Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
backdoored vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2024-4978
Justice AV Solutions Viewer Setup 8.3.7.250-1 contains a malicious binary when executed and is signed with an unexpected authenticode signature. A remote, privileged threat actor may exploit this vulnerability to execute of unauthorized PowerShell commands.
Javs Javs Viewer 8.3.7.250
2 Articles
668
VMScore
CVE-2021-24867
Numerous Plugins and Themes from the AccessPress Themes (aka Access Keys) vendor are backdoored due to their website being compromised. Only plugins and themes downloaded via the vendor website are affected, and those hosted on wordpress.org are not. However, all of them were upd...
Accesspressthemes Accessbuddy 1.0.0
Accesspressthemes Accesspress Anonymous Post 2.8.0
Accesspressthemes Accesspress Basic 3.2.1
Accesspressthemes Accesspress Custom Css 2.0.1
Accesspressthemes Accesspress Custom Post Type 1.0.8
Accesspressthemes Accesspress Ifeeds 4.0.3
Accesspressthemes Accesspress Lite 2.92
Accesspressthemes Accesspress Mag 2.6.5
Accesspressthemes Accesspress Parallax 4.5
Accesspressthemes Accesspress Ray 1.19.5
Accesspressthemes Accesspress Root 2.5
Accesspressthemes Accesspress Social Counter 1.9.1
Accesspressthemes Accesspress Social Icons 1.8.2
Accesspressthemes Accesspress Social Login Lite 3.4.7
Accesspressthemes Accesspress Social Share 4.5.5
Accesspressthemes Accesspress Staple 1.9.1
Accesspressthemes Accesspress Store 2.4.9
Accesspressthemes Agency Lite 1.1.6
Accesspressthemes Ap Companion
Accesspressthemes Ap Contact Form 1.0.6
Accesspressthemes Ap Custom Testimonial 1.4.6
Accesspressthemes Ap Mega Menu 3.0.5
643
VMScore
CVE-2021-3490
The eBPF ALU32 bounds tracking for bitwise ops (AND, OR and XOR) in the Linux kernel did not properly update 32-bit bounds, which could be turned into out of bounds reads and writes in the Linux kernel and therefore, arbitrary code execution. This issue was fixed via commit 049c4...
Linux Linux Kernel
Linux Linux Kernel 5.13
Canonical Ubuntu Linux 20.04
Canonical Ubuntu Linux 20.10
Canonical Ubuntu Linux 21.04
6 Github repositories
1 Article
685
VMScore
CVE-2019-12828
An issue exists in Electronic Arts Origin prior to 10.5.39. Due to improper sanitization of the origin:// and origin2:// URI schemes, it is possible to inject additional arguments into the Origin process and ultimately leverage code execution by loading a backdoored Qt plugin rem...
Ea Origin
1 EDB exploit
891
VMScore
CVE-2015-7755
Juniper ScreenOS 6.2.0r15 up to and including 6.2.0r18, 6.3.0r12 prior to 6.3.0r12b, 6.3.0r13 prior to 6.3.0r13b, 6.3.0r14 prior to 6.3.0r14b, 6.3.0r15 prior to 6.3.0r15b, 6.3.0r16 prior to 6.3.0r16b, 6.3.0r17 prior to 6.3.0r17b, 6.3.0r18 prior to 6.3.0r18b, 6.3.0r19 prior to 6.3...
Juniper Screenos 6.3.0
4 Github repositories
3 Articles
445
VMScore
CVE-2015-7756
The encryption implementation in Juniper ScreenOS 6.2.0r15 up to and including 6.2.0r18, 6.3.0r12 prior to 6.3.0r12b, 6.3.0r13 prior to 6.3.0r13b, 6.3.0r14 prior to 6.3.0r14b, 6.3.0r15 prior to 6.3.0r15b, 6.3.0r16 prior to 6.3.0r16b, 6.3.0r17 prior to 6.3.0r17b, 6.3.0r18 prior to...
Juniper Screenos 6.2.0r17
Juniper Screenos 6.2.0r18
Juniper Screenos 6.3.0
Juniper Screenos 6.2.0r15
Juniper Screenos 6.2.0r16
1 Github repository
3 Articles
940
VMScore
CVE-2005-1924
The G/PGP (GPG) Plugin 2.1 and previous versions for Squirrelmail allow remote authenticated users to execute arbitrary commands via shell metacharacters in (1) the fpr parameter to the deleteKey function in gpg_keyring.php, as called by (a) import_key_file.php, (b) import_key_te...
Squirrelmail Gpg Plugin
2 EDB exploits
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-23316
SQL injection
type confusion
CVE-2024-20697
CVE-2024-4344
local
CVE-2024-30043
CVE-2024-3821
CVE-2024-5041
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started