Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
pivot pivot vulnerabilities and exploits
(subscribe to this query)
435
VMScore
CVE-2009-2133
Multiple cross-site scripting (XSS) vulnerabilities in Pivot 1.40.4 and 1.40.7 allow remote malicious users to inject arbitrary web script or HTML via the (1) menu or (2) sort parameter to pivot/index.php, (3) the value of a check array parameter in a delete action to pivot/index...
Pivot Pivot 1.40.4
Pivot Pivot 1.40.7
1 EDB exploit
505
VMScore
CVE-2009-2134
pivot/tb.php in Pivot 1.40.4 and 1.40.7 allows remote malicious users to obtain sensitive information via an invalid url parameter, which reveals the installation path in an error message.
Pivot Pivot 1.40.4
Pivot Pivot 1.40.7
1 EDB exploit
755
VMScore
CVE-2006-3531
includes/editor/insert_image.php in Pivot 1.30 RC2 and previous versions creates the authentication credentials from parameters, which allows remote malicious users to obtain privileges and upload arbitrary files via modified (1) pass and (2) session parameters, and (3) pass and ...
Pivot Pivot
1 EDB exploit
505
VMScore
CVE-2008-3128
Directory traversal vulnerability in search.php in Pivot 1.40.5 allows remote malicious users to read arbitrary files via a .. (dot dot) in the t parameter.
Pivot Pivot 1.40.5
1 EDB exploit
585
VMScore
CVE-2006-3533
Multiple cross-site scripting (XSS) vulnerabilities in Pivot 1.30 RC2 and previous versions, when register_globals is enabled, allow remote malicious users to inject arbitrary web script or HTML via the (1) fg, (2) line1, (3) line2, (4) bg, (5) c1, (6) c2, (7) c3, and (8) c4 para...
Pivot Pivot 1.30 Rc2
1 EDB exploit
515
VMScore
CVE-2006-3532
PHP file inclusion vulnerability in includes/edit_new.php in Pivot 1.30 RC2 and previous versions, when register_globals is enabled, allows remote malicious users to execute arbitrary PHP code via a FTP URL or full file path in the Paths[extensions_path] parameter.
Pivot Pivot 1.30 Rc2
1 EDB exploit
383
VMScore
CVE-2020-20140
Cross Site Scripting (XSS) vulnerability in Remote Report component under the Open menu in Flexmonster Pivot Table & Charts 2.7.17.
Flexmonster Pivot Table \\& Charts 2.7.17
383
VMScore
CVE-2020-20139
Cross Site Scripting (XSS) vulnerability in the Remote JSON component Under the Connect menu in Flexmonster Pivot Table & Charts 2.7.17.
Flexmonster Pivot Table \\& Charts 2.7.17
383
VMScore
CVE-2020-20141
Cross Site Scripting (XSS) vulnerability in the To OLAP (XMLA) component Under the Connect menu in Flexmonster Pivot Table & Charts 2.7.17.
Flexmonster Pivot Table \\& Charts 2.7.17
383
VMScore
CVE-2020-20142
Cross Site Scripting (XSS) vulnerability in the "To Remote CSV" component under "Open" Menu in Flexmonster Pivot Table & Charts 2.7.17.
Flexmonster Pivot Table \\& Charts 2.7.17
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-33228
CVE-2024-20361
log injection
bypass
CVE-2024-4985
CVE-2024-35223
CVE-2024-29849
CVE-2024-31893
IMAP
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
NEXT »