Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ahmed elhady mohamed vulnerabilities and exploits
(subscribe to this query)
8.8
CVSSv3
CVE-2012-0699
Multiple cross-site request forgery (CSRF) vulnerabilities in Family Connections CMS (aka FCMS) 2.9 and previous versions allow remote malicious users to hijack the authentication of arbitrary users for requests that (1) add news via an add action to familynews.php or (2) add a p...
Haudenschilt Family Connections Cms
2 EDB exploits
NA
CVE-2012-5891
Multiple cross-site request forgery (CSRF) vulnerabilities in photo/pass.php in DAlbum 1.44 build 174 and previous versions allow remote malicious users to hijack the authentication of administrators for requests that (1) add a user via an add action, (2) change user passwords vi...
Dalbum Dalbum
Dalbum Dalbum 1.04
Dalbum Dalbum 1.05
Dalbum Dalbum 1.22
Dalbum Dalbum 1.21
Dalbum Dalbum 1.20
Dalbum Dalbum 1.10
Dalbum Dalbum 1.07
Dalbum Dalbum 1.31
Dalbum Dalbum 1.3
Dalbum Dalbum 1.08
Dalbum Dalbum 1.06
Dalbum Dalbum 1.34
Dalbum Dalbum 1.32
Dalbum Dalbum 1.03
Dalbum Dalbum 1.09
Dalbum Dalbum 1.35
Dalbum Dalbum 1.33
1 EDB exploit
NA
CVE-2012-5917
SnackAmp 3.1.3 allows remote malicious users to cause a denial of service (application crash) via a long string in an aiff file.
Tom Wilkason Snackamp 3.1.3
1 EDB exploit
NA
CVE-2012-2940
MediaChance Real-DRAW PRO 5.2.4 allows remote malicious users to cause a denial of service (application crash) via a crafted (1) PNG, (2) WMF, (3) PSD, (4) TGA, (5) TTF, (6) BMP, (7) TIFF, or (8) PCX file.
Mediachance Real-draw Pro 5.2.4
1 EDB exploit
6.5
CVSSv3
CVE-2018-19371
The SaveUserSettings service in Content Manager in SDL Web 8.5.0 has an XXE Vulnerability that allows reading sensitive files from the system.
Sdl Web Content Manager 8.5.0
NA
CVE-2013-7243
Multiple cross-site scripting (XSS) vulnerabilities in GetSimple CMS 3.1.2 and 3.2.3 allow remote malicious users to inject arbitrary web script or HTML via the (1) post-menu field to edit.php or (2) Display name field to settings.php. NOTE: The Custom Permalink Structure and Ema...
Get-simple Getsimple Cms 3.1.2
Get-simple Getsimple Cms 3.2.3
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
firewall
CVE-2024-35649
stored XSS
CVE-2022-28654
CVE-2020-35153
CVE-2024-27348
CVE-2022-28652
local users
CVE-2017-3506
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started