Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
simon . vulnerabilities and exploits
(subscribe to this query)
10
CVSSv2
CVE-2017-12928
A hard-coded password of tecn0visi0n for the dlxuser account in TecnoVISION DLX Spot Player4 (all known versions) allows remote malicious users to log in via SSH and escalate privileges to root access with the same credentials.
Tecnovision Dlx Spot Player4 -
1 Github repository
10
CVSSv2
CVE-2001-0534
Multiple buffer overflows in RADIUS daemon radiusd in (1) Merit 3.6b and (2) Lucent 2.1-2 RADIUS allow remote malicious users to cause a denial of service or execute arbitrary commands.
Lucent Radius 2.1.2
Merit Radius 3.6b
9.3
CVSSv2
CVE-2008-1235
Unspecified vulnerability in Mozilla Firefox prior to 2.0.0.13, Thunderbird prior to 2.0.0.13, and SeaMonkey prior to 1.1.9 allows remote malicious users to execute arbitrary code via unknown vectors that cause JavaScript to execute with the wrong principal, aka "Privilege e...
Mozilla Seamonkey
Mozilla Thunderbird
Mozilla Firefox 2.0.0.5
Mozilla Firefox 2.0.0.4
Mozilla Firefox 1.5.0.10
Mozilla Firefox 1.5.0.9
Mozilla Firefox 1.5.0.8
Mozilla Firefox 1.5.0.1
Mozilla Firefox 1.5
Mozilla Firefox 1.0.2
Mozilla Firefox 1.0.1
Mozilla Firefox 0.8
Mozilla Firefox 0.7.1
Mozilla Firefox 0.7
Mozilla Thunderbird 2.0.0.9
Mozilla Thunderbird 2.0.0.6
Mozilla Thunderbird 1.5.0.10
Mozilla Thunderbird 1.5.0.9
Mozilla Thunderbird 1.0.7
Mozilla Thunderbird 1.0.6
Mozilla Thunderbird 0.7
Mozilla Thunderbird 0.6
9.3
CVSSv2
CVE-2008-1195
Unspecified vulnerability in Sun JDK and Java Runtime Environment (JRE) 6 Update 4 and previous versions and 5.0 Update 14 and previous versions; and SDK and JRE 1.4.2_16 and previous versions; allows remote malicious users to access arbitrary network services on the local host v...
Sun Jdk 1.5.0
Sun Jdk 1.6.0
Sun Jre 1.4.2 5
Sun Jre 1.4.2 7
Sun Jre 1.4.2 14
Sun Jre 1.4.2 16
Sun Jre 1.5.0
Sun Jre 1.6.0
Sun Jre 1.4.2
Sun Jre 1.4.2 1
Sun Jre 1.4.2 2
Sun Jre 1.4.2 3
Sun Jre 1.4.2 9
Sun Jre 1.4.2 10
Sun Jre 1.4.2 11
Sun Jre 1.4.2 12
Sun Jre 1.4.2 4
Sun Jre 1.4.2 6
Sun Jre 1.4.2 8
Sun Jre 1.4.2 13
Sun Jre 1.4.2 15
Sun Sdk 1.4.2 10
7.8
CVSSv2
CVE-2009-3726
The nfs4_proc_lock function in fs/nfs/nfs4proc.c in the NFSv4 client in the Linux kernel prior to 2.6.31-rc4 allows remote NFS servers to cause a denial of service (NULL pointer dereference and panic) by sending a certain response containing incorrect file attributes, which trigg...
Linux Linux Kernel 2.6.27.12
Linux Linux Kernel 2.6.20.6
Linux Linux Kernel 2.6.28
Linux Linux Kernel 2.6.25.4
Linux Linux Kernel 2.6.25.11
Linux Linux Kernel 2.4.15
Linux Linux Kernel 2.6.20.9
Linux Linux Kernel 2.6.26
Linux Linux Kernel 2.4.30
Linux Linux Kernel 2.6.18
Linux Linux Kernel 2.6.29
Linux Linux Kernel 2.6.11
Linux Linux Kernel 2.6.25.9
Linux Linux Kernel 2.6.23.4
Linux Linux Kernel 2.6.22.15
Linux Linux Kernel 2.6.16.16
Linux Linux Kernel 2.6.18.7
Linux Linux Kernel 2.6.17.12
Linux Linux Kernel 2.6.16.39
Linux Linux Kernel 2.6.27.3
Linux Linux Kernel 2.6.29.3
Linux Linux Kernel 2.6.21
1 EDB exploit
7.6
CVSSv2
CVE-2019-0752
A remote code execution vulnerability exists in the way that the scripting engine handles objects in memory in Internet Explorer, aka 'Scripting Engine Memory Corruption Vulnerability'. This CVE ID is unique from CVE-2019-0739, CVE-2019-0753, CVE-2019-0862.
Microsoft Internet Explorer 11
Microsoft Internet Explorer 10
1 EDB exploit
1 Github repository
1 Article
7.5
CVSSv2
CVE-2021-1870
A logic issue was addressed with improved restrictions. This issue is fixed in macOS Big Sur 11.2, Security Update 2021-001 Catalina, Security Update 2021-001 Mojave, iOS 14.4 and iPadOS 14.4. A remote attacker may be able to cause arbitrary code execution. Apple is aware of a re...
Apple Mac Os X
Apple Mac Os X 10.15.7
Apple Iphone Os
Apple Ipad Os
Apple Macos
Webkitgtk Webkitgtk
Fedoraproject Fedora 32
Fedoraproject Fedora 33
1 Article
7.5
CVSSv2
CVE-2020-7471
Django 1.11 prior to 1.11.28, 2.2 prior to 2.2.10, and 3.0 prior to 3.0.3 allows SQL Injection if untrusted data is used as a StringAgg delimiter (e.g., in Django applications that offer downloads of data as a series of rows with a user-specified column delimiter). By passing a s...
Djangoproject Django
11 Github repositories
7.5
CVSSv2
CVE-2019-19781
An issue exists in Citrix Application Delivery Controller (ADC) and Gateway 10.5, 11.1, 12.0, 12.1, and 13.0. They allow Directory Traversal.
Citrix Application Delivery Controller Firmware 10.5
Citrix Application Delivery Controller Firmware 11.1
Citrix Application Delivery Controller Firmware 12.0
Citrix Application Delivery Controller Firmware 12.1
Citrix Application Delivery Controller Firmware 13.0
Citrix Netscaler Gateway Firmware 10.5
Citrix Netscaler Gateway Firmware 11.1
Citrix Netscaler Gateway Firmware 12.0
Citrix Netscaler Gateway Firmware 12.1
Citrix Gateway Firmware 13.0
2 Metasploit modules
64 Github repositories
21 Articles
7.5
CVSSv2
CVE-2018-15540
Agentejo Cockpit performs actions on files without appropriate validation and therefore allows an malicious user to traverse the file system to unintended locations and/or access arbitrary files, aka /media/api Directory Traversal.
Agentejo Cockpit -
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-33572
CVE-2024-24919
CVE-2024-0230
CVE-2024-32714
HTML injection
local file inclusion
CVE-2024-31098
CVE-2024-31244
privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »