Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
roberto suggi liverani vulnerabilities and exploits
(subscribe to this query)
10
CVSSv2
CVE-2016-7552
On the Trend Micro Threat Discovery Appliance 2.6.1062r1, directory traversal when processing a session_id cookie allows a remote, unauthenticated malicious user to delete arbitrary files as root. This can be used to bypass authentication or cause a DoS.
Trendmicro Threat Discovery Appliance 2.6.1062
2 Metasploit modules
10
CVSSv2
CVE-2011-0054
Buffer overflow in the JavaScript engine in Mozilla Firefox prior to 3.5.17 and 3.6.x prior to 3.6.14, and SeaMonkey prior to 2.0.12, might allow remote malicious users to execute arbitrary code via vectors involving non-local JavaScript variables, aka an "upvarMap" iss...
Mozilla Firefox 3.6.3
Mozilla Firefox 3.6.4
Mozilla Firefox 3.6.6
Mozilla Firefox 3.6.12
Mozilla Firefox 3.6.13
Mozilla Firefox 3.6.2
Mozilla Firefox 3.6.9
Mozilla Firefox 3.6.11
Mozilla Firefox 3.6.8
Mozilla Firefox 3.6.10
Mozilla Firefox 3.6.7
Mozilla Firefox 3.6
Mozilla Seamonkey 1.0.3
Mozilla Seamonkey 1.0.4
Mozilla Seamonkey 1.1.1
Mozilla Seamonkey 1.1.10
Mozilla Seamonkey 1.0
Mozilla Seamonkey 1.1.16
Mozilla Seamonkey 1.1.17
Mozilla Seamonkey 1.1.6
Mozilla Seamonkey 1.1.7
Mozilla Seamonkey 2.0
10
CVSSv2
CVE-2011-0055
Use-after-free vulnerability in the JSON.stringify method in js3250.dll in Mozilla Firefox prior to 3.5.17 and 3.6.x prior to 3.6.14, and SeaMonkey prior to 2.0.12, might allow remote malicious users to execute arbitrary code via unspecified vectors related to the js_HasOwnProper...
Mozilla Firefox 3.6.8
Mozilla Firefox 3.6.10
Mozilla Firefox 3.6.7
Mozilla Firefox 3.6
Mozilla Firefox 3.6.4
Mozilla Firefox 3.6.6
Mozilla Firefox 3.6.12
Mozilla Firefox 3.6.13
Mozilla Firefox 3.6.2
Mozilla Firefox 3.6.3
Mozilla Firefox 3.6.9
Mozilla Firefox 3.6.11
Mozilla Seamonkey 1.0.1
Mozilla Seamonkey 1.0.2
Mozilla Seamonkey 1.0.9
Mozilla Seamonkey 1.1
Mozilla Seamonkey 1.1.14
Mozilla Seamonkey 1.1.15
Mozilla Seamonkey 1.1.4
Mozilla Seamonkey 1.1.5
Mozilla Seamonkey 1.5.0.10
Mozilla Seamonkey 1.5.0.8
10
CVSSv2
CVE-2011-0056
Buffer overflow in the JavaScript engine in Mozilla Firefox prior to 3.5.17 and 3.6.x prior to 3.6.14, and SeaMonkey prior to 2.0.12, might allow remote malicious users to execute arbitrary code via vectors involving exception timing and a large number of string values, aka an &q...
Mozilla Firefox 3.6.6
Mozilla Firefox 3.6.7
Mozilla Firefox 3.6.13
Mozilla Firefox 3.6.10
Mozilla Firefox 3.6.9
Mozilla Firefox 3.6
Mozilla Firefox 3.6.8
Mozilla Firefox 3.6.2
Mozilla Firefox 3.6.3
Mozilla Firefox 3.6.4
Mozilla Firefox 3.6.11
Mozilla Firefox 3.6.12
Mozilla Seamonkey 1.0.6
Mozilla Seamonkey 1.0.7
Mozilla Seamonkey 1.1.11
Mozilla Seamonkey 1.1.12
Mozilla Seamonkey 1.1.19
Mozilla Seamonkey 1.1.2
Mozilla Seamonkey 1.1.9
Mozilla Seamonkey 1.1
Mozilla Seamonkey 2.0.3
Mozilla Seamonkey 2.0.4
10
CVSSv2
CVE-2011-0057
Use-after-free vulnerability in the Web Workers implementation in Mozilla Firefox prior to 3.5.17 and 3.6.x prior to 3.6.14, and SeaMonkey prior to 2.0.12, allows remote malicious users to execute arbitrary code via vectors related to a JavaScript Worker and garbage collection.
