Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
blog vulnerabilities and exploits
(subscribe to this query)
1000
VMScore
CVE-2013-1493
The color management (CMM) functionality in the 2D component in Oracle Java SE 7 Update 15 and previous versions, 6 Update 41 and previous versions, and 5.0 Update 40 and previous versions allows remote malicious users to execute arbitrary code or cause a denial of service (crash...
Oracle Jre 1.7.0
Oracle Jre
Sun Jre 1.5.0
Oracle Jre 1.5.0
Sun Jdk 1.6.0
Oracle Jdk 1.6.0
Oracle Jdk
Sun Jre 1.6.0
Oracle Jre 1.6.0
Sun Jdk 1.5.0
Oracle Jdk 1.5.0
Oracle Jdk 1.7.0
1 EDB exploit
3 Articles
1000
VMScore
CVE-2012-4959
Directory traversal vulnerability in NFRAgent.exe in Novell File Reporter 1.0.2 allows remote malicious users to upload and execute files via a 130 /FSF/CMD request with a .. (dot dot) in a FILE element of an FSFUI record.
Novell File Reporter 1.0.2
2 EDB exploits
1000
VMScore
CVE-2012-4956
Heap-based buffer overflow in NFRAgent.exe in Novell File Reporter 1.0.2 allows remote malicious users to execute arbitrary code via a large number of VOL elements in an SRS record.
Novell File Reporter 1.0.2
1000
VMScore
CVE-2007-3824
SQL injection vulnerability in katgoster.asp in MzK Blog (tr) allows remote malicious users to execute arbitrary SQL commands via the katID parameter.
Mehmet Zati Karahan Mzk Blog
1 EDB exploit
1000
VMScore
CVE-2007-1399
Stack-based buffer overflow in the zip:// URL wrapper in PECL ZIP 1.8.3 and previous versions, as bundled with PHP 5.2.0 and 5.2.1, allows remote malicious users to execute arbitrary code via a long zip:// URL, as demonstrated by actively triggering URL access from a remote PHP i...
Php Php 5.2.0
Php Php 5.2.1
Pecl Zip 1.8.3
1 EDB exploit
1000
VMScore
CVE-2007-0882
Argument injection vulnerability in the telnet daemon (in.telnetd) in Solaris 10 and 11 (SunOS 5.10 and 5.11) misinterprets certain client "-f" sequences as valid requests for the login program to skip authentication, which allows remote malicious users to log into cert...
Oracle Solaris 11
Sun Sunos 5.11
Sun Sunos 5.10
Oracle Solaris 10
3 EDB exploits
1 Article
945
VMScore
CVE-2010-3962
Use-after-free vulnerability in Microsoft Internet Explorer 6, 7, and 8 allows remote malicious users to execute arbitrary code via vectors related to Cascading Style Sheets (CSS) token sequences and the clip attribute, aka an "invalid flag reference" issue or "Uni...
Microsoft Internet Explorer 6
Microsoft Internet Explorer 7
Microsoft Internet Explorer 8
3 EDB exploits
1 Article
945
VMScore
CVE-2008-1083
Heap-based buffer overflow in the CreateDIBPatternBrushPt function in GDI in Microsoft Windows 2000 SP4, XP SP2, Server 2003 SP1 and SP2, Vista, and Server 2008 allows remote malicious users to execute arbitrary code via an EMF or WMF image file with a malformed header that trigg...
Microsoft Windows Server 2008 -
Microsoft Windows 2003 Server
Microsoft Windows Xp
Microsoft Windows Vista
Microsoft Windows 2000
Microsoft Windows Vista -
3 EDB exploits
940
VMScore
CVE-2009-1136
The Microsoft Office Web Components Spreadsheet ActiveX control (aka OWC10 or OWC11), as distributed in Office XP SP3 and Office 2003 SP3, Office XP Web Components SP3, Office 2003 Web Components SP3, Office 2003 Web Components SP1 for the 2007 Microsoft Office System, Internet S...
Microsoft Office 2003
Microsoft Isa Server 2004
Microsoft Office Web Components Xp
Microsoft Isa Server 2006
Microsoft Office Web Components 2003
Microsoft Office Xp Sp3
2 EDB exploits
937
VMScore
CVE-2019-0232
When running on Windows with enableCmdLineArguments enabled, the CGI Servlet in Apache Tomcat 9.0.0.M1 to 9.0.17, 8.5.0 to 8.5.39 and 7.0.0 to 7.0.93 is vulnerable to Remote Code Execution due to a bug in the way the JRE passes command line arguments to Windows. The CGI Servlet i...
Apache Tomcat
Apache Tomcat 9.0.0
1 EDB exploit
8 Github repositories
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
path traversal
CVE-2024-33545
CVE-2024-35725
CVE-2024-32704
overflow
file upload
CVE-2024-0230
CVE-2024-32705
CVE-2024-23692
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »