to 12.4 in the autocomplete feature. It has Insecure Permissions (issue 2 of 2).
Gitlab Gitlab
NA
CVE-2010-4033
Google Chrome prior to 7.0.517.41 does not properly implement the autofill and autocomplete functionality, which allows remote malicious users to conduct "profile spamming" attacks via unspecified vectors.
Google Chrome 7.0.517.22
Google Chrome 7.0.517.23
Google Chrome 7.0.517.30
Google Chrome 7.0.517.31
Google Chrome 7.0.517.32
Google Chrome 7.0.517.39
Google Chrome 7.0.517.4
Google Chrome 7.0.517.20
Google Chrome 7.0.517.21
Google Chrome 7.0.517.28
Google Chrome 7.0.517.29
Google Chrome 7.0.517.37
Google Chrome 7.0.517.38
Google Chrome 7.0.517.8
Google Chrome 7.0.517.9
Google Chrome 7.0.517.24
Google Chrome 7.0.517.25
Google Chrome 7.0.517.33
Google Chrome 7.0.517.34
Google Chrome
Google Chrome 7.0.517.5
Google Chrome 7.0.517.26
NA
CVE-2013-4634
SQL injection vulnerability in the jQuery autocomplete for indexed_search (rzautocomplete) extension prior to 0.0.9 for TYPO3 allows remote malicious users to execute arbitrary SQL commands via unspecified vectors.
Raphael Zschorsch Rzautocomplete 0.0.2
Raphael Zschorsch Rzautocomplete 0.0.7
Raphael Zschorsch Rzautocomplete 0.0.8
Raphael Zschorsch Rzautocomplete 0.0.5
Raphael Zschorsch Rzautocomplete 0.0.6
Raphael Zschorsch Rzautocomplete 0.0.3
Raphael Zschorsch Rzautocomplete 0.0.4
NA
CVE-2024-3081
A vulnerability was found in EasyCorp EasyAdmin up to 4.8.9. It has been declared as problematic. Affected by this vulnerability is the function Autocomplete of the file assets/js/autocomplete.js of the component Autocomplete. The manipulation of the argument item leads to cross ...
6.1
CVSSv3
CVE-2019-12932
A stored XSS vulnerability was found in SeedDMS 5.1.11 due to poorly escaping the search result in the autocomplete search form placed in the header of out/out.Viewfolder.php.
Seeddms Seeddms 5.1.11
NA
CVE-2023-45696
Sametime is impacted by sensitive fields with autocomplete enabled in the Legacy web chat client. By default, this allows user entered data to be stored by the browser.
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
NULL pointer dereference
CVE-2023-52689
CVE-2024-23803
client side
CVE-2023-52696
information disclosure
CVE-2024-35843
CVE-2024-27130
CVE-2023-52697
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »