Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
tru-zone nukeet 3.4 vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2008-2133
Cross-site scripting (XSS) vulnerability in the Journal module in Tru-Zone Nuke ET 3.x allows remote malicious users to inject arbitrary web script or HTML via the title parameter in a new entry, as demonstrated by a CSS property in the STYLE attribute of a DIV element, a differe...
Tru-zone Nukeet 3.1
Tru-zone Nukeet 3.2
Tru-zone Nukeet 3.0
Tru-zone Nukeet 3.3
Tru-zone Nukeet 3.4
Tru-zone Nukeet 3.9
6.8
CVSSv2
CVE-2008-2134
The Journal module in Tru-Zone Nuke ET 3.x allows remote malicious users to obtain access to arbitrary user accounts, and alter or delete data, via a modified username in an unspecified cookie.
Tru-zone Nukeet 3.2
Tru-zone Nukeet 3.3
Tru-zone Nukeet 3.4
Tru-zone Nukeet 3.0
Tru-zone Nukeet 3.1
Tru-zone Nukeet 3.9
4.3
CVSSv2
CVE-2008-1873
Cross-site scripting (XSS) vulnerability in the private message feature in Nuke ET 3.2 and 3.4, when using Internet Explorer, allows remote authenticated users to inject arbitrary web script or HTML via a CSS property in the STYLE attribute of a DIV element in the mensaje paramet...
Tru-zone Nukeet 3.4
Tru-zone Nukeet 3.2
1 EDB exploit
6.5
CVSSv2
CVE-2007-1925
The borrado function in modules/Your_Account/index.php in Tru-Zone Nuke ET 3.4 before fix 7 does not verify that account deletion requests come from the account owner, which allows remote authenticated users to delete arbitrary accounts via a modified cookie.
Tru-zone Nukeet
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-32886
insecure direct object reference
CVE-2024-34342
file inclusion
CVE-2024-34562
CVE-2024-34347
CVE-2024-26026
CVE-2024-4647
unprivileged
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started