Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
sis vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2007-4806
PHP remote file inclusion vulnerability in modules/Discipline/CategoryBreakdownTime.php in Focus/SIS 1.0 allows remote malicious users to execute arbitrary PHP code via a URL in the FocusPath parameter.
Focus Sis Focus Sis 2.2
Focus Sis Focus Sis 1.0
1 EDB exploit
7.5
CVSSv2
CVE-2007-4807
Multiple PHP remote file inclusion vulnerabilities in Focus/SIS 2.2 allow remote malicious users to execute arbitrary PHP code via a URL in the staticpath parameter to (1) modules/Discipline/CategoryBreakdownTime.php or (2) modules/Discipline/StudentFieldBreakdown.php.
Focus Sis Focus Sis 2.2
Focus Sis Focus Sis 1.0
1 EDB exploit
7.5
CVSSv2
CVE-2007-4942
PHP remote file inclusion vulnerability in modules/Discipline/StudentFieldBreakdown.php in Focus/SIS 1.0 allows remote malicious users to execute arbitrary PHP code via a URL in the FocusPath parameter, a different vector than CVE-2007-4806. NOTE: the provenance of this informati...
Focus-sis Focus Sis 1.0
1 EDB exploit
4.3
CVSSv2
CVE-2021-31537
SIS SIS-REWE Go prior to 7.7 SP17 allows XSS: rewe/prod/web/index.php (affected parameters are config, version, win, db, pwd, and user) and /rewe/prod/web/rewe_go_check.php (version and all other parameters).
Sisinformatik Sis-rewe Go 7.7
Sisinformatik Sis-rewe Go
NA
CVE-2023-41684
Cross-Site Request Forgery (CSRF) vulnerability in Felix Welberg SIS Handball plugin <= 1.0.45 versions.
Felixwelberg Sis Handball
NA
CVE-2023-33924
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Felix Welberg SIS Handball allows SQL Injection.This issue affects SIS Handball: from n/a up to and including 1.0.45.
Felixwelberg Sis Handball
7.2
CVSSv2
CVE-2015-5465
Silicon Integrated Systems WindowsXP Display Manager (aka VGA Driver Manager and VGA Display Manager) 6.14.10.3930 allows local users to gain privileges via a crafted (1) 0x96002400 or (2) 0x96002404 IOCTL call.
Sis Windows Vga Display Manager 6.14.10.3930
1 EDB exploit
1 Github repository
4.6
CVSSv2
CVE-2015-5466
Silicon Integrated Systems XGI WindowsXP Display Manager (aka XGI VGA Driver Manager and VGA Display Manager) 6.14.10.1090 allows local users to gain privileges via a crafted 0x96002404 IOCTL call.
Sis Xgi Vga Display Manager 6.14.10.1090
1 EDB exploit
7.5
CVSSv2
CVE-2004-1332
Stack-based buffer overflow in the FTP daemon in HP-UX 11.11i, with the -v (debug) option enabled, allows remote malicious users to execute arbitrary code via a long command request.
Hp Hp-ux Series 800 10.20
Hp Hp-ux 11.11
Hp Hp-ux 10.01
Hp Sis
Hp Hp-ux 11.23
Hp Vvos 10.24
Hp Hp-ux 11.4
Hp Hp-ux Series 700 10.20
Hp Hp-ux 11.00
Hp Hp-ux 10.24
Hp Hp-ux 11.22
Hp Vvos 11.04
Hp Hp-ux 10.20
Hp Hp-ux 10.10
Hp Hp-ux 11.11i
9.3
CVSSv2
CVE-2007-2846
Heap-based buffer overflow in the SIS unpacker in avast! Anti-Virus Managed Client prior to 4.7.700 allows user-assisted remote malicious users to execute arbitrary code via a crafted SIS archive, resulting from an "integer cast around."
Avas!t Avast! Antivirus 4.6.394
Avast! Avast! Antivirus
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-23692
CVE-2012-1823
memory leak
CVE-2024-0627
CVE-2024-31402
privilege escalation
CVE-2024-36418
remote code execution
CVE-2024-27844
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »