Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
jbmc software directadmin vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2012-5305
Cross-site scripting (XSS) vulnerability in CMD_DOMAIN in JBMC Software DirectAdmin 1.403 allows remote malicious users to inject arbitrary web script or HTML via the domain parameter.
Directadmin Directadmin 1.403
4.3
CVSSv2
CVE-2012-3842
Multiple cross-site scripting (XSS) vulnerabilities in CMD_DOMAIN in JBMC Software DirectAdmin 1.403 allow remote authenticated users with certain privileges to inject arbitrary web script or HTML via the (1) select0 or (2) select8 parameters.
Jbmc-software Directadmin 1.403
4.3
CVSSv2
CVE-2009-2216
Cross-site scripting (XSS) vulnerability in CMD_REDIRECT in DirectAdmin 1.33.6 and previous versions allows remote malicious users to inject arbitrary web script or HTML via the URI in a view=advanced request.
Jbmc-software Directadmin
Jbmc-software Directadmin 1.33.2
Jbmc-software Directadmin 1.33.1
Jbmc-software Directadmin 1.292
Jbmc-software Directadmin 1.33.4
Jbmc-software Directadmin 1.33.3
1 EDB exploit
8.5
CVSSv2
CVE-2009-1525
CMD_DB in JBMC Software DirectAdmin prior to 1.334 allows remote authenticated users to gain privileges via shell metacharacters in the name parameter during a restore action.
Jbmc-software Directadmin 1.301
Jbmc-software Directadmin 1.266
Jbmc-software Directadmin 1.292
Jbmc-software Directadmin 1.02
Jbmc-software Directadmin 1.03
Jbmc-software Directadmin 1.09
Jbmc-software Directadmin 1.1
Jbmc-software Directadmin 1.302
Jbmc-software Directadmin 1.04
Jbmc-software Directadmin 1.05
Jbmc-software Directadmin 1.11
Jbmc-software Directadmin 1.111
Jbmc-software Directadmin 1.16
Jbmc-software Directadmin 1.161
Jbmc-software Directadmin 1.18
Jbmc-software Directadmin 1.181
Jbmc-software Directadmin 1.2
Jbmc-software Directadmin 1.201
Jbmc-software Directadmin 1.202
Jbmc-software Directadmin 1.211
Jbmc-software Directadmin 1.212
Jbmc-software Directadmin 1.225
6.9
CVSSv2
CVE-2009-1526
JBMC Software DirectAdmin prior to 1.334 allows local users to create or overwrite any file via a symlink attack on an arbitrary file in a certain temporary directory, related to a request for this temporary file in the PATH_INFO to the CMD_DB script during a backup action.
Jbmc-software Directadmin 1.301
Jbmc-software Directadmin 1.302
Jbmc-software Directadmin 1.331
Jbmc-software Directadmin 0.95
Jbmc-software Directadmin 1.11
Jbmc-software Directadmin 1.04
Jbmc-software Directadmin 1.05
Jbmc-software Directadmin 1.06
Jbmc-software Directadmin 1.07
Jbmc-software Directadmin 1.16
Jbmc-software Directadmin 1.161
Jbmc-software Directadmin 1.17
Jbmc-software Directadmin 1.171
Jbmc-software Directadmin 1.2
Jbmc-software Directadmin 1.201
Jbmc-software Directadmin 1.202
Jbmc-software Directadmin 1.203
Jbmc-software Directadmin 1.225
Jbmc-software Directadmin 1.226
Jbmc-software Directadmin 1.23
Jbmc-software Directadmin 1.231
Jbmc-software Directadmin 1.254
1 EDB exploit
6.8
CVSSv2
CVE-2007-1926
Cross-site scripting (XSS) vulnerability in JBMC Software DirectAdmin prior to 1.293 does not properly display log files, which allows remote authenticated users to inject arbitrary web script or HTML via (1) http or (2) ftp requests logged in /var/log/directadmin/security.log; (...
Jbmc Software Directadmin
4.3
CVSSv2
CVE-2007-1508
Cross-site scripting (XSS) vulnerability in CMD_USER_STATS in DirectAdmin allows remote malicious users to inject arbitrary web script or HTML via the RESULT parameter, a different vector than CVE-2006-5983.
Jbmc Software Directadmin 1.293
1 EDB exploit
6
CVSSv2
CVE-2006-5983
Multiple cross-site scripting (XSS) vulnerabilities in JBMC Software DirectAdmin 1.28.1 allow remote authenticated users to inject arbitrary web script or HTML via the (1) user parameter to (a) CMD_SHOW_RESELLER or (b) CMD_SHOW_USER in the Admin level; the (2) TYPE parameter to (...
Jbmc Software Directadmin 1.28.1
8 EDB exploits
4.3
CVSSv2
CVE-2006-2153
Cross-site scripting (XSS) vulnerability in HTM_PASSWD in DirectAdmin Hosting Management allows remote malicious users to inject arbitrary web script or HTML via the domain parameter.
Jbmc Software Directadmin
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
HTML injection
CVE-2024-35894
SQL
CVE-2024-5105
CVE-2014-100005
CVE-2024-35895
unauthorized
CVE-2024-22120
CVE-2024-35890
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started