Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
accounts vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2007-3345
Multiple SQL injection vulnerabilities in index.php in PHPAccounts 0.5 allow remote malicious users to execute arbitrary SQL commands via the (1) Outgoing_Type_ID, (2) Outgoing_ID, (3) Project_ID, (4) Client_ID, (5) Invoice_ID, or (6) Vendor_ID parameter.
Php Accounts Php Accounts 0.5
7.8
CVSSv2
CVE-2007-3346
Directory traversal vulnerability in index.php in PHPAccounts 0.5 allows remote malicious users to include arbitrary local files via unspecified manipulations of the page parameter.
Php Accounts Php Accounts 0.5
1 EDB exploit
4.3
CVSSv2
CVE-2013-0240
Gnome Online Accounts (GOA) 3.4.x, 3.6.x prior to 3.6.3, and 3.7.x prior to 3.7.5, does not properly validate SSL certificates when creating accounts such as Windows Live and Facebook accounts, which allows man-in-the-middle malicious users to obtain sensitive information such as...
Gnome Gnome Online Accounts 3.4.0
Gnome Gnome Online Accounts 3.4.1
Gnome Gnome Online Accounts 3.6.0
Gnome Gnome Online Accounts 3.6.1
Gnome Gnome Online Accounts 3.6.2
Gnome Gnome Online Accounts 3.7.1
Gnome Gnome Online Accounts 3.7.3
Gnome Gnome Online Accounts 3.7.2
Gnome Gnome Online Accounts 3.7.4
Canonical Ubuntu Linux 11.10
Canonical Ubuntu Linux 12.10
Canonical Ubuntu Linux 12.04
4.3
CVSSv2
CVE-2013-1799
Gnome Online Accounts (GOA) 3.6.x prior to 3.6.3 and 3.7.x prior to 3.7.91, does not properly validate SSL certificates when creating accounts for providers who use the libsoup library, which allows man-in-the-middle malicious users to obtain sensitive information such as credent...
Gnome Gnome Online Accounts 3.6.0
Gnome Gnome Online Accounts 3.6.2
Gnome Gnome Online Accounts 3.6.1
Gnome Gnome Online Accounts 3.7.3
Gnome Gnome Online Accounts 3.7.4
Gnome Gnome Online Accounts 3.7.90
Gnome Gnome Online Accounts 3.7.2
Gnome Gnome Online Accounts 3.7.1
Canonical Ubuntu Linux 11.10
Canonical Ubuntu Linux 12.10
Canonical Ubuntu Linux 12.04
4.3
CVSSv2
CVE-2005-1316
Cross-site scripting (XSS) vulnerability in Horde Accounts module prior to 2.1.2 allows remote malicious users to inject arbitrary web script or HTML via the parent's frame page title.
Horde Accounts 2.1.1
Horde Accounts 2.1
NA
CVE-2023-40519
A cross-site scripting (XSS) vulnerability in the bpk-common/auth/login/index.html login portal in Broadpeak Centralized Accounts Management Auth Agent 01.01.00.19219575_ee9195b0, 01.01.01.30097902_fd999e76, and 00.12.01.9565588_1254b459 allows remote malicious users to inject ar...
Broadpeak Centralized Accounts Management Auth Agent 00.12.01.9565588 1254b459
Broadpeak Centralized Accounts Management Auth Agent 01.01.00.19219575 Ee9195b0
Broadpeak Centralized Accounts Management Auth Agent 01.01.01.30097902 Fd999e76
NA
CVE-2023-1480
A vulnerability classified as critical was found in SourceCodester Monitoring of Students Cyber Accounts System 1.0. Affected by this vulnerability is an unknown functionality of the file login.php of the component POST Parameter Handler. The manipulation of the argument un leads...
Monitoring Of Students Cyber Accounts System Project Monitoring Of Students Cyber Accounts System 1.0
NA
CVE-2023-1481
A vulnerability, which was classified as problematic, has been found in SourceCodester Monitoring of Students Cyber Accounts System 1.0. Affected by this issue is some unknown functionality of the file modules/balance/index.php?view=balancelist of the component POST Parameter Han...
Monitoring Of Students Cyber Accounts System Project Monitoring Of Students Cyber Accounts System 1.0
2.1
CVSSv2
CVE-2020-13473
NCH Express Accounts 8.24 and previous versions allows local users to discover the cleartext password by reading the configuration file.
Nchsoftware Express Accounts
4
CVSSv2
CVE-2020-13474
In NCH Express Accounts 8.24 and previous versions, an authenticated low-privilege user can enter a crafted URL to access higher-privileged functionalities such as Add/Edit users.
Nchsoftware Express Accounts
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-33572
CVE-2024-24919
CVE-2024-0230
CVE-2024-32714
HTML injection
local file inclusion
CVE-2024-31098
CVE-2024-31244
privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
6
NEXT »