Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
tiny vulnerabilities and exploits
(subscribe to this query)
5
CVSSv2
CVE-2002-1925
Tiny Personal Firewall 3.0 up to and including 3.0.6 allows remote malicious users to cause a denial of service (crash) by via SYN, UDP, ICMP and TCP portscans when the administrator selects the Log tab of the Personal Firewall Agent module.
Tiny Software Tiny Personal Firewall 3.0
Tiny Software Tiny Personal Firewall 3.0.5
Tiny Software Tiny Personal Firewall 3.0.6
2.1
CVSSv2
CVE-2001-1549
Tiny Personal Firewall 1.0 and 2.0 allows local users to bypass filtering via non-standard TCP packets created with non-Windows protocol adapters.
Tiny Software Tiny Personal Firewall 1.0
Tiny Software Tiny Personal Firewall 2.0
1 EDB exploit
3.6
CVSSv2
CVE-2014-1875
The Capture::Tiny module prior to 0.24 for Perl allows local users to write to arbitrary files via a symlink attack on a temporary file.
Cspan Capture-tiny 0.22
Cspan Capture-tiny 0.21
Cspan Capture-tiny 0.20
Cspan Capture-tiny
4.3
CVSSv2
CVE-2006-7137
Cross-site scripting (XSS) vulnerability in TinyPortal prior to 0.8.6 allows remote malicious users to inject arbitrary web script or HTML via the shoutbox.
Tiny Portal Tiny Portal
4.3
CVSSv2
CVE-2017-1000035
Tiny Tiny RSS prior to 829d478f is vulnerable to XSS window.opener attack
Tt-rss Tiny Tiny Rss -
7.5
CVSSv2
CVE-2020-7724
All versions of package tiny-conf are vulnerable to Prototype Pollution via the set function.
Tiny-conf Project Tiny-conf
NA
CVE-2022-39287
tiny-csrf is a Node.js cross site request forgery (CSRF) protection middleware. In versions before 1.1.0 cookies were not encrypted and thus CSRF tokens were transmitted in the clear. This issue has been addressed in commit `8eead6d` and the patch with be included in version 1.1....
Tiny-csrf Project Tiny-csrf
6.8
CVSSv2
CVE-2020-36438
An issue exists in the tiny_future crate prior to 0.4.0 for Rust. Future<T> does not have bounds on its Send and Sync traits.
Tiny Future Project Tiny Future
10
CVSSv2
CVE-2020-25787
An issue exists in Tiny Tiny RSS (aka tt-rss) prior to 2020-09-16. It does not validate all URLs before requesting them.
Tt-rss Tiny Tiny Rss
6.8
CVSSv2
CVE-2020-25788
An issue exists in Tiny Tiny RSS (aka tt-rss) prior to 2020-09-16. imgproxy in plugins/af_proxy_http/init.php mishandles $_REQUEST["url"] in an error message.
Tt-rss Tiny Tiny Rss
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-2907
hardcoded
inject
CVE-2024-20359
CVE-2024-2467
CVE-2024-4077
CVE-2024-22391
camera
CVE-2024-20353
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »