Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
offensive vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2023-42883
The issue was addressed with improved memory handling. This issue is fixed in Safari 17.2, macOS Sonoma 14.2, iOS 17.2 and iPadOS 17.2, watchOS 10.2, tvOS 17.2, iOS 16.7.3 and iPadOS 16.7.3. Processing an image may lead to a denial-of-service.
Apple Macos
Apple Safari
Apple Watchos
Apple Tvos
Apple Ipados
Apple Iphone Os
Debian Debian Linux 11.0
Debian Debian Linux 12.0
NA
CVE-2023-23883
Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in David Gwyer WP Content Filter plugin <= 3.0.1 versions.
Wp Content Filter - Censor All Offensive Content From Your Site Project Wp Content Filter - Censor All Offensive Content From Your Site
NA
CVE-2022-41128
Windows Scripting Languages Remote Code Execution Vulnerability
Microsoft Windows Server 2008 R2
Microsoft Windows Server 2012 R2
Microsoft Windows 10 1607
Microsoft Windows 8.1 -
Microsoft Windows Server 2016 -
Microsoft Windows Server 2012 -
Microsoft Windows 10 -
Microsoft Windows Server 2019 -
Microsoft Windows 10 1809
Microsoft Windows 7 Sp1
Microsoft Windows 10 20h2
Microsoft Windows 10 21h1
Microsoft Windows Server 2022 -
Microsoft Windows 11 -
Microsoft Windows 10 21h2
Microsoft Windows 11 22h2
Microsoft Windows 10 22h2
3 Articles
4.3
CVSSv2
CVE-2019-3686
openQA before commit c172e8883d8f32fced5e02f9b6faaacc913df27b was vulnerable to XSS in the distri and version parameter. This was reported through the bug bounty program of Offensive Security
Suse Openqa
6.8
CVSSv2
CVE-2019-15943
vphysics.dll in Counter-Strike: Global Offensive prior to 1.37.1.1 allows remote malicious users to achieve code execution or denial of service by creating a gaming server and inviting a victim to this server, because a crafted map is mishandled during a memset call.
Valvesoftware Counter-strike\\ Global Offensive
1 EDB exploit
1 Article
5
CVSSv2
CVE-2019-15944
In Counter-Strike: Global Offensive prior to 8/29/2019, community game servers can display unsafe HTML in a disconnection message.
Valvesoftware Counter-strike\\ Global Offensive
7.5
CVSSv2
CVE-2012-2971
The server in CA ARCserve Backup r12.5, r15, and r16 on Windows does not properly process RPC requests, which allows remote malicious users to execute arbitrary code or cause a denial of service via a crafted request.
5
CVSSv2
CVE-2012-2972
The (1) server and (2) agent components in CA ARCserve Backup r12.5, r15, and r16 on Windows do not properly validate RPC requests, which allows remote malicious users to cause a denial of service (service crash) via a crafted request.
7.5
CVSSv2
CVE-2010-4924
PHP remote file inclusion vulnerability in logic/controller.class.php in clearBudget 0.9.8 allows remote malicious users to execute arbitrary PHP code via a URL in the actionPath parameter. NOTE: this issue has been disputed by a reliable third party
Clearbudget Clearbudget 0.9.8
1 EDB exploit
6.8
CVSSv2
CVE-2008-1625
aavmker4.sys in avast! Home and Professional 4.7 for Windows does not properly validate input to IOCTL 0xb2d60030, which allows local users to gain privileges via certain IOCTL requests.
Avast Avast Antivirus Home 4.7.1043
Avast Avast Antivirus Home 4.7.1098
Avast Avast Antivirus Home 4.7.827
Avast Avast Antivirus Home 4.7.844
Avast Avast Antivirus Home 4.7.869
Avast Avast Antivirus Professional 4.7.844
Avast Avast Antivirus Professional 4.7.1043
Avast Avast Antivirus Professional 4.7.1098
Avast Avast Antivirus Professional 4.7.827
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3380
CVE-2024-1694
local file inclusion
CVE-2024-5645
CVE-2024-24919
XSS
CVE-2024-36774
CVE-2024-21306
SQL
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »