Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
toolbox vulnerabilities and exploits
(subscribe to this query)
8.8
CVSSv3
CVE-2021-29660
A Cross-Site Request Forgery (CSRF) vulnerability in en/cfg_setpwd.html in Softing AG OPC Toolbox up to and including 4.10.1.13035 allows malicious users to reset the administrative password by inducing the Administrator user to browse a URL controlled by an attacker.
Softing Opc Toolbox
5.4
CVSSv3
CVE-2021-29661
Softing AG OPC Toolbox up to and including 4.10.1.13035 allows /en/diag_values.html Stored XSS via the ITEMLISTVALUES##ITEMID parameter, resulting in JavaScript payload injection into the trace file. This payload will then be triggered every time an authenticated user browses the...
Softing Opc Toolbox
NA
CVE-2007-6139
PHP remote file inclusion vulnerability in index.php in Mp3 ToolBox 1.0 beta 5 allows remote malicious users to execute arbitrary PHP code via a URL in the skin_file parameter.
Mp3 Toolbox 1.0 Beta 5
1 EDB exploit
NA
CVE-2008-0548
Steamcast 0.9.75 and previous versions allows remote malicious users to cause a denial of service (daemon crash) via a large integer in the Content-Length HTTP header, which triggers a NULL dereference when malloc fails.
Radio Toolbox Steamcast
NA
CVE-2008-0550
Off-by-one error in Steamcast 0.9.75 and previous versions allows remote malicious users to cause a denial of service (daemon crash) or execute arbitrary code via a certain HTTP request that leads to a buffer overflow, as demonstrated by a long User-Agent header.
Radio Toolbox Steamcast
1 EDB exploit
9.1
CVSSv3
CVE-2018-16716
A path traversal vulnerability exists in viewcgi.c in the 2.0.7 up to and including 2.2.26 legacy versions of the NCBI ToolBox, which may result in reading of arbitrary files (i.e., significant information disclosure) or file deletion via the nph-viewgif.cgi query string.
Nih Ncbi Toolbox
9.8
CVSSv3
CVE-2018-16717
A heap-based buffer overflow exists in nph-viewgif.cgi in the 2.0.7 up to and including 2.2.26 legacy versions of the NCBI ToolBox.
Nih Ncbi Toolbox
6.1
CVSSv3
CVE-2018-16718
An XSS vulnerability exists in wwwblast.c in the 2.0.7 up to and including 2.2.26 legacy versions of the NCBI ToolBox via a crafted -z1 argument.
Nih Ncbi Toolbox
5.4
CVSSv3
CVE-2023-50823
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Wipeout Media CSS & JavaScript Toolbox allows Stored XSS.This issue affects CSS & JavaScript Toolbox: from n/a up to and including 11.7.
Wipeoutmedia Css \\& Javascript Toolbox
7.8
CVSSv3
CVE-2023-38641
A vulnerability has been identified in SICAM TOOLBOX II (All versions < V07.10). The affected application's database service is executed as `NT AUTHORITY\SYSTEM`. This could allow a local malicious user to execute operating system commands with elevated privileges.
Siemens Sicam Toolbox Ii
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
deserialization
CVE-2024-4040
cross-site scripting
CVE-2023-25790
CVE-2024-2961
XML external entity
CVE-2024-26926
CVE-2024-32806
CVE-2024-32711
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »