Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
sivertpl vulnerabilities and exploits
(subscribe to this query)
6.1
CVSSv3
CVE-2021-27889
Cross-site Scripting (XSS) vulnerability in MyBB prior to 1.8.26 via Nested Auto URL when parsing messages.
Mybb Mybb
1 Github repository
7.8
CVSSv3
CVE-2017-8311
Potential heap based buffer overflow in ParseJSS in VideoLAN VLC prior to 2.2.5 due to skipping NULL terminator in an input string allows malicious users to execute arbitrary code via a crafted subtitles file.
Videolan Vlc Media Player
1 EDB exploit
8.8
CVSSv3
CVE-2017-6334
dnslookup.cgi on NETGEAR DGN2200 devices with firmware up to and including 10.0.0.50 allows remote authenticated users to execute arbitrary OS commands via shell metacharacters in the host_name field of an HTTP POST request, a different vulnerability than CVE-2017-6077.
Netgear Dgn2200 Series Firmware
3 EDB exploits
8.8
CVSSv3
CVE-2021-27890
SQL Injection vulnerablity in MyBB prior to 1.8.26 via theme properties included in theme XML files.
Mybb Mybb
1 Github repository
8.8
CVSSv3
CVE-2021-27946
SQL Injection vulnerability in MyBB prior to 1.8.26 via poll vote count. (issue 1 of 3).
Mybb Mybb
8.8
CVSSv3
CVE-2017-6366
Cross-site request forgery (CSRF) vulnerability in NETGEAR DGN2200 routers with firmware 10.0.0.20 up to and including 10.0.0.50 allows remote malicious users to hijack the authentication of users for requests that perform DNS lookups via the host_name parameter to dnslookup.cgi....
Netgear Dgn2200 Firmware
1 EDB exploit
9.8
CVSSv3
CVE-2017-6077
ping.cgi on NETGEAR DGN2200 devices with firmware up to and including 10.0.0.50 allows remote authenticated users to execute arbitrary OS commands via shell metacharacters in the ping_IPAddr field of an HTTP POST request.
Netgear Dgn2200 Firmware
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3380
CVE-2024-1694
local file inclusion
CVE-2024-5645
CVE-2024-24919
XSS
CVE-2024-36774
CVE-2024-21306
SQL
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started