Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
weather vulnerabilities and exploits
(subscribe to this query)
828
VMScore
CVE-2021-43844
MSEdgeRedirect is a tool to redirect news, search, widgets, weather, and more to a user's default browser. MSEdgeRedirect versions prior to 0.5.0.1 are vulnerable to Remote Code Execution via specifically crafted URLs. This vulnerability requires user interaction and the acc...
Msedgeredirect Project Msedgeredirect
755
VMScore
CVE-2008-5771
Directory traversal vulnerability in test.php in PHP Weather 2.2.2 allows remote malicious users to include and execute arbitrary local files via directory traversal sequences in the language parameter.
Phpweather Phpweather 2.2.2
1 EDB exploit
755
VMScore
CVE-2007-2044
PHP remote file inclusion vulnerability in mod_weather.php in the Antonis Ventouris Weather module for Mambo and Joomla! allows remote malicious users to execute arbitrary PHP code via a URL in the absolute_path parameter.
Antonis Ventouris Weather Module
1 EDB exploit
694
VMScore
CVE-2018-18878
In firmware version MS_2.6.9900 of Columbia Weather MicroServer, the BACnet daemon does not properly validate input, which could allow a remote malicious user to send specially crafted packets causing the device to become unavailable.
Columbiaweather Weather Microserver Firmware Ms 2.6.9900
694
VMScore
CVE-2013-5478
Cisco IOS 15.0 up to and including 15.3 and IOS XE 3.2 up to and including 3.8, when a VRF interface exists, allows remote malicious users to cause a denial of service (interface queue wedge) via crafted UDP RSVP packets, aka Bug ID CSCuf17023.
Cisco Ios 15.1
Cisco Ios 15.0
Cisco Ios 15.3
Cisco Ios 15.2
Cisco Ios Xe 3.2.1s
Cisco Ios Xe 3.2.1sg
Cisco Ios Xe 3.2.2s
Cisco Ios Xe 3.2.2sg
Cisco Ios Xe 3.4.4s
Cisco Ios Xe 3.4.5s
Cisco Ios Xe 3.4.xs
Cisco Ios Xe 3.5.0s
Cisco Ios Xe 3.8.0s
Cisco Ios Xe 3.3.1sg
Cisco Ios Xe 3.3.2s
Cisco Ios Xe 3.3.3s
Cisco Ios Xe 3.4.0as
Cisco Ios Xe 3.6.1s
Cisco Ios Xe 3.6.2s
Cisco Ios Xe 3.7.0s
Cisco Ios Xe 3.7.1s
Cisco Ios Xe 3.2.0s
685
VMScore
CVE-2007-5674
Directory traversal vulnerability in index.php in InstaGuide Weather (aka Weather for PHP) 1.0, when magic_quotes_gpc is disabled, allows remote malicious users to include and execute arbitrary local files via a .. (dot dot) in the PageName parameter.
Instaguide Weather 1.0
1 EDB exploit
668
VMScore
CVE-2020-9406
IBL Online Weather prior to 4.3.5a allows unauthenticated eval injection via the queryBCP method of the Auxiliary Service.
Iblsoft Online Weather
668
VMScore
CVE-2018-6012
The 'Weather Service' feature of the Green Electronics RainMachine Mini-8 (2nd generation) allows an malicious user to inject arbitrary Python code via the 'Add new weather data source' upload function.
Rainmachine Mini-8 Firmware
605
VMScore
CVE-2018-1000045
NASA Singledop version v1.0 contains a CWE-502 vulnerability in NASA Singledop library (Weather data) that can result in remote code execution. This attack appear to be exploitable via Victim opening a specially crafted radar data file. This vulnerability appears to have been fix...
Nasa Singledop 1.0
605
VMScore
CVE-2018-1000048
NASA RtRetrievalFramework version v1.0 contains a CWE-502 vulnerability in Data retrieval functionality of RtRetrieval framework that can result in remote code execution. This attack appear to be exploitable via Victim tries to retrieve and process a weather data file.
Nasa Rtretrievalframework 1.0
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
camera
bypass
CVE-2024-3592
CVE-2024-37383
CVE-2024-24919
CVE-2024-27822
CVE-2024-36788
CVE-2024-36789
man-in-the-middle
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »