Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
player vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2019-9618
The GraceMedia Media Player plugin 1.0 for WordPress allows Local File Inclusion via the "cfg" parameter.
Gracemedia Media Player Project Gracemedia Media Player 1.0
1 EDB exploit
9.8
CVSSv3
CVE-2017-3181
Multiple TIBCO Products are prone to multiple unspecified SQL-injection vulnerabilities because it fails to properly sanitize user-supplied input before using it in an SQL query. Exploiting these issues could allow an malicious user to compromise the application, access or modify...
Tibco Spotfire Desktop Language Packs 7.6.0
Tibco Spotfire Desktop Language Packs 7.7.0
Tibco Spotfire Client -
Tibco Spotfire Web Player Client -
Tibco Spotfire Desktop 7.6.0
Tibco Spotfire Desktop 7.7.0
Tibco Spotfire Analyst 7.7.0
Tibco Spotfire Connectors 7.6.0
Tibco Spotfire Deployment Kit 7.7.0
9.8
CVSSv3
CVE-2018-5435
The TIBCO Spotfire Client and TIBCO Spotfire Web Player Client components of TIBCO Software Inc.'s TIBCO Spotfire Analyst, TIBCO Spotfire Analytics Platform for AWS Marketplace, TIBCO Spotfire Deployment Kit, TIBCO Spotfire Desktop, and TIBCO Spotfire Desktop Language Packs ...
Tibco Spotfire Analyst 7.11.0
Tibco Spotfire Analyst
Tibco Spotfire Analyst 7.9.0
Tibco Spotfire Analyst 7.9.1
Tibco Spotfire Analyst 7.10.0
Tibco Spotfire Analyst 7.10.1
Tibco Spotfire Analyst 7.12.0
Tibco Spotfire Analytics Platform For Aws
Tibco Spotfire Deployment Kit 7.10.0
Tibco Spotfire Deployment Kit 7.11.0
Tibco Spotfire Deployment Kit
Tibco Spotfire Deployment Kit 7.9.0
Tibco Spotfire Deployment Kit 7.9.1
Tibco Spotfire Deployment Kit 7.10.1
Tibco Spotfire Deployment Kit 7.12.0
Tibco Spotfire Desktop 7.9.0
Tibco Spotfire Desktop 7.9.1
Tibco Spotfire Desktop 7.10.0
Tibco Spotfire Desktop 7.10.1
Tibco Spotfire Desktop 7.12.0
Tibco Spotfire Desktop 7.11.0
Tibco Spotfire Desktop
9.8
CVSSv3
CVE-2018-1151
The web server on Western Digital TV Media Player 1.03.07 and TV Live Hub 3.12.13 allow unauthenticated remote malicious users to execute arbitrary code or cause denial of service via crafted HTTP requests to toServerValue.cgi.
Westerndigital Tv Live Hub Firmware 3.12.13
Westerndigital Tv Media Player Firmware 1.03.07
2 Github repositories
9.8
CVSSv3
CVE-2018-6373
SQL Injection exists in the Fastball 2.5 component for Joomla! via the season parameter in a view=player action.
Fastballproductions Fastball 2.5.0
1 EDB exploit
9.8
CVSSv3
CVE-2015-7705
The rate limiting feature in NTP 4.x prior to 4.2.8p4 and 4.3.x prior to 4.3.77 allows remote malicious users to have unspecified impact via a large number of crafted requests.
Ntp Ntp
Ntp Ntp 4.2.8
Netapp Oncommand Performance Manager -
Netapp Oncommand Unified Manager -
Netapp Clustered Data Ontap -
Netapp Data Ontap -
Citrix Xenserver 6.0.2
Citrix Xenserver 6.2.0
Citrix Xenserver 6.5
Citrix Xenserver 7.0
Siemens Tim 4r-ie Firmware
Siemens Tim 4r-ie Dnp3 Firmware
9.8
CVSSv3
CVE-2015-7871
Crypto-NAK packets in ntpd in NTP 4.2.x prior to 4.2.8p4, and 4.3.x prior to 4.3.77 allows remote malicious users to bypass authentication.
Ntp Ntp 4.2.5
Ntp Ntp
Ntp Ntp 4.2.8
Debian Debian Linux 7.0
Debian Debian Linux 8.0
Debian Debian Linux 9.0
Netapp Oncommand Balance -
Netapp Oncommand Performance Manager -
Netapp Oncommand Unified Manager -
Netapp Clustered Data Ontap -
Netapp Data Ontap -
9.8
CVSSv3
CVE-2015-7853
The datalen parameter in the refclock driver in NTP 4.2.x prior to 4.2.8p4, and 4.3.x prior to 4.3.77 allows remote malicious users to execute arbitrary code or cause a denial of service (crash) via a negative input value.
Ntp Ntp
Ntp Ntp 4.2.8
Netapp Oncommand Balance -
Netapp Oncommand Performance Manager -
Netapp Oncommand Unified Manager -
Netapp Clustered Data Ontap -
Netapp Data Ontap -
9.8
CVSSv3
CVE-2017-10699
avcodec 2.2.x, as used in VideoLAN VLC media player 2.2.7-x prior to 2017-06-29, allows out-of-bounds heap memory write due to calling memcpy() with a wrong size, leading to a denial of service (application crash) or possibly code execution.
Videolan Vlc Media Player 2.2.7
Videolan Vlc Media Player 2.2.4
Videolan Vlc Media Player 2.2.3
Videolan Vlc Media Player 2.2.5
Videolan Vlc Media Player 2.2.5.1
Videolan Vlc Media Player 2.2.6
Videolan Vlc Media Player 2.2.0
Videolan Vlc Media Player 2.2.2
Videolan Vlc Media Player 2.2.1
9.8
CVSSv3
CVE-2017-3086
Adobe Shockwave versions 12.2.8.198 and previous versions have an exploitable memory corruption vulnerability. Successful exploitation could lead to arbitrary code execution.
Adobe Shockwave Player
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-4463
CVE-2024-29895
inject
CVE-2023-52689
CVE-2024-5049
CVE-2024-5051
privilege escalation
physical
CVE-2023-52676
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »