Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
toolbar vulnerabilities and exploits
(subscribe to this query)
7.8
CVSSv3
CVE-2017-2253
Untrusted search path vulnerability in Installer of Yahoo! Toolbar (for Internet explorer) v8.0.0.6 and previous versions, with its timestamp prior to June 13, 2017, 18:18:55 allows an malicious user to gain privileges via a Trojan horse DLL in an unspecified directory.
Yahoo Toolbar
7.5
CVSSv3
CVE-2017-5594
An issue exists in Pagekit CMS prior to 1.0.11. In this vulnerability the remote attacker is able to reset the registered user's password, when the debug toolbar is enabled. The password is successfully recovered using this exploit. The SecureLayer7 ID is SL7_PGKT_01.
Pagekit Pagekit
1 EDB exploit
NA
CVE-2015-8006
Cross-site scripting (XSS) vulnerability in the PageTriage toolbar in the PageTriage extension for MediWiki allows remote malicious users to inject arbitrary web script or HTML via the page title.
Pagetriage Project Pagetriage
NA
CVE-2015-2515
Use-after-free vulnerability in Windows Shell in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT Gold and 8.1, and Windows 10 allows remote malicious users to execute arbitrary cod...
Microsoft Windows Server 2012 R2
Microsoft Windows Server 2008 R2
Microsoft Windows 7 -
Microsoft Windows Server 2008 -
Microsoft Windows 8 -
Microsoft Windows Vista -
Microsoft Windows 10 -
Microsoft Windows Rt -
Microsoft Windows Rt 8.1 -
Microsoft Windows Server 2012 -
Microsoft Windows 8.1 -
NA
CVE-2014-1561
Mozilla Firefox prior to 31.0 does not properly restrict use of drag-and-drop events to spoof customization events, which allows remote malicious users to alter the placement of UI icons via crafted JavaScript code that is encountered during (1) page, (2) panel, or (3) toolbar cu...
Mozilla Firefox
Oracle Solaris 11.3
NA
CVE-2014-2956
ScriptHelperApi in the AVG ScriptHelper ActiveX control in ScriptHelper.exe in AVG Secure Search toolbar prior to 18.1.7.598 and AVG Safeguard prior to 18.1.7.644 does not implement domain-based access control for method calls, which allows remote malicious users to trigger the d...
Avg Secure Search Toolbar
Avg Safeguard
NA
CVE-2013-6853
Cross-site scripting (XSS) vulnerability in clickstream.js in Y! Toolbar plugin for FireFox 3.1.0.20130813024103 for Mac, and 2.5.9.2013418100420 for Windows, allows remote malicious users to inject arbitrary web script or HTML via a crafted URL that is stored by the victim.
Yahoo Toolbar 3.1.0.20130813024103
Yahoo Toolbar 2.5.9.2013418100420
NA
CVE-2013-3859
Microsoft Pinyin IME 2010, when used in conjunction with Microsoft Office 2010 SP1, does not properly restrict configuration options, which allows local users to gain privileges by starting Internet Explorer from the IME toolbar, aka "Chinese IME Vulnerability."
Microsoft Office 2010
Microsoft Pinyin Ime 2010
NA
CVE-2012-5837
The Web Developer Toolbar in Mozilla Firefox prior to 17.0 executes script with chrome privileges, which allows user-assisted remote malicious users to conduct cross-site scripting (XSS) attacks via a crafted string.
Mozilla Firefox 14.0.1
Mozilla Firefox 14.0
Mozilla Firefox 10.0.1
Mozilla Firefox 9.0.1
Mozilla Firefox
Mozilla Firefox 13.0
Mozilla Firefox 13.0.1
Mozilla Firefox 12.0
Mozilla Firefox 9.0
Mozilla Firefox 8.0.1
Mozilla Firefox 5.0
Mozilla Firefox 5.0.1
Mozilla Firefox 4.0
Mozilla Firefox 3.6.4
Mozilla Firefox 3.5.10
Mozilla Firefox 3.6.25
Mozilla Firefox 3.6.24
Mozilla Firefox 3.6.23
Mozilla Firefox 3.5.1
Mozilla Firefox 3.5.7
Mozilla Firefox 3.6.19
Mozilla Firefox 3.6.7
NA
CVE-2012-2647
Yahoo! Toolbar 1.0.0.5 and previous versions for Chrome and Safari allows remote malicious users to modify the configured search URL, and intercept search terms, via a crafted web page.
Yahoo Toolbar
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
SSTI
CVE-2024-35863
CVE-2024-35910
man-in-the-middle
CVE-2024-35912
CVE-2024-25742
LFI
CVE-2024-32002
CVE-2024-22120
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
NEXT »