Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2023-23019
Cross site scripting (XSS) vulnerability in file main.php in sourcecodester oretnom23 Blog Site 1.0 via the name and email parameters to function user_add.\
NA
CVE-2024-29011
Use of hard-coded password in the GMS ECM endpoint leading to authentication bypass vulnerability. This issue affects GMS: 9.3.4 and previous versions versions.
NA
CVE-2024-26504
An issue in Wifire Hotspot v.4.5.3 allows a local malicious user to execute arbitrary code via a crafted payload to the dst parameter.
NA
CVE-2024-33393
An issue in spidernet-io spiderpool v.0.9.3 and before allows a local malicious user to execute arbitrary code via a crafted command to get the token component.
NA
CVE-2024-33304
SourceCodester Product Show Room 1.0 is vulnerable to Cross Site Scripting (XSS) via "Last Name" under Add Users.
NA
CVE-2023-23022
Cross site scripting (XSS) vulnerability in sourcecodester oretnom23 employee's payroll management system 1.0, allows malicious users to execute arbitrary code via the code, title, from_date and to_date inputs in file Main.php.
NA
CVE-2024-24312
SQL injection vulnerability in Vaales Technologies V_QRS v.2024-01-17 allows a remote malicious user to obtain sensitive information via the Models/UserModel.php component.
NA
CVE-2024-25458
An issue in CYCZCAM, SHIX ZHAO, SHIXCAM A9 Camera (circuit board identifier A9-48B-V1.0) firmware v.CYCAM_48B_BC01_v87_0903 allows a remote malicious user to obtain sensitive information via a crafted request to a UDP port.
NA
CVE-2024-33292
SQL Injection vulnerability in Realisation MGSD v.1.0 allows a remote malicious user to obtain sensitive information via the id parameter.
NA
CVE-2024-24313
An issue in Vaales Technologies V_QRS v.2024-01-17 allows a remote malicious user to obtain sensitive information via the Models/FormModel.php and QRModel.php component.
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
path traversal
CVE-2024-26978
CVE-2024-26982
wireless
CVE-2023-6949
CVE-2024-26980
CVE-2024-32766
CVE-2024-26939
cache poisoning
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
6
NEXT »