Mozilla Firefox 3.6.3
Mozilla Firefox 3.6.4
Mozilla Firefox 3.6.6
Mozilla Firefox 3.6.12
Mozilla Firefox 3.6.13
Mozilla Firefox 3.6.7
Mozilla Firefox 3.6
Mozilla Firefox 3.6.2
Mozilla Firefox 3.6.9
Mozilla Firefox 3.6.11
Mozilla Firefox 3.6.8
Mozilla Firefox 3.6.10
Mozilla Seamonkey 1.0.5
Mozilla Seamonkey 1.0.6
Mozilla Seamonkey 1.0
Mozilla Seamonkey 1.1.11
Mozilla Seamonkey 1.1.18
Mozilla Seamonkey 1.1.19
Mozilla Seamonkey 1.1.8
Mozilla Seamonkey 1.1.9
Mozilla Seamonkey 2.0.2
Mozilla Seamonkey 2.0.3
10
CVSSv2
CVE-2011-0053
Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox prior to 3.5.17 and 3.6.x prior to 3.6.14, Thunderbird prior to 3.1.8, and SeaMonkey prior to 2.0.12 allow remote malicious users to cause a denial of service (memory corruption and application crash) o...
Mozilla Firefox 3.6.2
Mozilla Firefox 3.6.3
Mozilla Firefox 3.6.11
Mozilla Firefox 3.6.12
Mozilla Firefox 3.6.10
Mozilla Firefox 3.6.9
Mozilla Firefox 3.6.7
Mozilla Firefox 3.6
Mozilla Firefox 3.6.8
Mozilla Firefox 3.6.4
Mozilla Firefox 3.6.6
Mozilla Firefox 3.6.13
Mozilla Seamonkey 1.0.4
Mozilla Seamonkey 1.0.5
Mozilla Seamonkey 1.1.10
Mozilla Seamonkey 1.0
Mozilla Seamonkey 1.1.17
Mozilla Seamonkey 1.1.18
Mozilla Seamonkey 1.1.7
Mozilla Seamonkey 1.1.8
Mozilla Seamonkey 2.0
Mozilla Seamonkey 2.0.1
9.3
CVSSv2
CVE-2010-1585
The nsIScriptableUnescapeHTML.parseFragment method in the ParanoidFragmentSink protection mechanism in Mozilla Firefox prior to 3.5.17 and 3.6.x prior to 3.6.14, Thunderbird prior to 3.1.8, and SeaMonkey prior to 2.0.12 does not properly sanitize HTML in a chrome document, which ...
Mozilla Firefox 3.6.4
Mozilla Firefox 3.6.6
Mozilla Firefox 3.6.13
Mozilla Firefox 3.6.2
Mozilla Firefox 3.6.3
Mozilla Firefox 3.6.11
Mozilla Firefox 3.6.12
Mozilla Firefox 3.6.8
Mozilla Firefox 3.6.10
Mozilla Firefox 3.6.9
Mozilla Firefox 3.6.7
Mozilla Firefox 3.6
Mozilla Seamonkey 1.0.6
Mozilla Seamonkey 1.0.7
Mozilla Seamonkey 1.0
Mozilla Seamonkey 1.1.11
Mozilla Seamonkey 1.1.19
Mozilla Seamonkey 1.1.2
Mozilla Seamonkey 1.1.9
Mozilla Seamonkey 1.1
Mozilla Seamonkey 2.0.2
Mozilla Seamonkey 2.0.3
7.5
CVSSv2
CVE-2016-7547
A command execution flaw on the Trend Micro Threat Discovery Appliance 2.6.1062r1 exists with the timezone parameter in the admin_sys_time.cgi interface.
Trendmicro Threat Discovery Appliance 2.6.1062
2 Metasploit modules
6.8
CVSSv2
CVE-2014-5288
A CSRF Vulnerability exists in Kemp Load Master prior to 7.0-18a via unspecified vectors in administrative pages.
Kemptechnologies Load Master
1 EDB exploit
6.8
CVSSv2
CVE-2014-5287
A Bash script injection vulnerability exists in Kemp Load Master 7.1-16 and previous versions due to a failure to sanitize input in the Web User Interface (WUI).
Kemptechnologies Loadmaster
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-49223
CVE-2024-0044
information disclosure
CVE-2024-35753
HTML injection
CVE-2024-21306
CVE-2024-35733
SQL injection
CVE-2024-35732
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
NEXT »