Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2019-1234567
HelloWeb 🚀本文档面向初次踏入 The Web World 的新生,希望为你们提供一个可供参考的学习路线。 ✨该文档最早公开于 ma5hr00m/HelloWeb,计划用于 Vidar-Team2024 届招新。 0x00 前言 Web 安全与 Web 开发往往是绑定在一起的,所以本文档会同时介绍 安全&开发,还会有一些零零散散的其他想要告诉新生的东西,所以内容会略多,希望多点耐心看完。 在开始之前,你们需要准备一些东西,要求不高,相信大家都有: 🧠能独立思考的大脑 💻可以使用的电脑 🔮流畅的网络 ❤️积极好学的心 此...
1 Github repository
NA
CVE-2023-46870
CVE-2023-46870
1 Github repository
NA
CVE-2024-32613
DescriptionThe MITRE CVE dictionary describes this issue as: HDF5 Library through 1.14.3 contains a heap-based buffer over-read in the function H5HL__fl_deserialize in H5HLcache.c, a different vulnerability than CVE-2024-32612.
NA
CVE-2024-32623
DescriptionThe MITRE CVE dictionary describes this issue as: HDF5 Library through 1.14.3 contains a heap-based buffer overflow in H5VM_array_fill in H5VM.c (called from H5S_select_elements in H5Spoint.c).
NA
CVE-2024-3807
CVE-2024-3806-AND-CVE-2024-3807-Poc CVE-2024-3806: Porto <= 7.1.0 - Unauthenticated Local File Inclusion via porto_ajax_posts CVE-2024-3807: Porto <= 7.1.0 - Authenticated (Contributor+) Local File Inclusion via Post Meta Porto 7.1.0: https://drive.google.com/file/d...
1 Github repository
NA
CVE-2024-3806
CVE-2024-3806-AND-CVE-2024-3807-Poc CVE-2024-3806: Porto <= 7.1.0 - Unauthenticated Local File Inclusion via porto_ajax_posts CVE-2024-3807: Porto <= 7.1.0 - Authenticated (Contributor+) Local File Inclusion via Post Meta Porto 7.1.0: https://drive.google.com/file/d...
1 Github repository
NA
CVE-2022-7890
Ethical Hacking Technical Report Name of Company: Procas T Nation Prepared by: Chino Lawrence A. Noble and Boyet P. Peñales Date: May 10, 2024 Executive Summary: This report details the findings of an ethical hacking assessment conducted for Procas T Nation. The assessment...
1 Github repository
NA
CVE-2024-34310
CVE-2024-34310 CVE-2024-34310 [Suggested description] Jin Fang Times Content Management System v3.2.3 was discovered to contain a SQL injection vulnerability via the id parameter. [Vulnerability Type] SQL Injection [Vendor of Product] https://www.bjjfsd.com/ [Affected Product...
1 Github repository
NA
CVE-2024-4701
Any Genie OSS users running their own instance and relying on the filesystem to store file attachments submitted to the Genie application may be impacted. Using this technique, it is possible to write a file with any user-specified filename and file contents to any location on th...
NA
CVE-2024-29212
Veeam Service Provider Console Vulnerability. Due to an unsafe deserialization method used by the Veeam Service Provider Console (VSPC) server in communication between the management agent and its components, under certain conditions, it is possible to perform Remote Code Executi...
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-32886
insecure direct object reference
CVE-2024-34342
file inclusion
CVE-2024-34562
CVE-2024-34347
CVE-2024-26026
CVE-2024-4647
unprivileged
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
6
NEXT »