Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
shift vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2006-4092
Simpliciti Locked Browser does not properly limit a user's actions to ones within the intended Internet Explorer environment, which allows local users to perform unauthorized actions by visiting a web site that executes a JavaScript window.blur loop to remove focus from the ...
Simpliciti Locked Browser
NA
CVE-2023-52816
In the Linux kernel, the following vulnerability has been resolved: drm/amdkfd: Fix shift out-of-bounds issue [ 567.613292] shift exponent 255 is too large for 64-bit type 'long unsigned int' [ 567.614498] CPU: 5 PID: 238 Comm: kworker/5:1 Tainted: G OE ...
NA
CVE-2023-52507
In the Linux kernel, the following vulnerability has been resolved: nfc: nci: assert requested protocol is valid The protocol is used in a bit mask to determine if the protocol is supported. Assert the provided protocol is less than the maximum defined so it doesn't potentia...
9.8
CVSSv3
CVE-2017-11402
An issue has been discovered on the Belden Hirschmann Tofino Xenon Security Appliance prior to 03.2.00. Design flaws in OPC classic and in custom netfilter modules allow an malicious user to remotely activate rules on the firewall and to connect to any TCP port of a protected ass...
Belden Tofino Xenon Security Appliance Firmware
9.8
CVSSv3
CVE-2022-2643
A vulnerability has been found in SourceCodester Online Admission System and classified as critical. This vulnerability affects unknown code of the component POST Parameter Handler. The manipulation of the argument shift leads to sql injection. The attack can be initiated remotel...
Online Admission System Project Online Admission System -
1 Github repository
NA
CVE-2010-1224
main/acl.c in Asterisk Open Source 1.6.0.x prior to 1.6.0.25, 1.6.1.x prior to 1.6.1.17, and 1.6.2.x prior to 1.6.2.5 does not properly enforce remote host access controls when CIDR notation "/0" is used in permit= and deny= configuration rules, which causes an improper...
Digium Asterisk 1.6.0.23
Digium Asterisk 1.6.0.22
Digium Asterisk 1.6.0.18
Digium Asterisk 1.6.0.12
Digium Asterisk 1.6.0.10
Digium Asterisk 1.6.0.9
Digium Asterisk 1.6.0.1
Digium Asterisk 1.6.0
Digium Asterisk 1.6.1.7
Digium Asterisk 1.6.1.11
Digium Asterisk 1.6.1.12
Digium Asterisk 1.6.2.0
Digium Asterisk 1.6.2.1
Digium Asterisk 1.6.2.2
Digium Asterisk 1.6.0.24
Digium Asterisk 1.6.0.14
Digium Asterisk 1.6.0.13
Digium Asterisk 1.6.0.3
Digium Asterisk 1.6.0.2
Digium Asterisk 1.6.1.5
Digium Asterisk 1.6.1.6
Digium Asterisk 1.6.1.10
8.8
CVSSv3
CVE-2021-45960
In Expat (aka libexpat) prior to 2.4.3, a left shift by 29 (or more) places in the storeAtts function in xmlparse.c can lead to realloc misbehavior (e.g., allocating too few bytes, or only freeing memory).
Libexpat Project Libexpat
Tenable Nessus
Debian Debian Linux 10.0
Debian Debian Linux 11.0
Siemens Sinema Remote Connect Server
Netapp Oncommand Workflow Automation -
Netapp Solidfire \\& Hci Management Node -
Netapp Active Iq Unified Manager -
Netapp Hci Baseboard Management Controller H610c
Netapp Hci Baseboard Management Controller H610s
Netapp Hci Baseboard Management Controller H615c
6.1
CVSSv3
CVE-2023-1978
The ShiftController Employee Shift Scheduling plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the query string in versions up to, and including, 4.9.25 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated ...
Plainware Shiftcontroller
NA
CVE-2011-3651
Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox 7.0 and Thunderbird 7.0 allow remote malicious users to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via unknown vectors.
Mozilla Firefox 7.0
Mozilla Thunderbird 7.0
NA
CVE-2011-3652
The browser engine in Mozilla Firefox prior to 8.0 and Thunderbird prior to 8.0 does not properly allocate memory, which allows remote malicious users to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via unspecified vectors...
Mozilla Firefox 3.6.2
Mozilla Firefox 3.6.3
Mozilla Firefox 3.6.11
Mozilla Firefox 3.6.12
Mozilla Firefox 3.6.19
Mozilla Firefox 3.6.20
Mozilla Firefox 3.6.21
Mozilla Firefox 3.5.9
Mozilla Firefox 3.5.3
Mozilla Firefox 3.5.6
Mozilla Firefox 3.5.7
Mozilla Firefox 3.0
Mozilla Firefox 3.0.11
Mozilla Firefox 3.0.7
Mozilla Firefox 3.0.15
Mozilla Firefox 2.0.0.13
Mozilla Firefox 2.0.0.20
Mozilla Firefox 2.0.0.10
Mozilla Firefox 2.0.0.5
Mozilla Firefox 1.4.1
Mozilla Firefox 1.0.1
Mozilla Firefox 1.0.7
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
firmware
CVE-2023-52866
CVE-2024-4367
CVE-2024-1721
CVE-2023-34992
XML injection
CVE-2023-52817
SQL
CVE-2023-52855
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
3
4
5
6
7
8
9
10
NEXT »