Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
relative vulnerabilities and exploits
(subscribe to this query)
5
CVSSv2
CVE-2008-2881
Relative Real Estate Systems 3.0 and previous versions stores passwords in cleartext in a MySQL database, which allows context-dependent malicious users to obtain sensitive information.
Relative Real Estate Systems Relative Real Estate Systems
1 EDB exploit
7.5
CVSSv2
CVE-2021-23518
The package cached-path-relative prior to 1.1.0 are vulnerable to Prototype Pollution via the cache variable that is set as {} instead of Object.create(null) in the cachedPathRelative function, which allows access to the parent prototype properties when the object is used to crea...
Cached-path-relative Project Cached-path-relative
Debian Debian Linux 10.0
5
CVSSv2
CVE-2018-16472
A prototype pollution attack in cached-path-relative versions <=1.0.1 allows an malicious user to inject properties on Object.prototype which are then inherited by all the JS objects through the prototype chain causing a DoS attack.
Cached-path-relative Project Cached-path-relative
Debian Debian Linux 10.0
NA
CVE-2023-45811
Synchrony deobfuscator is a javascript cleaner & deobfuscator. A `__proto__` pollution vulnerability exists in versions before v2.4.4. Successful exploitation could lead to arbitrary code execution. A `__proto__` pollution vulnerability exists in the `LiteralMap` transformer ...
Relative Synchrony
7.5
CVSSv2
CVE-2008-7077
Multiple SQL injection vulnerabilities in SailPlanner 0.3a allow remote malicious users to execute arbitrary SQL commands via the (1) username and (2) password fields.
Relative Sailplanner 0.3a
1 EDB exploit
NA
CVE-2023-27433
Cross-Site Request Forgery (CSRF) vulnerability in YAS Global Team Make Paths Relative plugin <= 1.3.0 versions.
Yasglobal Make Paths Relative
6.8
CVSSv2
CVE-2008-3185
SQL injection vulnerability in index.php in Relative Real Estate Systems 3.0 and previous versions allows remote malicious users to execute arbitrary SQL commands via the listing_id parameter in a listings action.
Vclcomponents Relative Real Estate Systems
1 EDB exploit
7.5
CVSSv2
CVE-2005-4019
SQL injection vulnerability in index.php in Relative Real Estate Systems 1.02 and previous versions allows remote malicious users to execute arbitrary SQL commands via the mls parameter.
1 EDB exploit
4.6
CVSSv2
CVE-1999-0820
FreeBSD seyon allows users to gain privileges via a modified PATH variable for finding the xterm and seyon-emu commands.
Freebsd Freebsd 3.3
1 EDB exploit
9.3
CVSSv2
CVE-2014-1507
Directory traversal vulnerability in the DeviceStorage API in Mozilla FirefoxOS prior to 1.2.2 allows malicious users to bypass the media sandbox protection mechanism, and read or modify arbitrary files, via a crafted application that uses a relative pathname for a DeviceStorageF...
Oracle Solaris 11.3
Mozilla Firefoxos
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-33572
CVE-2024-24919
CVE-2024-0230
CVE-2024-32714
HTML injection
local file inclusion
CVE-2024-31098
CVE-2024-31244
privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »