Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
export user project export user vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv3
CVE-2023-43984
Insecure permissions in Smart Soft advancedexport before v4.4.7 allow unauthenticated malicious users to arbitrarily download user information from the ps_customer table.
Advanced Export Products Orders Cron Csv Excel Project Advanced Export Products Orders Cron Csv Excel
6.5
CVSSv3
CVE-2023-23610
GLPI is a Free Asset and IT Management Software package. Versions before 9.5.12 and 10.0.6 are vulnerable to Improper Privilege Management. Any user having access to the standard interface can export data of almost any GLPI item type, even those on which user is not allowed to ac...
Glpi-project Glpi
9.8
CVSSv3
CVE-2020-11548
The Search Meter plugin up to and including 2.13.2 for WordPress allows user input introduced in the search bar to be any formula. The attacker could achieve remote code execution via CSV injection if a wp-admin/index.php?page=search-meter Export is performed.
Search Meter Project Search Meter
6.1
CVSSv3
CVE-2021-21422
mongo-express is a web-based MongoDB admin interface, written with Node.js and express. 1: As mentioned in this issue: https://github.com/mongo-express/mongo-express/issues/577, when the content of a cell grows larger than supported size, clicking on a row will show full document...
Mongo-express Project Mongo-express
Mongo-express Project Mongo-express 1.0.0
4.3
CVSSv3
CVE-2021-39868
In all versions of GitLab CE/EE since version 8.12, an authenticated low-privileged malicious user may create a project with unlimited repository size by modifying values in a project export.
Gitlab Gitlab 4.3.0
Gitlab Gitlab
4.3
CVSSv3
CVE-2023-1825
An issue has been discovered in GitLab EE affecting all versions starting from 15.7 prior to 15.10.8, all versions starting from 15.11 prior to 15.11.7, all versions starting from 16.0 prior to 16.0.2. It was possible to disclose issue notes to an unauthorized user at project exp...
Gitlab Gitlab
5.3
CVSSv3
CVE-2021-41309
Affected versions of Atlassian Jira Server and Data Center allow a user who has had their Jira Service Management access revoked to export audit logs of another user's Jira Service Management project via a Broken Authentication vulnerability in the /plugins/servlet/audit/res...
Atlassian Jira Software Data Center
6.5
CVSSv3
CVE-2016-9086
GitLab versions 8.9.x and above contain a critical security flaw in the "import/export project" feature of GitLab. Added in GitLab 8.9, this feature allows a user to export and then re-import their projects as tape archive files (tar). All GitLab versions before 8.13.0 ...
Gitlab Gitlab 8.9.1
Gitlab Gitlab 8.9.8
Gitlab Gitlab 8.9.10
Gitlab Gitlab 8.10.5
Gitlab Gitlab 8.10.7
Gitlab Gitlab 8.10.12
Gitlab Gitlab 8.11.1
Gitlab Gitlab 8.9.11
Gitlab Gitlab 8.10.0
Gitlab Gitlab 8.10.1
Gitlab Gitlab 8.10.2
Gitlab Gitlab 8.10.3
Gitlab Gitlab 8.11.3
Gitlab Gitlab 8.11.4
Gitlab Gitlab 8.11.5
Gitlab Gitlab 8.11.6
Gitlab Gitlab 8.13.2
Gitlab Gitlab 8.9.0
Gitlab Gitlab 8.11.8
Gitlab Gitlab 8.12.0
Gitlab Gitlab 8.12.7
Gitlab Gitlab 8.13.1
6.5
CVSSv3
CVE-2023-3385
An issue has been discovered in GitLab affecting all versions starting from 8.10 prior to 16.0.8, all versions starting from 16.1 prior to 16.1.3, all versions starting from 16.2 prior to 16.2.2. Under specific circumstances, a user importing a project 'from export' cou...
Gitlab Gitlab
NA
CVE-2013-5003
Multiple SQL injection vulnerabilities in phpMyAdmin 3.5.x prior to 3.5.8.2 and 4.0.x prior to 4.0.4.2 allow remote authenticated users to execute arbitrary SQL commands via (1) the scale parameter to pmd_pdf.php or (2) the pdf_page_number parameter to schema_export.php.
Phpmyadmin Phpmyadmin 3.5.8
Phpmyadmin Phpmyadmin 3.5.2.2
Phpmyadmin Phpmyadmin 3.5.8.1
Phpmyadmin Phpmyadmin 3.5.7
Phpmyadmin Phpmyadmin 3.5.6
Phpmyadmin Phpmyadmin 3.5.2.1
Phpmyadmin Phpmyadmin 3.5.2.0
Phpmyadmin Phpmyadmin 3.5.1.0
Phpmyadmin Phpmyadmin 3.5.0.0
Phpmyadmin Phpmyadmin 3.5.3.0
Phpmyadmin Phpmyadmin 3.5.5
Phpmyadmin Phpmyadmin 3.5.4
Phpmyadmin Phpmyadmin 4.0.1
Phpmyadmin Phpmyadmin 4.0.0
Phpmyadmin Phpmyadmin 4.0.3
Phpmyadmin Phpmyadmin 4.0.2
Phpmyadmin Phpmyadmin 4.0.4
Phpmyadmin Phpmyadmin 4.0.4.1
1 Github repository
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
path traversal
CVE-2024-33545
CVE-2024-35725
CVE-2024-32704
overflow
file upload
CVE-2024-0230
CVE-2024-32705
CVE-2024-23692
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
NEXT »