CVE-2008-3422
- EPSS 0.65%
- Published 31.07.2008 21:41:00
- Last modified 09.04.2025 00:30:58
Multiple cross-site scripting (XSS) vulnerabilities in the ASP.net class libraries in Mono 2.0 and earlier allow remote attackers to inject arbitrary web script or HTML via crafted attributes related to (1) HtmlControl.cs (PreProcessRelativeReference...
CVE-2007-5197
- EPSS 2.34%
- Published 02.11.2007 16:46:00
- Last modified 09.04.2025 00:30:58
Buffer overflow in the Mono.Math.BigInteger class in Mono 1.2.5.1 and earlier allows context-dependent attackers to execute arbitrary code via unspecified vectors related to Reduce in Montgomery-based Pow methods.
- EPSS 0.33%
- Published 18.10.2007 18:17:00
- Last modified 09.04.2025 00:30:58
StaticFileHandler.cs in System.Web in Mono before 1.2.5.2, when running on Windows, allows remote attackers to obtain source code of sensitive files via a request containing a trailing (1) space or (2) dot, which is not properly handled by XSP.
CVE-2006-5072
- EPSS 0.06%
- Published 10.10.2006 04:06:00
- Last modified 09.04.2025 00:30:58
The System.CodeDom.Compiler classes in Novell Mono create temporary files with insecure permissions, which allows local users to overwrite arbitrary files or execute arbitrary code via a symlink attack.
CVE-2005-0509
- EPSS 8.19%
- Published 14.03.2005 05:00:00
- Last modified 03.04.2025 01:03:51
Multiple cross-site scripting (XSS) vulnerabilities in the Mono 1.0.5 implementation of ASP.NET (.Net) allow remote attackers to inject arbitrary HTML or web script via Unicode representations for ASCII fullwidth characters that are converted to norm...