Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
drew vulnerabilities and exploits
(subscribe to this query)
4.8
CVSSv3
CVE-2023-28695
Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Drew Phillips VigilanTor plugin <= 1.3.10 versions.
Vigilantor Project Vigilantor
4.3
CVSSv3
CVE-2023-35044
Cross-Site Request Forgery (CSRF) vulnerability in Drew Phillips Securimage-WP plugin <= 3.6.16 versions.
Securimage-wp-fixed Project Securimage-wp-fixed
NA
CVE-2022-45852
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in FormAssembly / Drew Buschhorn WP-FormAssembly allows Path Traversal.This issue affects WP-FormAssembly: from n/a up to and including 2.0.5.
NA
CVE-2023-49768
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in FormAssembly / Drew Buschhorn WP-FormAssembly allows Stored XSS.This issue affects WP-FormAssembly: from n/a up to and including 2.0.10.
NA
CVE-2021-37357
Online Course Registration version 1.0 suffers from a blind boolean-based remote SQL injection vulnerability.
NA
CVE-2013-0792
Mozilla Firefox prior to 20.0 and SeaMonkey prior to 2.17, when gfx.color_management.enablev4 is used, do not properly handle color profiles during PNG rendering, which allows remote malicious users to obtain sensitive information from process memory or cause a denial of service ...
Mozilla Firefox 19.0.1
Mozilla Firefox
Mozilla Firefox 19.0
Mozilla Seamonkey 2.16
Mozilla Seamonkey 2.16.1
Mozilla Seamonkey
Mozilla Seamonkey 2.16.2
Mozilla Seamonkey 2.15
Mozilla Seamonkey 2.14
Mozilla Seamonkey 2.0.11
Mozilla Seamonkey 2.0.13
Mozilla Seamonkey 2.0
Mozilla Seamonkey 2.11
Mozilla Seamonkey 2.13
Mozilla Seamonkey 2.12
Mozilla Seamonkey 2.1
Mozilla Seamonkey 2.3.1
Mozilla Seamonkey 2.3
Mozilla Seamonkey 2.2
Mozilla Seamonkey 2.17
Mozilla Seamonkey 2.0.2
Mozilla Seamonkey 2.0.1
NA
CVE-2013-0794
Mozilla Firefox prior to 20.0 and SeaMonkey prior to 2.17 do not prevent origin spoofing of tab-modal dialogs, which allows remote malicious users to conduct phishing attacks via a crafted web site.
Mozilla Firefox 19.0
Mozilla Firefox 19.0.1
Mozilla Firefox
Mozilla Seamonkey
Mozilla Seamonkey 2.17
Mozilla Seamonkey 2.16
Mozilla Seamonkey 2.16.2
Mozilla Seamonkey 2.15
Mozilla Seamonkey 2.15.1
Mozilla Seamonkey 2.14
Mozilla Seamonkey 2.15.2
Mozilla Seamonkey 2.0.1
Mozilla Seamonkey 2.0
Mozilla Seamonkey 2.0.6
Mozilla Seamonkey 2.0.5
Mozilla Seamonkey 2.10
Mozilla Seamonkey 2.11
Mozilla Seamonkey 2.13
Mozilla Seamonkey 2.12.1
Mozilla Seamonkey 2.0.8
Mozilla Seamonkey 2.12
Mozilla Seamonkey 2.4
NA
CVE-2013-0789
Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox prior to 20.0 and SeaMonkey prior to 2.17 allow remote malicious users to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via vectors related to th...
Mozilla Firefox 19.0
Mozilla Firefox 19.0.1
Mozilla Firefox
Mozilla Seamonkey 2.17
Mozilla Seamonkey 2.16
Mozilla Seamonkey 2.15
Mozilla Seamonkey 2.15.2
Mozilla Seamonkey 2.14
Mozilla Seamonkey 2.0
Mozilla Seamonkey 2.0.4
Mozilla Seamonkey 2.0.5
Mozilla Seamonkey 2.10
Mozilla Seamonkey 2.11
Mozilla Seamonkey 2.13
Mozilla Seamonkey 2.12.1
Mozilla Seamonkey 2.0.8
Mozilla Seamonkey 2.12
Mozilla Seamonkey 2.1
Mozilla Seamonkey 2.4.1
Mozilla Seamonkey 2.3
Mozilla Seamonkey 2.4
Mozilla Seamonkey 2.13.1
NA
CVE-2013-0765
Mozilla Firefox prior to 19.0, Thunderbird prior to 17.0.3, and SeaMonkey prior to 2.16 do not prevent multiple wrapping of WebIDL objects, which allows remote malicious users to bypass intended access restrictions via unspecified vectors.
Mozilla Firefox
Mozilla Seamonkey
Opensuse Opensuse 11.4
Opensuse Opensuse 12.1
Opensuse Opensuse 12.2
Canonical Ubuntu Linux 10.04
Canonical Ubuntu Linux 11.10
Canonical Ubuntu Linux 12.04
Canonical Ubuntu Linux 12.10
NA
CVE-2013-0772
The RasterImage::DrawFrameTo function in Mozilla Firefox prior to 19.0, Thunderbird prior to 17.0.3, and SeaMonkey prior to 2.16 allows remote malicious users to obtain sensitive information from process memory or cause a denial of service (out-of-bounds read and application cras...
Mozilla Firefox
Mozilla Seamonkey
Opensuse Opensuse 11.4
Opensuse Opensuse 12.1
Opensuse Opensuse 12.2
Redhat Enterprise Linux Aus 5.9
Redhat Enterprise Linux Desktop 5.0
Redhat Enterprise Linux Desktop 6.0
Redhat Enterprise Linux Eus 5.9
Redhat Enterprise Linux Eus 6.3
Redhat Enterprise Linux Server 5.0
Redhat Enterprise Linux Server 6.0
Redhat Enterprise Linux Workstation 5.0
Redhat Enterprise Linux Workstation 6.0
Canonical Ubuntu Linux 10.04
Canonical Ubuntu Linux 11.10
Canonical Ubuntu Linux 12.04
Canonical Ubuntu Linux 12.10
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-49223
CVE-2024-0044
information disclosure
CVE-2024-35753
HTML injection
CVE-2024-21306
CVE-2024-35733
SQL injection
CVE-2024-35732
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »