Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
daniel a. vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2021-47303
In the Linux kernel, the following vulnerability has been resolved: bpf: Track subprog poke descriptors correctly and fix use-after-free Subprograms are calling map_poke_track(), but on program release there is no hook to call map_poke_untrack(). However, on program release, the ...
NA
CVE-2023-32127
Missing Authorization vulnerability in Daniel Powney Multi Rating allows Functionality Misuse.This issue affects Multi Rating: from n/a up to and including 5.0.6.
7.5
CVSSv3
CVE-2023-32590
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Daniel Söderström / Sidney van de Stouwe Subscribe to Category.This issue affects Subscribe to Category: from n/a up to and including 2.7.4.
Subscribe To Category Project Subscribe To Category
8.8
CVSSv3
CVE-2023-47250
In mprivacy-tools prior to 2.0.406g in m-privacy TightGate-Pro Server, broken Access Control on X11 server sockets allows authenticated attackers (with access to a VNC session) to access the X11 desktops of other users by specifying their DISPLAY ID. This allows complete control ...
M-privacy Rsbac-policy-tgpro
M-privacy Mprivacy-tools
M-privacy Tightgatevnc
6.5
CVSSv3
CVE-2023-47251
In mprivacy-tools prior to 2.0.406g in m-privacy TightGate-Pro Server, a Directory Traversal in the print function of the VNC service allows authenticated attackers (with access to a VNC session) to automatically transfer malicious PDF documents by moving them into the .spool dir...
M-privacy Mprivacy-tools
M-privacy Tightgatevnc
6
CVSSv3
CVE-2023-6253
A saved encryption key in the Uninstaller in Digital Guardian's Agent before version 7.9.4 allows a local malicious user to retrieve the uninstall key and remove the software by extracting the uninstaller key from the memory of the uninstaller file.
Fortra Digital Guardian Agent
7.8
CVSSv3
CVE-2023-23583
Sequence of processor instructions leads to unexpected behavior for some Intel(R) Processors may allow an authenticated user to potentially enable escalation of privilege and/or information disclosure and/or denial of service via local access.
Intel Core I3-10100y Firmware -
Intel Core I3-10110u Firmware -
Intel Core I3-10110y Firmware -
Intel Core I3-1005g1 Firmware -
Intel Core I5-10500h Firmware -
Intel Core I5-10200h Firmware -
Intel Core I5-10310u Firmware -
Intel Core I5-10300h Firmware -
Intel Core I5-10400h Firmware -
Intel Core I5-10210u Firmware -
Intel Core I5-10210y Firmware -
Intel Core I5-10310y Firmware -
Intel Core I5-1035g1 Firmware -
Intel Core I5-1035g4 Firmware -
Intel Core I5-1035g7 Firmware -
Intel Core I7-10870h Firmware -
Intel Core I7-10610u Firmware -
Intel Core I7-10810u Firmware -
Intel Core I7-10750h Firmware -
Intel Core I7-10850h Firmware -
Intel Core I7-10875h Firmware -
Intel Core I7-10510u Firmware -
2 Github repositories
1 Article
9.8
CVSSv3
CVE-2023-38382
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Daniel Söderström / Sidney van de Stouwe Subscribe to Category allows SQL Injection.This issue affects Subscribe to Category: from n/a up to and including 2.7...
Subscribe To Category Project Subscribe To Category
5.4
CVSSv3
CVE-2022-39172
A stored XSS in the process overview (bersicht zugewiesener Vorgaenge) in mbsupport openVIVA c2 20220101 allows a remote, authenticated, low-privileged malicious user to execute arbitrary code in the victim's browser via name field of a process.
Viva-project Openviva
6.1
CVSSv3
CVE-2023-38910
CSZ CMS 1.3.0 is vulnerable to cross-site scripting (XSS), which allows malicious users to execute arbitrary web scripts or HTML via a crafted payload entered in the 'Carousel Wiget' section and choosing our carousel widget created above, in 'Photo URL' and ...
Cszcms Csz Cms 1.3.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
validation
CVE-2012-1823
malicious code
CVE-2024-5770
CVE-2023-45866
CVE-2024-35687
local users
CVE-2024-31246
CVE-2024-35730
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »