Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
pivot pivot vulnerabilities and exploits
(subscribe to this query)
5
CVSSv2
CVE-2009-2134
pivot/tb.php in Pivot 1.40.4 and 1.40.7 allows remote malicious users to obtain sensitive information via an invalid url parameter, which reveals the installation path in an error message.
Pivot Pivot 1.40.4
Pivot Pivot 1.40.7
1 EDB exploit
4.3
CVSSv2
CVE-2009-2133
Multiple cross-site scripting (XSS) vulnerabilities in Pivot 1.40.4 and 1.40.7 allow remote malicious users to inject arbitrary web script or HTML via the (1) menu or (2) sort parameter to pivot/index.php, (3) the value of a check array parameter in a delete action to pivot/index...
Pivot Pivot 1.40.4
Pivot Pivot 1.40.7
1 EDB exploit
7.5
CVSSv2
CVE-2006-3531
includes/editor/insert_image.php in Pivot 1.30 RC2 and previous versions creates the authentication credentials from parameters, which allows remote malicious users to obtain privileges and upload arbitrary files via modified (1) pass and (2) session parameters, and (3) pass and ...
Pivot Pivot
1 EDB exploit
5
CVSSv2
CVE-2008-3128
Directory traversal vulnerability in search.php in Pivot 1.40.5 allows remote malicious users to read arbitrary files via a .. (dot dot) in the t parameter.
Pivot Pivot 1.40.5
1 EDB exploit
5.1
CVSSv2
CVE-2006-3532
PHP file inclusion vulnerability in includes/edit_new.php in Pivot 1.30 RC2 and previous versions, when register_globals is enabled, allows remote malicious users to execute arbitrary PHP code via a FTP URL or full file path in the Paths[extensions_path] parameter.
Pivot Pivot 1.30 Rc2
1 EDB exploit
5.8
CVSSv2
CVE-2006-3533
Multiple cross-site scripting (XSS) vulnerabilities in Pivot 1.30 RC2 and previous versions, when register_globals is enabled, allow remote malicious users to inject arbitrary web script or HTML via the (1) fg, (2) line1, (3) line2, (4) bg, (5) c1, (6) c2, (7) c3, and (8) c4 para...
Pivot Pivot 1.30 Rc2
1 EDB exploit
4.3
CVSSv2
CVE-2020-20139
Cross Site Scripting (XSS) vulnerability in the Remote JSON component Under the Connect menu in Flexmonster Pivot Table & Charts 2.7.17.
Flexmonster Pivot Table \\& Charts 2.7.17
4.3
CVSSv2
CVE-2020-20140
Cross Site Scripting (XSS) vulnerability in Remote Report component under the Open menu in Flexmonster Pivot Table & Charts 2.7.17.
Flexmonster Pivot Table \\& Charts 2.7.17
4.3
CVSSv2
CVE-2020-20141
Cross Site Scripting (XSS) vulnerability in the To OLAP (XMLA) component Under the Connect menu in Flexmonster Pivot Table & Charts 2.7.17.
Flexmonster Pivot Table \\& Charts 2.7.17
4.3
CVSSv2
CVE-2020-20142
Cross Site Scripting (XSS) vulnerability in the "To Remote CSV" component under "Open" Menu in Flexmonster Pivot Table & Charts 2.7.17.
Flexmonster Pivot Table \\& Charts 2.7.17
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-5248
CVE-2024-3110
CVE-2024-5552
CVE-2024-29415
HTML injection
CVE-2024-3095
TCP
type confusion
CVE-2024-1800
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
NEXT »