Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
tiny vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2002-1925
Tiny Personal Firewall 3.0 up to and including 3.0.6 allows remote malicious users to cause a denial of service (crash) by via SYN, UDP, ICMP and TCP portscans when the administrator selects the Log tab of the Personal Firewall Agent module.
Tiny Software Tiny Personal Firewall 3.0
Tiny Software Tiny Personal Firewall 3.0.5
Tiny Software Tiny Personal Firewall 3.0.6
NA
CVE-2001-1549
Tiny Personal Firewall 1.0 and 2.0 allows local users to bypass filtering via non-standard TCP packets created with non-Windows protocol adapters.
Tiny Software Tiny Personal Firewall 1.0
Tiny Software Tiny Personal Firewall 2.0
1 EDB exploit
NA
CVE-2014-1875
The Capture::Tiny module prior to 0.24 for Perl allows local users to write to arbitrary files via a symlink attack on a temporary file.
Cspan Capture-tiny 0.22
Cspan Capture-tiny 0.21
Cspan Capture-tiny 0.20
Cspan Capture-tiny
NA
CVE-2006-7137
Cross-site scripting (XSS) vulnerability in TinyPortal prior to 0.8.6 allows remote malicious users to inject arbitrary web script or HTML via the shoutbox.
Tiny Portal Tiny Portal
9.8
CVSSv3
CVE-2020-7724
All versions of package tiny-conf are vulnerable to Prototype Pollution via the set function.
Tiny-conf Project Tiny-conf
8.1
CVSSv3
CVE-2020-25788
An issue exists in Tiny Tiny RSS (aka tt-rss) prior to 2020-09-16. imgproxy in plugins/af_proxy_http/init.php mishandles $_REQUEST["url"] in an error message.
Tt-rss Tiny Tiny Rss
6.1
CVSSv3
CVE-2020-25789
An issue exists in Tiny Tiny RSS (aka tt-rss) prior to 2020-09-16. The cached_url feature mishandles JavaScript inside an SVG document.
Tt-rss Tiny Tiny Rss
6.5
CVSSv3
CVE-2022-39287
tiny-csrf is a Node.js cross site request forgery (CSRF) protection middleware. In versions before 1.1.0 cookies were not encrypted and thus CSRF tokens were transmitted in the clear. This issue has been addressed in commit `8eead6d` and the patch with be included in version 1.1....
Tiny-csrf Project Tiny-csrf
8.1
CVSSv3
CVE-2020-36438
An issue exists in the tiny_future crate prior to 0.4.0 for Rust. Future<T> does not have bounds on its Send and Sync traits.
Tiny Future Project Tiny Future
7.5
CVSSv3
CVE-2021-28373
The auth_internal plugin in Tiny Tiny RSS (aka tt-rss) prior to 2021-03-12 allows an malicious user to log in via the OTP code without a valid password. NOTE: this issue only affected the git master branch for a short time. However, all end users are explicitly directed to use th...
Tt-rss Tiny Tiny Rss
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2022-38028
CVE-2024-32406
CVE-2024-25624
IMAP
CVE-2024-2310
CVE-2024-0874
CVE-2024-20359
XXE
remote code execution
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »