Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
security vulnerabilities and exploits
(subscribe to this query)
668
VMScore
CVE-2003-1171
Heap-based buffer overflow in the sec_filter_out function in mod_security 1.7RC1 up to and including 1.7.1 in Apache 2 allows remote malicious users to execute arbitrary code via a server side script that sends a large amount of data.
Mod Security Mod Security 1.7
Mod Security Mod Security 1.7.1
383
VMScore
CVE-2011-5120
The Antivirus component in Comodo Internet Security prior to 5.4.189822.1355 allows remote malicious users to cause a denial of service (application crash) via a crafted .PST file.
Comodo Comodo Internet Security 3.0.20.320
Comodo Comodo Internet Security 3.0.17.304
Comodo Comodo Internet Security 3.0.18.309
Comodo Comodo Internet Security 3.0.15.277
Comodo Comodo Internet Security 3.5.53896.424
Comodo Comodo Internet Security 3.0.25.378
Comodo Comodo Internet Security 3.5.55810.432
Comodo Comodo Internet Security 3.5.54375.427
Comodo Comodo Internet Security 4.0.141842.828
Comodo Comodo Internet Security 3.0.19.318
Comodo Comodo Internet Security 3.0.16.295
Comodo Comodo Internet Security 3.8.64263.468
Comodo Comodo Internet Security 3.11.108364.552
Comodo Comodo Internet Security 3.0.24.368
Comodo Comodo Internet Security 3.13.125662.579
Comodo Comodo Internet Security 5.3.175888.1227
Comodo Comodo Internet Security 5.3.176757.1236
Comodo Comodo Internet Security 5.3.181415.1237
Comodo Comodo Internet Security 5.3.174622.1216
Comodo Comodo Internet Security 5.0.163652.1142
Comodo Comodo Internet Security 3.8.65951.477
Comodo Comodo Internet Security 3.8.64739.471
169
VMScore
CVE-2011-5118
Multiple race conditions in Comodo Internet Security prior to 5.8.213334.2131 allow local users to bypass the Defense+ feature via unspecified vectors.
Comodo Comodo Internet Security
Comodo Comodo Internet Security 5.5.195786.1383
Comodo Comodo Internet Security 3.0.18.309
Comodo Comodo Internet Security 3.0.15.277
Comodo Comodo Internet Security 3.0.16.295
Comodo Comodo Internet Security 3.0.14.276
Comodo Comodo Internet Security 3.5.55810.432
Comodo Comodo Internet Security 3.5.54375.427
Comodo Comodo Internet Security 3.13.121240.574
Comodo Comodo Internet Security 3.13.125662.579
Comodo Comodo Internet Security 5.3.175888.1227
Comodo Comodo Internet Security 5.3.181415.1237
Comodo Comodo Internet Security 4.1.150349.920
Comodo Comodo Internet Security 3.0.20.320
Comodo Comodo Internet Security 3.0.24.368
Comodo Comodo Internet Security 3.8.64263.468
Comodo Comodo Internet Security 3.11.108364.552
Comodo Comodo Internet Security 3.0.25.378
Comodo Comodo Internet Security 3.14.130099.587
Comodo Comodo Internet Security 5.3.174622.1216
Comodo Comodo Internet Security 5.0.163652.1142
Comodo Comodo Internet Security 4.0.138377.779
383
VMScore
CVE-2013-3487
Multiple cross-site scripting (XSS) vulnerabilities in the security log in the BulletProof Security plugin before .49 for WordPress allow remote malicious users to inject arbitrary web script or HTML via unspecified HTML header fields to (1) 400.php, (2) 403.php, or (3) 403.php.
