Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
rooms vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2014-5958
The ChatBox - Chat Rooms (aka com.droidchatroom.messengerapp) application 2.5 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle malicious users to spoof servers and obtain sensitive information via a crafted certificate.
Chatbox Chatbox - Chat Rooms 2.5
NA
CVE-2008-6501
Cross-site scripting (XSS) vulnerability in profiles/index.php in Pro Chat Rooms 3.0.2 allows remote malicious users to inject arbitrary web script or HTML via the gud parameter.
Prochatrooms Pro Chat Rooms 3.0.2
1 EDB exploit
NA
CVE-2008-6502
Directory traversal vulnerability in Pro Chat Rooms 3.0.2 allows remote authenticated users to select an arbitrary local PHP script as an avatar via a .. (dot dot) in the avatar parameter, and cause other users to execute this script by using sendData.php to send a message to (1)...
Prochatrooms Pro Chat Rooms 3.0.2
1 EDB exploit
7.5
CVSSv3
CVE-2023-28597
Zoom clients before 5.13.5 contain an improper trust boundary implementation vulnerability. If a victim saves a local recording to an SMB location and later opens it using a link from Zoom’s web portal, an attacker positioned on an adjacent network to the victim client coul...
Zoom Rooms
Zoom Zoom
Zoom Virtual Desktop Infrastructure
NA
CVE-2008-0437
Multiple buffer overflows in the WebHPVCInstall.HPVirtualRooms14 ActiveX control in HPVirtualRooms14.dll 1.0.0.100, as used in the installation process for HP Virtual Rooms, allow remote malicious users to execute arbitrary code via a long (1) AuthenticationURL, (2) PortalAPIURL,...
Hp Virtual Rooms 1.0.0.100
Microsoft Activex
1 EDB exploit
5.5
CVSSv3
CVE-2023-39202
Untrusted search path in Zoom Rooms Client for Windows and Zoom VDI Client may allow a privileged user to conduct a denial of service via local access.
Zoom Virtual Desktop Infrastructure
Zoom Rooms
8.8
CVSSv3
CVE-2023-34121
Improper input validation in the Zoom for Windows, Zoom Rooms, Zoom VDI Windows Meeting clients prior to 5.14.0 may allow an authenticated user to potentially enable an escalation of privilege via network access.
Zoom Zoom
Zoom Rooms
Zoom Virtual Desktop Infrastructure
7.8
CVSSv3
CVE-2021-34409
It exists that the installation packages of the Zoom Client for Meetings for MacOS (Standard and for IT Admin) installation before version 5.2.0, Zoom Client Plugin for Sharing iPhone/iPad before version 5.2.0, and Zoom Rooms for Conference before version 5.1.0, copy pre- and pos...
Zoom Meetings
Zoom Rooms
Zoom Screen Sharing
4.9
CVSSv3
CVE-2023-39218
Client-side enforcement of server-side security in Zoom clients prior to 5.14.10 may allow a privileged user to enable information disclosure via network access.
Zoom Zoom
Zoom Virtual Desktop Infrastructure
Zoom Rooms
7.5
CVSSv3
CVE-2023-36532
Buffer overflow in Zoom Clients prior to 5.14.5 may allow an unauthenticated user to enable a denial of service via network access.
Zoom Rooms
Zoom Zoom
Zoom Virtual Desktop Infrastructure
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
brute force
CVE-2024-24908
open redirect
CVE-2024-31497
CVE-2023-45866
CVE-2024-4135
CVE-2024-25523
cache poisoning
CVE-2024-4649
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »