Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
gtk vulnerabilities and exploits
(subscribe to this query)
7.8
CVSSv3
CVE-2010-3843
The GTK version of ettercap uses a global settings file at /tmp/.ettercap_gtk and does not verify ownership of this file. When parsing this file for settings in gtkui_conf_read() (src/interfacesgtk/ec_gtk_conf.c), an unchecked sscanf() call allows a maliciously placed settings fi...
Ettercap-project Ettercap 0.7.3
NA
CVE-2007-5215
Multiple PHP remote file inclusion vulnerabilities in Jacob Hinkle GodSend 0.6 allow remote malicious users to execute arbitrary PHP code via a URL in the SCRIPT_DIR parameter to (1) gtk/main.inc.php or (2) cmdline.inc.php. NOTE: vector 2 is disputed by CVE because it is containe...
Jacob Hinkle Godsend 0.6
NA
CVE-2011-3635
Cross-site scripting (XSS) vulnerability in the theme_adium_append_message function in empathy-theme-adium.c in the Adium theme in libempathy-gtk in Empathy 3.2.1 and previous versions allows remote malicious users to inject arbitrary web script or HTML via a crafted alias (aka n...
Gnome Empathy 3.1.1
Gnome Empathy 3.1.2.1
Gnome Empathy 3.1.90
Gnome Empathy 3.1.91
Gnome Empathy 2.91.3
Gnome Empathy 2.91.4
Gnome Empathy 2.91.6.1
Gnome Empathy 2.91.6
Gnome Empathy 2.91.93
Gnome Empathy 3.1.4
Gnome Empathy 3.1.5
Gnome Empathy 3.0.2
Gnome Empathy 2.91.0
Gnome Empathy 2.91.4.2
Gnome Empathy 2.91.4.3
Gnome Empathy 2.91.90
Gnome Empathy 2.91.91.1
Gnome Empathy 2.33.3
Gnome Empathy 2.32.0.1
Gnome Empathy 2.31.4
Gnome Empathy 2.31.5.1
Gnome Empathy 2.30.0.2
NA
CVE-2011-4170
Cross-site scripting (XSS) vulnerability in the theme_adium_append_message function in empathy-theme-adium.c in the Adium theme in libempathy-gtk in Empathy 3.2.1 and previous versions allows remote malicious users to inject arbitrary web script or HTML via a crafted alias (aka n...
Gnome Empathy 3.1.3
Gnome Empathy 3.1.4
Gnome Empathy 3.1.5
Gnome Empathy 3.1.5.1
Gnome Empathy 2.91.3.1
Gnome Empathy 2.91.4.1
Gnome Empathy 2.91.4.2
Gnome Empathy 2.91.4.3
Gnome Empathy 2.33.1
Gnome Empathy 2.33.2
Gnome Empathy 2.33.3
Gnome Empathy 2.32.0.1
Gnome Empathy 2.30.0.1
Gnome Empathy 2.30.0.2
Gnome Empathy 2.30.0
Gnome Empathy 2.30.1.1
Gnome Empathy 2.29.91.2
Gnome Empathy 2.29.91
Gnome Empathy 2.29.92
Gnome Empathy 2.29.93
Gnome Empathy 2.28.0.1
Gnome Empathy 2.27.92
NA
CVE-2007-2838
The populate_conns function in src/populate_conns.c in GSAMBAD 0.1.4 allows local users to overwrite arbitrary files via a symlink attack on the /tmp/gsambadtmp temporary file.
Gsambad Gsambad 0.1.4
NA
CVE-2004-0111
gdk-pixbuf prior to 0.20 allows malicious users to cause a denial of service (crash) via a malformed bitmap (BMP) file.
Gnome Gdkpixbuf 0.18
Gnome Gdkpixbuf 0.20
Sgi Propack 2.4
Redhat Gdk Pixbuf 0.18.0-7
Sgi Propack 2.3
Redhat Enterprise Linux 2.1
Redhat Enterprise Linux 3.0
Redhat Linux Advanced Workstation 2.1
NA
CVE-2005-2964
Stack-based buffer overflow in AbiWord prior to 2.2.10 allows malicious users to execute arbitrary code via the RTF import mechanism.
Abisource Community Abiword
9.8
CVSSv3
CVE-2015-8833
Use-after-free vulnerability in the create_smp_dialog function in gtk-dialog.c in the Off-the-Record Messaging (OTR) pidgin-otr plugin prior to 4.0.2 for Pidgin allows remote malicious users to execute arbitrary code via vectors related to the "Authenticate buddy" menu ...
Cypherpunks Pidgin-otr
8.8
CVSSv3
CVE-2016-2804
Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox prior to 46.0 allow remote malicious users to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via unknown vectors.
Mozilla Firefox Esr 38.5.0
Mozilla Firefox Esr 38.4.0
Mozilla Firefox Esr 38.0.1
Mozilla Firefox Esr 38.0
Mozilla Firefox Esr 38.5.2
Mozilla Firefox Esr 38.5.1
Mozilla Firefox Esr 38.1.0
Mozilla Firefox Esr 38.0.5
Mozilla Firefox Esr 38.3.0
Mozilla Firefox Esr 38.2.1
Mozilla Firefox
Mozilla Firefox Esr 38.7.1
Mozilla Firefox Esr 38.7.0
Mozilla Firefox Esr 38.6.1
Mozilla Firefox Esr 38.6.0
Mozilla Firefox Esr 38.2.0
Mozilla Firefox Esr 38.1.1
1 Article
8.8
CVSSv3
CVE-2016-2811
Use-after-free vulnerability in the ServiceWorkerInfo class in the Service Worker subsystem in Mozilla Firefox prior to 46.0 allows remote malicious users to execute arbitrary code via vectors related to the BeginReading method.
Mozilla Firefox
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-49333
CVE-2024-33901
CVE-2024-36001
CVE-2024-2835
firewall
XPath injection
authentication bypass
CVE-2024-22120
CVE-2024-32002
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »