Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
w3c vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2009-0323
Multiple stack-based buffer overflows in W3C Amaya Web Browser 10.0 and 11.0 allow remote malicious users to execute arbitrary code via (1) a long type parameter in an input tag, which is not properly handled by the EndOfXmlAttributeValue function; (2) an "HTML GI" in a...
W3 Amaya
W3 Amaya 9.55
W3 Amaya 9.4
W3 Amaya 8.8.4
W3 Amaya 9.0
W3 Amaya 8.7
W3 Amaya 8.1a
W3 Amaya 8.1
W3 Amaya 6.2
W3 Amaya 9.52
W3 Amaya 8.52
W3 Amaya 9.2.1
W3 Amaya 9.1
W3 Amaya 8.4
W3 Amaya 8.3
W3 Amaya 7.1
W3 Amaya 7.0
W3 Amaya 5.1
W3 Amaya 5.0
W3 Amaya 4.0
W3 Amaya 3.2.1
W3 Amaya 2.1
2 EDB exploits
6.1
CVSSv3
CVE-2014-125108
A vulnerability was found in w3c online-spellchecker-py up to 20140130. It has been rated as problematic. This issue affects some unknown processing of the file spellchecker. The manipulation leads to cross site scripting. The attack may be initiated remotely. The complexity of a...
W3 Spell Checker
9.8
CVSSv3
CVE-2022-39353
xmldom is a pure JavaScript W3C standard-based (XML DOM Level 2 Core) `DOMParser` and `XMLSerializer` module. xmldom parses XML that is not well-formed because it contains multiple top level elements, and adds all root nodes to the `childNodes` collection of the `Document`, witho...
Xmldom Project Xmldom 0.9.0
Xmldom Project Xmldom
Debian Debian Linux 10.0
2 Github repositories
6.5
CVSSv3
CVE-2020-12803
ODF documents can contain forms to be filled out by the user. Similar to HTML forms, the contained form data can be submitted to a URI, for example, to an external web server. To create submittable forms, ODF implements the XForms W3C standard, which allows data to be submitted w...
Libreoffice Libreoffice
Opensuse Leap 15.1
Fedoraproject Fedora 31
4.3
CVSSv3
CVE-2021-23969
As specified in the W3C Content Security Policy draft, when creating a violation report, "User agents need to ensure that the source file is the URL requested by the page, pre-redirects. If that’s not possible, user agents need to strip the URL down to an origin to avo...
Mozilla Firefox
Mozilla Firefox Esr
Mozilla Thunderbird
Debian Debian Linux 9.0
Debian Debian Linux 10.0
NA
CVE-2009-0217
The design of the W3C XML Signature Syntax and Processing (XMLDsig) recommendation, as implemented in products including (1) the Oracle Security Developer Tools component in Oracle Application Server 10.1.2.3, 10.1.3.4, and 10.1.4.3IM; (2) the WebLogic Server component in BEA Pro...
Oracle Application Server 10.1.3.4
Oracle Application Server 10.1.2.3
Oracle Bea Product Suite 10.0
Mono Project Mono 2.0
Oracle Weblogic Server Component 10.3
Oracle Weblogic Server Component 10.0
Ibm Websphere Application Server 6.0.2.10
Ibm Websphere Application Server 6.0.2.12
Ibm Websphere Application Server 6.0.1.1
Ibm Websphere Application Server 6.0.1.13
Ibm Websphere Application Server 6.0.2.2
Ibm Websphere Application Server 6.0.2.19
Ibm Websphere Application Server 6.0.2.21
Ibm Websphere Application Server 6.0.0.2
Ibm Websphere Application Server 6.0.2.29
Ibm Websphere Application Server 6.0.2.28
Ibm Websphere Application Server 6.0.2.25
Ibm Websphere Application Server 6.1.0.20
Ibm Websphere Application Server 6.1.0.22
Ibm Websphere Application Server 6.1.0.13
Ibm Websphere Application Server 6.1.0.14
Ibm Websphere Application Server 6.1.0.3
NA
CVE-2010-0136
OpenOffice.org (OOo) 2.0.4, 2.4.1, and 3.1.1 does not properly enforce Visual Basic for Applications (VBA) macro security settings, which allows remote malicious users to run arbitrary macros via a crafted document.
Apache Openoffice 2.0.4
Apache Openoffice 2.4.1
Apache Openoffice 3.1.1
Debian Debian Linux 5.0
Debian Debian Linux 4.0
Canonical Ubuntu Linux 9.04
Canonical Ubuntu Linux 8.10
Canonical Ubuntu Linux 9.10
Canonical Ubuntu Linux 8.04
NA
CVE-2009-2949
Integer overflow in the XPMReader::ReadXPM function in filter.vcl/ixpm/svt_xpmread.cxx in OpenOffice.org (OOo) prior to 3.2 allows remote malicious users to execute arbitrary code via a crafted XPM file that triggers a heap-based buffer overflow.
Apache Openoffice
Canonical Ubuntu Linux 8.04
Canonical Ubuntu Linux 8.10
Canonical Ubuntu Linux 9.04
Canonical Ubuntu Linux 9.10
Debian Debian Linux 4.0
Debian Debian Linux 5.0
NA
CVE-2009-2950
Heap-based buffer overflow in the GIFLZWDecompressor::GIFLZWDecompressor function in filter.vcl/lgif/decode.cxx in OpenOffice.org (OOo) prior to 3.2 allows remote malicious users to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted GIF...
Apache Openoffice
Canonical Ubuntu Linux 8.04
Canonical Ubuntu Linux 8.10
Canonical Ubuntu Linux 9.04
Canonical Ubuntu Linux 9.10
Debian Debian Linux 4.0
Debian Debian Linux 5.0
NA
CVE-2009-3302
filter/ww8/ww8par2.cxx in OpenOffice.org (OOo) prior to 3.2 allows remote malicious users to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted sprmTSetBrc table property modifier in a Word document, related to a "boundary error fl...
Apache Openoffice
Canonical Ubuntu Linux 8.04
Canonical Ubuntu Linux 8.10
Canonical Ubuntu Linux 9.04
Canonical Ubuntu Linux 9.10
Debian Debian Linux 4.0
Debian Debian Linux 5.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4367
CVE-2024-35977
CVE-2023-49335
man-in-the-middle
CVE-2024-4947
CVE-2024-31714
memory leak
SQL
CVE-2024-35994
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
NEXT »