Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
vivvo vivvo vulnerabilities and exploits
(subscribe to this query)
383
VMScore
CVE-2009-0466
Cross-site scripting (XSS) vulnerability in Vivvo CMS prior to 4.1.1 allows remote malicious users to inject arbitrary web script or HTML via a URI that triggers a 404 Page Not Found response.
Vivvo Vivvo
Vivvo Vivvo 4.0.2
Vivvo Vivvo 4.0.1
Vivvo Vivvo 4.0.4
Vivvo Vivvo 4.0.3
392
VMScore
CVE-2008-6801
Cross-site request forgery (CSRF) vulnerability in Vivvo CMS prior to 4.0.4 allows remote malicious users to hijack the authentication of unspecified victims via unknown vectors.
Vivvo Vivvo 4.0.2
Vivvo Vivvo 4.0.1
Vivvo Vivvo
505
VMScore
CVE-2009-3787
files.php in Vivvo CMS 4.1.5.1 allows remote malicious users to conduct directory traversal attacks and read arbitrary files via the file parameter with "logs/" in between two . (dot) characters, which is filtered into a "../" sequence.
Vivvo Vivvo 4.1.5.1
1 EDB exploit
520
VMScore
CVE-2006-4714
PHP remote file inclusion vulnerability in index.php in SpoonLabs Vivvo Article Management CMS (aka phpWordPress) 3.2 and previous versions, when register_globals is enabled, allows remote malicious users to execute arbitrary PHP code via a URL in the classified_path parameter.
Spoonlabs Vivvo Article Management Cms 3.2
Spoonlabs Vivvo Article Management Cms
2 EDB exploits
760
VMScore
CVE-2006-4715
SQL injection vulnerability in pdf_version.php in SpoonLabs Vivvo Article Management CMS (aka phpWordPress) 3.2 and previous versions allows remote malicious users to execute arbitrary SQL commands via the id parameter.
Spoonlabs Vivvo Article Management Cms 3.2
Spoonlabs Vivvo Article Management Cms
2 EDB exploits
690
VMScore
CVE-2007-3939
SQL injection vulnerability in index.php in SpoonLabs Vivvo Article Management CMS (aka phpWordPress) CMS 3.4 and previous versions allows remote malicious users to execute arbitrary SQL commands via the category parameter.
Spoonlabs Vivvo Article Management Cms
2 EDB exploits
685
VMScore
CVE-2007-1031
Directory traversal vulnerability in include/db_conn.php in SpoonLabs Vivvo Article Management CMS 3.4 allows remote malicious users to include and execute arbitrary local files via the root parameter.
Spoonlabs Vivvo Article Management Cms 3.4
1 EDB exploit
755
VMScore
CVE-2007-0574
SQL injection vulnerability in rss/show_webfeed.php in SpoonLabs Vivvo Article Management CMS (aka phpWordPress) 3.40 allows remote malicious users to execute arbitrary SQL commands via the wcHeadlines parameter, a different vector than CVE-2006-4715. NOTE: The provenance of this...
Spoonlabs Vivvo Article Management Cms 3.40
1 EDB exploit
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
authentication bypass
CVE-2024-30051
remote
CVE-2024-27954
CVE-2023-51483
CVE-2023-47782
SSRF
CVE-2024-24715
CVE-2023-52424
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started