Ait-pro Bulletproof-security .48.2
Ait-pro Bulletproof-security .48.1
Ait-pro Bulletproof-security .47.4
Ait-pro Bulletproof-security .47.3
Ait-pro Bulletproof-security .46.6
Ait-pro Bulletproof-security .46.5
Ait-pro Bulletproof-security .46.4
Ait-pro Bulletproof-security .45.7
Ait-pro Bulletproof-security .45.6
Ait-pro Bulletproof-security
Ait-pro Bulletproof-security .48.8
Ait-pro Bulletproof-security .48.7
Ait-pro Bulletproof-security .48
Ait-pro Bulletproof-security .47.9
Ait-pro Bulletproof-security .47.2
Ait-pro Bulletproof-security .47.1
Ait-pro Bulletproof-security .46.3
Ait-pro Bulletproof-security .46.2
Ait-pro Bulletproof-security .45.5
Ait-pro Bulletproof-security .45.4
Ait-pro Bulletproof-security .48.4
Ait-pro Bulletproof-security .48.3
605
VMScore
CVE-2016-9981
IBM AppScan Enterprise Edition 9.0 contains an unspecified vulnerability that could allow an malicious user to hijack a valid user's session. IBM X-Force ID: 120257
Ibm Security Appscan 9.0.0.0
Ibm Security Appscan 9.0.0.1
Ibm Security Appscan 9.0.1.0
Ibm Security Appscan 9.0.1.1
Ibm Security Appscan 9.0.2.0
Ibm Security Appscan 9.0.3.4
Ibm Security Appscan 9.0.2.1
Ibm Security Appscan 9.0.3.1
Ibm Security Appscan 9.0.3.5
Ibm Security Appscan 9.0.3.0
668
VMScore
CVE-2014-3527
When using the CAS Proxy ticket authentication from Spring Security 3.1 to 3.2.4 a malicious CAS Service could trick another CAS Service into authenticating a proxy ticket that was not associated. This is due to the fact that the proxy ticket authentication uses the information f...
Vmware Spring Security 3.1.0
Vmware Spring Security 3.1.1
Vmware Spring Security 3.1.2
Vmware Spring Security 3.1.4
Vmware Spring Security 3.2.1
Vmware Spring Security 3.2.2
Vmware Spring Security 3.2.3
Vmware Spring Security 3.2.4
Vmware Spring Security 3.1.3
Vmware Spring Security 3.2.0
515
VMScore
CVE-2011-1425
xslt.c in XML Security Library (aka xmlsec) prior to 1.2.17, as used in WebKit and other products, when XSLT is enabled, allows remote malicious users to create or overwrite arbitrary files via vectors involving the libxslt output extension and a ds:Transform element during signa...
Aleksey Xml Security Library
Aleksey Xml Security Library 1.2.7
Aleksey Xml Security Library 1.2.6
Aleksey Xml Security Library 1.1.2
Aleksey Xml Security Library 1.1.1
Aleksey Xml Security Library 1.0.0
Aleksey Xml Security Library 0.1.1
Aleksey Xml Security Library 0.0.9
Aleksey Xml Security Library 0.0.8
Aleksey Xml Security Library 0.0.2
Aleksey Xml Security Library 0.0.1
Aleksey Xml Security Library 1.2.13
Aleksey Xml Security Library 1.2.11
Aleksey Xml Security Library 1.2.10
Aleksey Xml Security Library 1.2.3
Aleksey Xml Security Library 1.2.2
Aleksey Xml Security Library 1.0.3
Aleksey Xml Security Library 1.0.2
Aleksey Xml Security Library 0.0.13
Aleksey Xml Security Library 0.0.12
Aleksey Xml Security Library 0.0.5
Aleksey Xml Security Library 0.0.4
1 EDB exploit
409
VMScore
CVE-2020-7263
Improper access control vulnerability in ESconfigTool.exe in McAfee Endpoint Security (ENS) for Windows all current versions allows local administrator to alter ENS configuration up to and including disabling all protection offered by ENS via insecurely implemented encryption of ...
Mcafee Endpoint Security 10.5.0
Mcafee Endpoint Security 10.5.1
Mcafee Endpoint Security 10.5.2
Mcafee Endpoint Security 10.5.3
Mcafee Endpoint Security 10.5.4
Mcafee Endpoint Security 10.5.5
Mcafee Endpoint Security 10.6.0
Mcafee Endpoint Security 10.6.1
Mcafee Endpoint Security 10.7.0
668
VMScore
CVE-2013-2198
The Login Security module 6.x-1.x prior to 6.x-1.3 and 7.x-1.x prior to 7.x-1.3 for Drupal allows malicious users to bypass intended restrictions via a crafted username.
Login Security Project Login Security
Login Security Project Login Security 6.x-1.0
Login Security Project Login Security 6.x-1.x
Login Security Project Login Security 7.x-1.x
356
VMScore
CVE-2007-0564
The license registering interface in Symantec Web Security (SWS) prior to 3.0.1.85 allows malicious users to cause a denial of service (CPU consumption) by submitting a large file.
Symantec Web Security 3.01.67
Symantec Web Security 3.01.68
Symantec Web Security 3.01.62
Symantec Web Security 3.01.63
Symantec Web Security 3.01.59
Symantec Web Security
Symantec Web Security 3.01.60
Symantec Web Security 3.01.61
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27322
CVE-2006-4304
wireless
CVE-2023-23022
local file inclusion
CVE-2024-27058
CVE-2024-33820
open redirect
CVE-2024-27079
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »