Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
tiny vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2002-1925
Tiny Personal Firewall 3.0 up to and including 3.0.6 allows remote malicious users to cause a denial of service (crash) by via SYN, UDP, ICMP and TCP portscans when the administrator selects the Log tab of the Personal Firewall Agent module.
Tiny Software Tiny Personal Firewall 3.0
Tiny Software Tiny Personal Firewall 3.0.5
Tiny Software Tiny Personal Firewall 3.0.6
NA
CVE-2001-1549
Tiny Personal Firewall 1.0 and 2.0 allows local users to bypass filtering via non-standard TCP packets created with non-Windows protocol adapters.
Tiny Software Tiny Personal Firewall 1.0
Tiny Software Tiny Personal Firewall 2.0
1 EDB exploit
NA
CVE-2014-1875
The Capture::Tiny module prior to 0.24 for Perl allows local users to write to arbitrary files via a symlink attack on a temporary file.
Cspan Capture-tiny 0.22
Cspan Capture-tiny 0.21
Cspan Capture-tiny 0.20
Cspan Capture-tiny
NA
CVE-2006-7137
Cross-site scripting (XSS) vulnerability in TinyPortal prior to 0.8.6 allows remote malicious users to inject arbitrary web script or HTML via the shoutbox.
Tiny Portal Tiny Portal
6.1
CVSSv3
CVE-2017-1000035
Tiny Tiny RSS prior to 829d478f is vulnerable to XSS window.opener attack
Tt-rss Tiny Tiny Rss -
9.8
CVSSv3
CVE-2020-25787
An issue exists in Tiny Tiny RSS (aka tt-rss) prior to 2020-09-16. It does not validate all URLs before requesting them.
Tt-rss Tiny Tiny Rss
8.1
CVSSv3
CVE-2020-25788
An issue exists in Tiny Tiny RSS (aka tt-rss) prior to 2020-09-16. imgproxy in plugins/af_proxy_http/init.php mishandles $_REQUEST["url"] in an error message.
Tt-rss Tiny Tiny Rss
8.1
CVSSv3
CVE-2020-36438
An issue exists in the tiny_future crate prior to 0.4.0 for Rust. Future<T> does not have bounds on its Send and Sync traits.
Tiny Future Project Tiny Future
7.5
CVSSv3
CVE-2017-16097
tiny-http is a simple http server. tiny-http is vulnerable to a directory traversal issue, giving an attacker access to the filesystem by placing "../" in the url.
Tiny-http Project Tiny-http
6.5
CVSSv3
CVE-2022-39287
tiny-csrf is a Node.js cross site request forgery (CSRF) protection middleware. In versions before 1.1.0 cookies were not encrypted and thus CSRF tokens were transmitted in the clear. This issue has been addressed in commit `8eead6d` and the patch with be included in version 1.1....
Tiny-csrf Project Tiny-csrf
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27322
cross-site request forgery
unauthorized
CVE-2024-33925
reflected XSS
CVE-2023-51580
CVE-2023-51579
CVE-2015-2051
CVE-2023-51609
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »