Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
tiny vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2020-12648
A cross-site scripting (XSS) vulnerability in TinyMCE 5.2.1 and previous versions allows remote malicious users to inject arbitrary web script when configured in classic editing mode.
Tiny Tinymce
10
CVSSv2
CVE-2011-4908
TinyBrowser plugin for Joomla! prior to 1.5.13 allows arbitrary file upload via upload.php.
Tiny Tinybrowser
2 EDB exploits
7.5
CVSSv2
CVE-2011-4672
Multiple SQL injection vulnerabilities in Valid tiny-erp 1.6 and previous versions allow remote malicious users to execute arbitrary SQL commands via the SearchField parameter in a search action to (1) _partner_list.php, (2) proioncategory_list.php, (3) _rantevou_list.php, (4) sy...
Valid Tiny-erp
1 EDB exploit
4.6
CVSSv2
CVE-2000-1136
elvis-tiny prior to 1.4-10 in Debian GNU/Linux, and possibly other Linux operating systems, allows local users to overwrite files of other users via a symlink attack.
Debian Elvis Tiny
7.5
CVSSv2
CVE-2007-1811
SQL injection vulnerability in index.php in the Tiny Event (tinyevent) 1.01 and previous versions module for Xoops allows remote malicious users to execute arbitrary SQL commands via the id parameter in a show action.
Chapi Tiny Event
1 EDB exploit
10
CVSSv2
CVE-2000-0133
Buffer overflows in Tiny FTPd 0.52 beta3 FTP server allows users to execute commands via the STOR, RNTO, MKD, XMKD, RMD, XRMD, APPE, SIZE, and RNFR commands.
H. Nomura Tiny Ftpdaemon
1 EDB exploit
7.5
CVSSv2
CVE-2021-27439
TencentOS-tiny version 3.1.0 is vulnerable to integer wrap-around in function 'tos_mmheap_alloc incorrect calculation of effective memory allocation size. This improper memory assignment can lead to arbitrary memory allocation, resulting in unexpected behavior such as a cras...
Tencent Tencentos-tiny 3.1.0
5.4
CVSSv2
CVE-2014-5818
The Tiny Tower (aka com.mobage.ww.a560.tinytower_android) application 1.7.0.8 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle malicious users to spoof servers and obtain sensitive information via a crafted certificate.
Mobage Tiny Tower 1.7.0.8
5.4
CVSSv2
CVE-2014-5599
The Tiny Farm (aka com.com2us.tinyfarm.normal.freefull.google.global.android.common) application 2.02.00 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle malicious users to spoof servers and obtain sensitive information via a crafted...
Withhive Tiny Farm 2.02.00
7.8
CVSSv2
CVE-2006-7007
Buffer overflow in Tiny FTPd 1.4 and previous versions allows remote malicious users to cause a denial of service (daemon crash) via a long USER command, a different vector than CVE-2000-0133.
H. Nomura Tiny Ftpd
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-4463
CVE-2024-29895
inject
CVE-2023-52689
CVE-2024-5049
CVE-2024-5051
privilege escalation
physical
CVE-2023-52676
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »