Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
gajim gajim vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2016-1037
Adobe Reader and Acrobat prior to 11.0.16, Acrobat and Acrobat Reader DC Classic prior to 15.006.30172, and Acrobat and Acrobat Reader DC Continuous prior to 15.016.20039 on Windows and OS X allow malicious users to execute arbitrary code or cause a denial of service (memory corr...
Adobe Acrobat Dc
Adobe Acrobat
Adobe Acrobat Reader Dc
Adobe Reader
7.5
CVSSv3
CVE-2021-41055
Gajim 1.2.x and 1.3.x prior to 1.3.3 allows remote malicious users to cause a denial of service (crash) via a crafted XMPP Last Message Correction (XEP-0308) message in multi-user chat, where the message ID equals the correction ID.
Gajim Gajim
7.5
CVSSv3
CVE-2016-9107
The OTR plugin for Gajim sends information in cleartext when using XHTML, which allows remote malicious users to obtain sensitive information via unspecified vectors.
Otr Gajim-otr -
5.4
CVSSv3
CVE-2015-8688
Gajim prior to 0.16.5 allows remote malicious users to modify the roster and intercept messages via a crafted roster-push IQ stanza.
Gajim Gajim
5.3
CVSSv3
CVE-2022-39835
An issue exists in Gajim up to and including 1.4.7. The vulnerability allows attackers, via crafted XML stanzas, to correct messages that were not sent by them. The attacker needs to be part of the group chat or single chat. The fixed version is 1.5.0.
Gajim Gajim
4.5
CVSSv3
CVE-2016-10376
Gajim up to and including 0.16.7 unconditionally implements the "XEP-0146: Remote Controlling Clients" extension. This can be abused by malicious XMPP servers to, for example, extract plaintext from OTR encrypted sessions.
Gajim Gajim
NA
CVE-2012-5524
The _ssl_verify_callback function in tls_nb.py in Gajim prior to 0.15.3 does not properly verify SSL certificates, which allows remote malicious users to conduct man-in-the-middle (MITM) attacks and spoof servers via an arbitrary certificate from a trusted CA.
Gajim Gajim 0.12.1
Gajim Gajim 0.12.2
Gajim Gajim 0.12.3
Gajim Gajim 0.12.4
Gajim Gajim 0.15
Gajim Gajim 0.2
Gajim Gajim 0.2.1
Gajim Gajim 0.3
Gajim Gajim 0.10
Gajim Gajim 0.10.1
Gajim Gajim 0.11
Gajim Gajim 0.11.1
Gajim Gajim 0.13.1
Gajim Gajim 0.13.2
Gajim Gajim 0.13.3
Gajim Gajim 0.13.4
Gajim Gajim 0.14
Gajim Gajim 0.6
Gajim Gajim 0.6.1
Gajim Gajim 0.7
Gajim Gajim 0.7.1
Gajim Gajim 0.15.1
NA
CVE-2012-2086
SQL injection vulnerability in the get_last_conversation_lines function in common/logger.py in Gajim prior to 0.15 allows remote malicious users to execute arbitrary SQL commands via the jig parameter.
Gajim Gajim 0.14
Gajim Gajim 0.13
Gajim Gajim 0.12.1
Gajim Gajim 0.12.2
Gajim Gajim 0.11.2
Gajim Gajim 0.11.1
Gajim Gajim 0.8.2
Gajim Gajim 0.7.1
Gajim Gajim 0.3
Gajim Gajim 0.2.1
Gajim Gajim 0.14.2
Gajim Gajim 0.14.1
Gajim Gajim 0.12.5
Gajim Gajim 0.12
Gajim Gajim 0.11.4
Gajim Gajim 0.11
Gajim Gajim 0.8.1
Gajim Gajim 0.8
Gajim Gajim 0.4.1
Gajim Gajim 0.4
Gajim Gajim
Gajim Gajim 0.14.3
NA
CVE-2012-2085
The exec_command function in common/helpers.py in Gajim prior to 0.15 allows user-assisted remote malicious users to execute arbitrary commands via shell metacharacters in an href attribute.
Gajim Gajim 0.11.4
Gajim Gajim 0.12.5
Gajim Gajim 0.13
Gajim Gajim 0.13.1
Gajim Gajim 0.10.1
Gajim Gajim 0.11.2
Gajim Gajim 0.11.3
Gajim Gajim 0.12.3
Gajim Gajim 0.12.4
Gajim Gajim 0.10
Gajim Gajim 0.11
Gajim Gajim 0.1
Gajim Gajim
Gajim Gajim 0.12
Gajim Gajim 0.13.2
Gajim Gajim 0.13.3
Gajim Gajim 0.11.1
Gajim Gajim 0.14.3
Gajim Gajim 0.12.1
Gajim Gajim 0.12.2
Gajim Gajim 0.13.4
Gajim Gajim 0.14
NA
CVE-2012-1987
Unspecified vulnerability in Puppet 2.6.x prior to 2.6.15 and 2.7.x prior to 2.7.13, and Puppet Enterprise (PE) Users 1.0, 1.1, 1.2.x, 2.0.x, and 2.5.x prior to 2.5.1 allows remote authenticated users with agent SSL keys to (1) cause a denial of service (memory consumption) via a...
Puppet Puppet 2.6.6
Puppet Puppet 2.6.5
Puppet Puppet 2.6.13
Puppet Puppet 2.6.12
Puppet Puppet 2.6.4
Puppet Puppet 2.6.3
Puppet Puppet 2.6.9
Puppet Puppet 2.6.8
Puppet Puppet 2.6.7
Puppet Puppet 2.6.0
Puppet Puppet 2.6.14
Puppet Puppet 2.6.11
Puppet Puppet 2.6.10
Puppet Puppet 2.6.2
Puppet Puppet 2.6.1
Puppet Puppet 2.7.10
Puppetlabs Puppet 2.7.1
Puppetlabs Puppet 2.7.0
Puppet Puppet 2.7.9
Puppet Puppet 2.7.8
Puppet Puppet 2.7.4
Puppet Puppet 2.7.3
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-33572
CVE-2024-24919
CVE-2024-0230
CVE-2024-32714
HTML injection
local file inclusion
CVE-2024-31098
CVE-2024-31244
privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »