Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
nine:situations:group vulnerabilities and exploits
(subscribe to this query)
1000
VMScore
CVE-2008-6935
Argument injection vulnerability in Exodus 0.10 allows remote malicious users to inject arbitrary command line arguments, overwrite arbitrary files, and cause a denial of service via encoded spaces in an im:// URI.
Joe Fuhrman Exodus 0.10
2 EDB exploits
940
VMScore
CVE-2008-6936
Argument injection vulnerability in Exodus 0.10 allows remote malicious users to inject arbitrary command line arguments, overwrite arbitrary files, and cause a denial of service via encoded spaces in a pres:// URI, a different vector than CVE-2008-6935.
Jabber Exodus 0.10
2 EDB exploits
1000
VMScore
CVE-2008-6937
Argument injection vulnerability in Exodus 0.10 allows remote malicious users to inject arbitrary command line arguments, overwrite arbitrary files, and cause a denial of service via encoded spaces in an xmpp:// URI, a different vector than CVE-2008-6935 and CVE-2008-6936. NOTE: ...
Jabber Exodus 0.10
2 EDB exploits
935
VMScore
CVE-2009-4676
Stack-based buffer overflow in JetCast.exe 2.0.4.1109 in jetAudio 7.5.2 and 7.5.3.15 allows remote malicious users to execute arbitrary code via a long title in a FLAC file. NOTE: the provenance of this information is unknown; the details are obtained solely from third party info...
Cowon America Jetaudio 7.5.3.15
Cowon America Jetaudio 7.5.2
1 EDB exploit
755
VMScore
CVE-2009-4796
Multiple SQL injection vulnerabilities in the ExecuteQueries function in private/system/classes/listfactory.class.php in glFusion 1.1.2 and previous versions allow remote malicious users to execute arbitrary SQL commands via the (1) order and (2) direction parameters to search.ph...
Glfusion Glfusion
Glfusion Glfusion 1.1.0
Glfusion Glfusion 1.1.1
Glfusion Glfusion 1.0.0
Glfusion Glfusion 1.0.1
1 EDB exploit
935
VMScore
CVE-2008-4471
Directory traversal vulnerability in the CExpressViewerControl class in the DWF Viewer ActiveX control (AdView.dll 9.0.0.96), as used in Revit Architecture 2009 SP2 and Autodesk Design Review 2009, allows remote malicious users to overwrite arbitrary files via "..\" seq...
Autodesk Design Review 2009
Autodesk Dwf Viewer
Autodesk Revit Architecture 2009
1 EDB exploit
685
VMScore
CVE-2008-4493
Microsoft PicturePusher ActiveX control (PipPPush.DLL 7.00.0709), as used in Microsoft Digital Image 2006 Starter Edition, allows remote malicious users to force the upload of arbitrary files by using the AddString and Post methods and a modified PostURL to construct an HTTP POST...
Microsoft Digital Image 2006
1 EDB exploit
435
VMScore
CVE-2009-1915
Stack-based buffer overflow in the URL Search Hook (ICQToolBar.dll) in ICQ 6.5 allows remote malicious users to cause a denial of service (persistent crash) and possibly execute arbitrary code via an Internet shortcut .URL file containing a long URL parameter, which triggers a cr...
Icq Icq 6.5
1 EDB exploit
935
VMScore
CVE-2008-7070
Argument injection vulnerability in the URI handler in KVIrc 3.4.2 Shiny allows remote malicious users to execute arbitrary commands via a " (quote) followed by command line switches in a (1) irc:///, (2) irc6:///, (3) ircs:///, or (4) and ircs6:/// URI. NOTE: this might be ...
Kvirc Kvirc 3.4.2
1 EDB exploit
685
VMScore
CVE-2008-5749
Argument injection vulnerability in Google Chrome 1.0.154.36 on Windows XP SP3 allows remote malicious users to execute arbitrary commands via the --renderer-path option in a chromehtml: URI. NOTE: a third party disputes this issue, stating that Chrome "will ask for user per...
Google Chrome 1.0.154.36
1 EDB exploit
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3380
CVE-2024-1694
local file inclusion
CVE-2024-5645
CVE-2024-24919
XSS
CVE-2024-36774
CVE-2024-21306
SQL
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »