Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
tiny vulnerabilities and exploits
(subscribe to this query)
5
CVSSv2
CVE-2002-1925
Tiny Personal Firewall 3.0 up to and including 3.0.6 allows remote malicious users to cause a denial of service (crash) by via SYN, UDP, ICMP and TCP portscans when the administrator selects the Log tab of the Personal Firewall Agent module.
Tiny Software Tiny Personal Firewall 3.0
Tiny Software Tiny Personal Firewall 3.0.5
Tiny Software Tiny Personal Firewall 3.0.6
2.1
CVSSv2
CVE-2001-1549
Tiny Personal Firewall 1.0 and 2.0 allows local users to bypass filtering via non-standard TCP packets created with non-Windows protocol adapters.
Tiny Software Tiny Personal Firewall 1.0
Tiny Software Tiny Personal Firewall 2.0
1 EDB exploit
3.6
CVSSv2
CVE-2014-1875
The Capture::Tiny module prior to 0.24 for Perl allows local users to write to arbitrary files via a symlink attack on a temporary file.
Cspan Capture-tiny 0.22
Cspan Capture-tiny 0.21
Cspan Capture-tiny 0.20
Cspan Capture-tiny
4.3
CVSSv2
CVE-2006-7137
Cross-site scripting (XSS) vulnerability in TinyPortal prior to 0.8.6 allows remote malicious users to inject arbitrary web script or HTML via the shoutbox.
Tiny Portal Tiny Portal
4.3
CVSSv2
CVE-2017-1000035
Tiny Tiny RSS prior to 829d478f is vulnerable to XSS window.opener attack
Tt-rss Tiny Tiny Rss -
5
CVSSv2
CVE-2021-28373
The auth_internal plugin in Tiny Tiny RSS (aka tt-rss) prior to 2021-03-12 allows an malicious user to log in via the OTP code without a valid password. NOTE: this issue only affected the git master branch for a short time. However, all end users are explicitly directed to use th...
Tt-rss Tiny Tiny Rss
6.8
CVSSv2
CVE-2020-36438
An issue exists in the tiny_future crate prior to 0.4.0 for Rust. Future<T> does not have bounds on its Send and Sync traits.
Tiny Future Project Tiny Future
NA
CVE-2022-39287
tiny-csrf is a Node.js cross site request forgery (CSRF) protection middleware. In versions before 1.1.0 cookies were not encrypted and thus CSRF tokens were transmitted in the clear. This issue has been addressed in commit `8eead6d` and the patch with be included in version 1.1....
Tiny-csrf Project Tiny-csrf
4.3
CVSSv2
CVE-2020-25789
An issue exists in Tiny Tiny RSS (aka tt-rss) prior to 2020-09-16. The cached_url feature mishandles JavaScript inside an SVG document.
Tt-rss Tiny Tiny Rss
5
CVSSv2
CVE-2017-16097
tiny-http is a simple http server. tiny-http is vulnerable to a directory traversal issue, giving an attacker access to the filesystem by placing "../" in the url.
Tiny-http Project Tiny-http
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2022-48693
CVE-2024-30851
CVE-2024-34460
CVE-2024-2887
local
CVE-2024-27956
remote code execution
CVE-2024-34475
privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
6
NEXT »