Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
h-fj vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2007-6751
Cross-site scripting (XSS) vulnerability in the MailForm plugin prior to 1.20 for Movable Type allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors.
H-fj Mailform Plugin
H-fj Mailform Plugin 1.10
H-fj Mailform Plugin 1.00
NA
CVE-2015-2945
mt-phpincgi.php in Hajime Fujimoto mt-phpincgi prior to 2015-05-15 does not properly restrict URLs, which allows remote malicious users to conduct PHP object injection attacks and execute arbitrary PHP code via a crafted request, as exploited in the wild in May 2015.
H-fj Mt-phpincgi -
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
deserialization
CVE-2024-4040
cross-site scripting
CVE-2023-25790
CVE-2024-2961
XML external entity
CVE-2024-26926
CVE-2024-32806
CVE-2024-32711
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started