Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

craig arendt vulnerabilities and exploits

(subscribe to this query)
NA
CVE-2014-2280
Cross-site scripting (XSS) vulnerability in the search feature in SeedDMS (formerly LetoDMS and MyDMS) prior to 4.3.4 allows remote malicious users to inject arbitrary web script or HTML via the query parameter.
Seeddms Seeddms 3.4.3Seeddms Seeddms 3.3.12Seeddms Seeddms
NA
CVE-2014-2278
Unrestricted file upload vulnerability in op/op.AddFile2.php in SeedDMS (formerly LetoDMS and MyDMS) prior to 4.3.4 allows remote malicious users to execute arbitrary code by uploading a file with an executable extension specified by the partitionIndex parameter and leveraging CV...
Seeddms Seeddms
NA
CVE-2014-2279
Multiple directory traversal vulnerabilities in SeedDMS (formerly LetoDMS and MyDMS) prior to 4.3.4 allow (1) remote authenticated users with access to the LogManagement functionality to read arbitrary files via a .. (dot dot) in the logname parameter to out/out.LogManagement.php...
Seeddms Seeddms
NA
CVE-2013-6226
Directory traversal vulnerability in plugins/editor.zoho/agent/save_zoho.php in the Zoho plugin in Pydio (formerly AjaXplorer) prior to 5.0.4 allows remote malicious users to read or delete arbitrary files via unspecified vectors.
Ajaxplorer Ajaxplorer 3.1.1Ajaxplorer Ajaxplorer 2.5Ajaxplorer Ajaxplorer 3.3.2Ajaxplorer Ajaxplorer 3.0.1Ajaxplorer Ajaxplorer 4.2.3Ajaxplorer Ajaxplorer 4.0.4Ajaxplorer Ajaxplorer 3.3.4Ajaxplorer Ajaxplorer 5.0.1Ajaxplorer Ajaxplorer 3.0Ajaxplorer Ajaxplorer 2.7.2Ajaxplorer Ajaxplorer 3.1Ajaxplorer Ajaxplorer 3.2.3Ajaxplorer Ajaxplorer 2.6.0Ajaxplorer Ajaxplorer 2.5.4Ajaxplorer Ajaxplorer 4.2.2Ajaxplorer Ajaxplorer 2.3.3Ajaxplorer Ajaxplorer 5.0.2Ajaxplorer Ajaxplorer 3.2.1Ajaxplorer Ajaxplorer 3.2.5Ajaxplorer AjaxplorerAjaxplorer Ajaxplorer 4.0.3Ajaxplorer Ajaxplorer 2.3.4
NA
CVE-2014-2736
Multiple SQL injection vulnerabilities in MODX Revolution prior to 2.2.14 allow remote malicious users to execute arbitrary SQL commands via the (1) session ID (PHPSESSID) to index.php or remote authenticated users to execute arbitrary SQL commands via the (2) user parameter to c...
Modx Modx Revolution 2.0.0Modx Modx Revolution 2.1.5Modx Modx Revolution 2.2.0Modx Modx Revolution 2.2.1Modx Modx Revolution 2.2.10Modx Modx Revolution 2.0.5Modx Modx Revolution 2.0.6Modx Modx Revolution 2.0.7Modx Modx Revolution 2.0.8Modx Modx Revolution 2.1.0Modx Modx Revolution 2.2.3Modx Modx Revolution 2.2.4Modx Modx Revolution 2.2.5Modx Modx Revolution 2.2.6Modx Modx Revolution 2.0.4Modx Modx Revolution 2.1.2Modx Modx Revolution 2.1.4Modx Modx Revolution 2.2.11Modx Modx RevolutionModx Modx Revolution 2.2.8Modx Modx Revolution 2.0.1Modx Modx Revolution 2.0.3
NA
CVE-2013-6227
Unrestricted file upload vulnerability in plugins/editor.zoho/agent/save_zoho.php in the Zoho plugin in Pydio (formerly AjaXplorer) prior to 5.0.4 allows remote malicious users to execute arbitrary code by uploading an executable file, and then accessing this file at a location s...
Pydio PydioAjaxplorer Ajaxplorer
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2022-48654CVE-2024-2757authentication bypassCVE-2024-3194CVE-2024-33640CVE-2024-21111dosinsecure direct object referenceCVE-2024-21345
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook