Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
locator vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2014-7622
The Affinity Mobile ATM Locator (aka com.collegemobile.affinity.locator) application 1.5 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle malicious users to spoof servers and obtain sensitive information via a crafted certificate.
Affinitycu Affinity Mobile Atm Locator 1.5
NA
CVE-2014-5710
The Cisco Class Locator Fast Lane (aka com.tabletkings.mycompany.fastlane.cisco) application for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle malicious users to spoof servers and obtain sensitive information via a crafted certificate...
Flane Cisco Class Locator Fast Lane -
8.8
CVSSv3
CVE-2022-47446
Cross-Site Request Forgery (CSRF) vulnerability in Viadat Creations Store Locator for WordPress with Google Maps – LotsOfLocales plugin <= 3.98.7 versions.
Viadat Store Locator For Wordpress With Google Maps
NA
CVE-2003-0003
Buffer overflow in the RPC Locator service for Microsoft Windows NT 4.0, Windows NT 4.0 Terminal Server Edition, Windows 2000, and Windows XP allows local users to execute arbitrary code via an RPC call to the service containing certain parameter information.
Microsoft Windows 2000 Terminal Services -
Microsoft Windows 2000 Terminal Services
Microsoft Windows Nt 4.0
Microsoft Windows 2000
Microsoft Windows Xp
Microsoft Windows Xp -
2 EDB exploits
9.8
CVSSv3
CVE-2017-12236
A vulnerability in the implementation of the Locator/ID Separation Protocol (LISP) in Cisco IOS XE 3.2 up to and including 16.5 could allow an unauthenticated, remote attacker using an x tunnel router to bypass authentication checks performed when registering an Endpoint Identifi...
Cisco Ios Xe 3.9.1e
Cisco Ios Xe 16.5.1c
Cisco Ios Xe 3.2.0ja
7.5
CVSSv3
CVE-2016-1351
The Locator/ID Separation Protocol (LISP) implementation in Cisco IOS 15.1 and 15.2 and NX-OS 4.1 up to and including 6.2 allows remote malicious users to cause a denial of service (device reload) via a crafted header in a packet, aka Bug ID CSCuu64279.
Cisco Nx-os 6.2\\(2a\\)
Cisco Nx-os 6.1\\(3\\)
Cisco Nx-os 5.1\\(6\\)
Cisco Nx-os 5.2\\(1\\)
Cisco Nx-os 6.2\\(12\\)
Cisco Nx-os 5.1\\(4\\)
Cisco Nx-os 6.2\\(6b\\)
Cisco Nx-os 5.1\\(5\\)
Cisco Ios 15.2\\(1\\)sy
Cisco Nx-os 6.0\\(3\\)
Cisco Ios 15.1\\(2\\)sy3
Cisco Ios 15.1\\(1\\)sy4
Cisco Ios 15.1\\(2\\)sy
Cisco Nx-os 4.2\\(8\\)
Cisco Ios 15.1\\(2\\)sy1
Cisco Nx-os 6.0\\(2\\)
Cisco Nx-os 4.2\\(3\\)
Cisco Nx-os 5.1\\(3\\)
Cisco Nx-os 6.1\\(4\\)
Cisco Nx-os 5.2\\(3a\\)
Cisco Nx-os 6.2\\(8b\\)
Cisco Nx-os 5.2\\(7\\)
NA
CVE-2023-50885
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in AGILELOGIX Store Locator WordPress.This issue affects Store Locator WordPress: from n/a up to and including 1.4.14.
NA
CVE-2024-30181
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Plainware Locatoraid Store Locator allows Stored XSS.This issue affects Locatoraid Store Locator: from n/a up to and including 3.9.30.
6.1
CVSSv3
CVE-2021-29271
remark42 prior to 1.6.1 allows XSS, as demonstrated by "Locator: Locator{URL:" followed by an XSS payload. This is related to backend/app/store/comment.go and backend/app/store/service/service.go.
Remark42 Remark42
9.8
CVSSv3
CVE-2017-15692
In Apache Geode before v1.4.0, the TcpServer within the Geode locator opens a network port that deserializes data. If an unprivileged user gains access to the Geode locator, they may be able to cause remote code execution if certain classes are present on the classpath.
Apache Geode
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3201
CVE-2024-4779
CVE-2024-35090
CVE-2024-5084
hard-coded
CVE-2024-4985
HTML injection
CVE-2024-33655
local file inclusion
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »