Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
tim brown vulnerabilities and exploits
(subscribe to this query)
320
VMScore
CVE-2019-5068
An exploitable shared memory permissions vulnerability exists in the functionality of X11 Mesa 3D Graphics Library 19.1.2. An attacker can access the shared memory without any specific permissions to trigger this vulnerability.
Mesa3d Mesa 19.1.2
Opensuse Leap 15.1
Debian Debian Linux 8.0
Canonical Ubuntu Linux 18.04
Canonical Ubuntu Linux 19.10
605
VMScore
CVE-2011-2725
Directory traversal vulnerability in Ark 4.7.x and previous versions allows remote malicious users to delete and force the display of arbitrary files via .. (dot dot) sequences in a zip file.
Kde Kde Sc 4.7.1
Kde Kde Sc 4.7.2
Kde Kde Sc 4.7.3
Kde Kde Sc
Kde Ark
Kde Kde Sc 4.7.0
Opensuse Opensuse 11.4
Canonical Ubuntu Linux 10.04
Canonical Ubuntu Linux 11.04
Canonical Ubuntu Linux 10.10
Canonical Ubuntu Linux 11.10
383
VMScore
CVE-2011-3365
The KDE SSL Wrapper (KSSL) API in KDE SC 4.6.0 up to and including 4.7.1, and possibly earlier versions, does not use a certain font when rendering certificate fields in a security dialog, which allows remote malicious users to spoof the common name (CN) of a certificate via rich...
Kde Kde Sc 4.6.4
Kde Kde Sc 4.7.0
Kde Kde Sc 4.6.1
Kde Kde Sc 4.7.1
Kde Kde Sc 4.6.2
Kde Kde Sc 4.6.3
Kde Kde Sc 4.6.0
Kde Kde Sc 4.6.5
605
VMScore
CVE-2007-3388
Multiple format string vulnerabilities in (1) qtextedit.cpp, (2) qdatatable.cpp, (3) qsqldatabase.cpp, (4) qsqlindex.cpp, (5) qsqlrecord.cpp, (6) qglobal.cpp, and (7) qsvgdevice.cpp in QTextEdit in Trolltech Qt 3 prior to 3.3.8 20070727 allow remote malicious users to execute arb...
Trolltech Qt
668
VMScore
CVE-2007-4137
Off-by-one error in the QUtf8Decoder::toUnicode function in Trolltech Qt 3 allows context-dependent malicious users to cause a denial of service (crash) via a crafted Unicode string that triggers a heap-based buffer overflow. NOTE: Qt 4 has the same error in the QUtf8Codec::conve...
Trolltech Qt 3.0
Trolltech Qt 3.0.3
Trolltech Qt 3.0.5
Trolltech Qt 3.1
Trolltech Qt 3.1.1
Trolltech Qt 3.1.2
Trolltech Qt 3.2.1
Trolltech Qt 3.2.3
Trolltech Qt 3.3.0
Trolltech Qt 3.3.1
Trolltech Qt 3.3.2
Trolltech Qt 3.3.3
Trolltech Qt 3.3.4
Trolltech Qt 3.3.5
Trolltech Qt 3.3.6
Trolltech Qt 3.3.7
Trolltech Qt 3.3.8
Trolltech Qt 4.1
Trolltech Qt 4.1.4
Trolltech Qt 4.1.5
Trolltech Qt 4.2
Trolltech Qt 4.2.1
383
VMScore
CVE-2014-8600
Multiple cross-site scripting (XSS) vulnerabilities in KDE-Runtime 4.14.3 and previous versions, kwebkitpart 1.3.4 and previous versions, and kio-extras 5.1.1 and previous versions allow remote malicious users to inject arbitrary web script or HTML via a crafted URI using the (1)...
Urs Wolfer Kwebkitpart
Kde Kde-runtime
Kde Kio-extras
Opensuse Opensuse 13.1
645
VMScore
CVE-2012-4513
khtml/imload/scaledimageplane.h in Konqueror in KDE 4.7.3 allows remote malicious users to cause a denial of service (crash) and possibly read memory via large canvas dimensions, which leads to an unexpected sign extension and a heap-based buffer over-read.
Kde Kde 4.7.3
1 EDB exploit
505
VMScore
CVE-2012-4514
rendering/render_replaced.cpp in Konqueror in KDE prior to 4.9.3 allows remote malicious users to cause a denial of service (NULL pointer dereference) via a crafted web page, related to "trying to reuse a frame with a null part."
Kde Kde 3.2.1
Kde Kde 3.2.3
Kde Kde 3.1.1
Kde Kde 3.1.2
Kde Kde 3.5
Kde Kde 3.3.x
Kde Kde 1.1
Kde Kde 4.7.3
Kde Kde 2.2
Kde Kde 1.x
Kde Kde 3.5.7
Kde Kde 2.0.1
Kde Kde 3.0.5
Kde Kde 3.1 Beta2
Kde Kde 3.0.1
Kde Kde 3.0
Kde Kde 3.0.2
Kde Kde
Kde Kde 3.1.5
Kde Kde 3.1.4
Kde Kde 3.2.0
Kde Kde 3.2
1 EDB exploit
645
VMScore
CVE-2002-2399
Directory traversal vulnerability in viewAttachment.cgi in W3Mail 1.0.6 allows remote malicious users to read arbitrary files via a .. (dot dot) in the file parameter.
Cascadesoft W3mail 1.0.6
1 EDB exploit
435
VMScore
CVE-2007-3189
Cross-site scripting (XSS) vulnerability in auth.php in Just For Fun Network Management System (JFFNMS) 0.8.3 allows remote malicious users to inject arbitrary web script or HTML via the user parameter.
Jffnms Just For Fun Network Management System 0.8.3
1 EDB exploit
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-36920
buffer overflow
CVE-2024-36913
CVE-2024-5497
CVE-2024-23917
CVE-2024-4956
server-side request forgery
CVE-2024-35468
SSTI
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
NEXT »