Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
evolution vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2010-1427
Cross-site scripting (XSS) vulnerability in the SearchHighlight plugin in MODx Evolution prior to 1.0.3 allows remote malicious users to inject arbitrary web script or HTML via unknown vectors related to AjaxSearch.
Modxcms Evolution 0.9.6.1
Modxcms Evolution 0.9.2.1
Modxcms Evolution
Modxcms Evolution 0.9.5
Modxcms Evolution 0.9.0
Modxcms Evolution 0.9.1
Modxcms Evolution 0.9.6
Modxcms Evolution 0.9.6.2
NA
CVE-2006-0528
The cairo library (libcairo), as used in GNOME Evolution and possibly other products, allows remote malicious users to cause a denial of service (persistent client crash) via an attached text file that contains "Content-Disposition: inline" in the header, and a very lon...
Gnome Evolution 2.3.3
Gnome Evolution 2.3.4
Gnome Evolution 2.3.5
Gnome Evolution 2.3.7
Gnome Evolution 2.3.1
Gnome Evolution 2.3.2
Gnome Evolution 2.3.6
Gnome Evolution 2.3.6.1
1 EDB exploit
NA
CVE-2006-2789
Evolution 2.2.x and 2.3.x in GNOME 2.7 and 2.8, when "load images if sender in addressbook" is enabled, allows remote malicious users to cause a denial of service (persistent crash) via a crafted "From" header that triggers an assert error in camel-internet-ad...
Gnome Evolution 2.3.4
Gnome Evolution 2.3.5
Gnome Evolution 2.3.6
Gnome Evolution 2.3.6.1
Gnome Evolution 2.3.1
Gnome Evolution 2.3.3
Gnome Evolution 2.3.7
Gnome Evolution 2.3.2
NA
CVE-2002-1471
The camel component for Ximian Evolution 1.0.x and previous versions does not verify certificates when it establishes a new SSL connection after previously verifying a certificate, which could allow remote malicious users to monitor or modify sessions via a man-in-the-middle atta...
Ximian Evolution 1.0.7
Ximian Evolution 1.0.3
Ximian Evolution 1.0.4
Ximian Evolution 1.0.5
Ximian Evolution 1.0.6
Ximian Evolution 1.0.8
NA
CVE-2009-1457
Cross-site scripting (XSS) vulnerability in player.php in Nuke Evolution Xtreme 2.x allows remote malicious users to inject arbitrary web script or HTML via the defaultVisualExt parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from t...
Evolution-extreme Nuke Evolution Xtreme 2.1.0
Evolution-extreme Nuke Evolution Xtreme 2.0.7
Evolution-extreme Nuke Evolution Xtreme 2.0
NA
CVE-2002-2249
PHP remote file inclusion vulnerability in News Evolution 2.0 allows remote malicious users to execute arbitrary PHP commands via the neurl parameter to (1) backend.php, (2) screen.php, or (3) admin/modules/comment.php.
Php Evolution News Evolution 1.0
Php Evolution News Evolution 2.0
1 EDB exploit
NA
CVE-2009-0547
Evolution 2.22.3.1 checks S/MIME signatures against a copy of the e-mail text within a signed-data blob, not the copy of the e-mail text displayed to the user, which allows remote malicious users to spoof a signature by modifying the latter copy, a different vulnerability than CV...
Evolution Evolution 2.22.3.1
NA
CVE-2007-6221
TuMusika Evolution 1.7R5 allows remote malicious users to obtain configuration information via a direct request to phpinfo.php, which calls the phpinfo function. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
Tumusika Evolution Tumusika Evolution 1.7r5
1 EDB exploit
8.8
CVSSv3
CVE-2018-1000889
Logisim Evolution version 2.14.3 and previous versions contains an XML External Entity (XXE) vulnerability in Circuit file loading functionality (loadXmlFrom in src/com/cburch/logisim/file/XmlReader.java) that can result in information leak, possible RCE depending on system confi...
Logisim-evolution Project Logisim-evolution
NA
CVE-2007-2090
Cross-site scripting (XSS) vulnerability in index.php in TuMusika Evolution 1.6 allows remote malicious users to inject arbitrary web script or HTML via the msg parameter.
Tumusika Evolution Tumusika Evolution 1.6
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
blind SQL injection
SSRF
buffer overflow
CVE-2023-28952
CVE-2023-41822
CVE-2024-27956
CVE-2023-7028
CVE-2024-34447
CVE-2024-34460
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »