Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
doz vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2007-6646
Multiple cross-site scripting (XSS) vulnerabilities in LiveCart 1.0.1, and possibly other versions prior to 1.1.0, allow remote malicious users to inject arbitrary web script or HTML via (1) the return parameter to user/remindPassword, (2) the q parameter to the category script, ...
Integry Systems Livecart 1.0.1
4 EDB exploits
NA
CVE-2006-6816
Multiple SQL injection vulnerabilities in DMXReady Secure Login Manager 1.0 allow remote malicious users to execute arbitrary SQL commands via unspecified parameters to (1) set_preferences.asp, (2) send_password_preferences.asp, and (3) SecureLoginManager/list.asp in the Local-Ad...
Dmxready Dmxready Secure Login Manager 1.0
4 EDB exploits
NA
CVE-2007-6574
Multiple cross-site scripting (XSS) vulnerabilities in Dokeos 1.8.4 and previous versions allow remote malicious users to inject arbitrary web script or HTML via (1) the origin parameter to work/work.php in a display_upload_form action, or the forum parameter to (2) forum/viewfor...
Dokeos Open Source Learning And Knowledge Management Tool 1.5.4
Dokeos Open Source Learning And Knowledge Management Tool 1.5.5
Dokeos Open Source Learning And Knowledge Management Tool 1.6.4
Dokeos Open Source Learning And Knowledge Management Tool 1.6.5
Dokeos Open Source Learning And Knowledge Management Tool 1.4
Dokeos Open Source Learning And Knowledge Management Tool 1.5
Dokeos Open Source Learning And Knowledge Management Tool 1.5.3
Dokeos Open Source Learning And Knowledge Management 1.8
Dokeos Open Source Learning And Knowledge Management 1.8.4
Dokeos Open Source Learning And Knowledge Management Tool 1.8
Dokeos Open Source Learning And Knowledge Management Tool 1.8.4
3 EDB exploits
NA
CVE-2008-5225
Multiple cross-site scripting (XSS) vulnerabilities in Xerox DocuShare 6 and previous versions allow remote malicious users to inject arbitrary web script or HTML via the PATH_INFO to the default URI under (1) SearchResults/ and (2) Services/ in dsdn/dsweb/, and (3) the default U...
Xerox Docushare 5
Xerox Docushare 5.00.00.2
Xerox Docushare 6.00.00.1
Xerox Docushare 6.0.1
Xerox Docushare 4
Xerox Docushare
Xerox Docushare 6.0
3 EDB exploits
NA
CVE-2007-3324
Multiple cross-site scripting (XSS) vulnerabilities in Comersus Cart 7.07 allow remote malicious users to inject arbitrary web script or HTML via the redirectUrl parameter to (1) comersus_customerAuthenticateForm.asp or (2) comersus_message.asp, different vectors than CVE-2004-06...
Comersus Open Technologies Comersus Cart 7.07
2 EDB exploits
NA
CVE-2007-6374
Multiple cross-site scripting (XSS) vulnerabilities in Bitweaver 2.0.0 and previous versions allow remote malicious users to inject arbitrary web script or HTML via the PATH_INFO to (1) users/register.php or (2) search/index.php, or an editcomments action in (3) wiki/index.php or...
Bitweaver Bitweaver
2 EDB exploits
NA
CVE-2007-6597
Multiple cross-site scripting (XSS) vulnerabilities in IPortalX before Build 033 allow remote malicious users to inject arbitrary web script or HTML via the (1) KW and (2) SF parameters to forum/login_user.asp, and (3) the Date parameter to blogs.asp.
Iportalx Iportalx Beta 1
2 EDB exploits
NA
CVE-2008-1304
Multiple cross-site scripting (XSS) vulnerabilities in WordPress 2.3.2 allow remote malicious users to inject arbitrary web script or HTML via the (1) inviteemail parameter in an invite action to wp-admin/users.php and the (2) to parameter in a sent action to wp-admin/invites.php...
Wordpress Wordpress 2.3.2
2 EDB exploits
NA
CVE-2007-0302
Multiple cross-site scripting (XSS) vulnerabilities in InstantASP 4.1.0 allow remote malicious users to inject arbitrary web script or HTML via the (1) SessionID parameter to (a) Logon.aspx, and the (2) Username and (3) Update parameters to (b) Members1.aspx.
Instantasp Instantasp 4.1.0
2 EDB exploits
NA
CVE-2007-4899
Multiple cross-site scripting (XSS) vulnerabilities in Boinc Forum 5.10.20 and previous versions allow remote malicious users to inject arbitrary web script or HTML via the (1) id parameter to forum_forum.php, or the search_string parameter to forum_text_search_action.php in a (2...
Berkeley Boinc Forum
2 EDB exploits
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4367
CVE-2024-35977
CVE-2023-49335
man-in-the-middle
CVE-2024-4947
CVE-2024-31714
memory leak
SQL
CVE-2024-35994
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
NEXT »