Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
w3c vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2009-1209
Stack-based buffer overflow in W3C Amaya Web Browser 11.1 allows remote malicious users to execute arbitrary code via a script tag with a long defer attribute.
W3 Amaya 11.1
3 EDB exploits
NA
CVE-2005-3155
Buffer overflow in the W3C logging for MailEnable Enterprise 1.1 and Professional 1.6 allows remote malicious users to execute arbitrary code.
Mailenable Mailenable Enterprise 1.1
Mailenable Mailenable Professional 1.6
2 EDB exploits
6.1
CVSSv3
CVE-2021-4296
A vulnerability, which was classified as problematic, has been found in w3c Unicorn. This issue affects the function ValidatorNuMessage of the file src/org/w3c/unicorn/response/impl/ValidatorNuMessage.java. The manipulation of the argument message leads to cross site scripting. T...
W3 Unicorn
8.8
CVSSv3
CVE-2024-21669
Hyperledger Aries Cloud Agent Python (ACA-Py) is a foundation for building decentralized identity applications and services running in non-mobile environments. When verifying W3C Format Verifiable Credentials using JSON-LD with Linked Data Proofs (LDP-VCs), the result of verifyin...
Hyperledger Aries Cloud Agent
Hyperledger Aries Cloud Agent 0.11.0
5.3
CVSSv3
CVE-2013-7324
Webkit-GTK 2.x (any version with HTML5 audio/video support based on GStreamer) allows remote malicious users to trigger unexpectedly high sound volume via malicious javascript. NOTE: this WebKit-GTK behavior complies with existing W3C standards and existing practices for GNOME de...
Webkitgtk Webkitgtk
NA
CVE-2011-1096
The W3C XML Encryption Standard, as used in the JBoss Web Services (JBossWS) component in JBoss Enterprise Portal Platform prior to 5.2.2 and other products, when using block ciphers in cipher-block chaining (CBC) mode, allows remote malicious users to obtain plaintext data via a...
Redhat Jboss Enterprise Portal Platform 5.0.0
Redhat Jboss Enterprise Portal Platform 5.1.1
Redhat Jboss Enterprise Portal Platform 5.1.0
Redhat Jboss Enterprise Portal Platform
Redhat Jboss Enterprise Portal Platform 5.2.0
Redhat Jboss Enterprise Portal Platform 5.0.1
NA
CVE-2014-2242
includes/upload/UploadBase.php in MediaWiki prior to 1.19.12, 1.20.x and 1.21.x prior to 1.21.6, and 1.22.x prior to 1.22.3 does not prevent use of invalid namespaces in SVG files, which allows remote malicious users to conduct cross-site scripting (XSS) attacks via an SVG upload...
Mediawiki Mediawiki 1.16.0
Mediawiki Mediawiki 1.19
Mediawiki Mediawiki 1.19.8
Mediawiki Mediawiki 1.12.1
Mediawiki Mediawiki 1.17.1
Mediawiki Mediawiki 1.13.0
Mediawiki Mediawiki 1.20.5
Mediawiki Mediawiki 1.14.0
Mediawiki Mediawiki 1.20.1
Mediawiki Mediawiki 1.11.0
Mediawiki Mediawiki 1.17
Mediawiki Mediawiki
Mediawiki Mediawiki 1.15.1
Mediawiki Mediawiki 1.22.0
Mediawiki Mediawiki 1.19.3
Mediawiki Mediawiki 1.15.0
Mediawiki Mediawiki 1.18
Mediawiki Mediawiki 1.19.1
Mediawiki Mediawiki 1.12.3
Mediawiki Mediawiki 1.15.3
Mediawiki Mediawiki 1.12.0
Mediawiki Mediawiki 1.21.5
3.7
CVSSv3
CVE-2017-5928
The W3C High Resolution Time API, as implemented in various web browsers, does not consider that memory-reference times can be measured by a performance.now "Time to Tick" approach even with the https://bugzilla.mozilla.org/show_bug.cgi?id=1167489#c9 protection mechanis...
W3 High Resolution Time Api -
4.3
CVSSv3
CVE-2021-21366
xmldom is a pure JavaScript W3C standard-based (XML DOM Level 2 Core) DOMParser and XMLSerializer module. xmldom versions 0.4.0 and older do not correctly preserve system identifiers, FPIs or namespaces when repeatedly parsing and serializing maliciously crafted documents. This m...
Xmldom Project Xmldom
Debian Debian Linux 10.0
3 Github repositories
5.3
CVSSv3
CVE-2021-32796
xmldom is an open source pure JavaScript W3C standard-based (XML DOM Level 2 Core) DOMParser and XMLSerializer module. xmldom versions 0.6.0 and older do not correctly escape special characters when serializing elements removed from their ancestor. This may lead to unexpected syn...
Xmldom Project Xmldom
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4367
CVE-2024-35977
CVE-2023-49335
man-in-the-middle
CVE-2024-4947
CVE-2024-31714
memory leak
SQL
CVE-2024-35994
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
NEXT »