Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
metasploit vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2013-4211
A Code Execution Vulnerability exists in OpenX Ad Server 2.8.10 due to a backdoor in flowplayer-3.1.1.min.js library, which could let a remote malicious user execute arbitrary PHP code
Openx Openx 2.8.10
1 EDB exploit
6.5
CVSSv2
CVE-2015-6967
Unrestricted file upload vulnerability in the My Image plugin in Nibbleblog prior to 4.0.5 allows remote administrators to execute arbitrary code by uploading a file with an executable extension, then accessing it via a direct request to the file in content/private/plugins/my_ima...
Nibbleblog Nibbleblog
1 EDB exploit
7 Github repositories
9.3
CVSSv2
CVE-2013-4800
Unspecified vulnerability in HP LoadRunner prior to 11.52 allows remote malicious users to execute arbitrary code via unknown vectors, aka ZDI-CAN-1735.
Hp Loadrunner 9.50.0
Hp Loadrunner 9.51
Hp Loadrunner 9.52
Hp Loadrunner
Hp Loadrunner 11.50
Hp Loadrunner 11.0.0.0
Hp Loadrunner 9.0.0
1 EDB exploit
7.5
CVSSv2
CVE-2013-0803
A PHP File Upload Vulnerability exists in PolarBear CMS 2.5 via upload.php, which could let a malicious user execute arbitrary code.
Polarbear Cms Project Polarbear Cms 2.5
1 EDB exploit
10
CVSSv2
CVE-2012-0202
Multiple stack-based buffer overflows in tm1admsd.exe in the Admin Server in IBM Cognos TM1 9.4.x and 9.5.x prior to 9.5.2 FP2 allow remote malicious users to cause a denial of service (daemon crash) or possibly execute arbitrary code via crafted data.
Ibm Cognos Tm1 9.4.1.3
Ibm Cognos Tm1 9.5.1
Ibm Cognos Tm1 9.4.1
Ibm Cognos Tm1 9.5.2
1 EDB exploit
6.5
CVSSv2
CVE-2017-16709
Crestron Airmedia AM-100 devices with firmware prior to 1.6.0 and AM-101 devices with firmware prior to 2.7.0 allows remote authenticated administrators to execute arbitrary code via unspecified vectors.
Crestron Airmedia Am-100 Firmware
Crestron Airmedia Am-101 Firmware
1 EDB exploit
6.5
CVSSv2
CVE-2015-5453
Watchguard XCS 9.2 and 10.0 before build 150522 allow remote authenticated users to execute arbitrary commands via shell metacharacters in the id parameter to ADMIN/mailqueue.spl.
Watchguard Xcs 9.2
Watchguard Xcs 10.0
1 EDB exploit
4.3
CVSSv2
CVE-2014-2314
Directory traversal vulnerability in the Issue Collector plugin in Atlassian JIRA prior to 6.0.4 allows remote malicious users to create arbitrary files via unspecified vectors.
Atlassian Jira 6.0
Atlassian Jira 6.0.2
Atlassian Jira
Atlassian Jira 6.0.1
1 EDB exploit
5
CVSSv2
CVE-2017-17692
Samsung Internet Browser 5.4.02.3 allows remote malicious users to bypass the Same Origin Policy and obtain sensitive information via crafted JavaScript code that redirects to a child tab and rewrites the innerHTML property.
Samsung Internet Browser 5.4.02.3
1 EDB exploit
6.8
CVSSv2
CVE-2014-5468
A File Inclusion vulnerability exists in Railo 4.2.1 and previous versions via a specially-crafted URL request to the thumbnail.cfm to specify a malicious PNG file, which could let a remote malicious user obtain sensitive information or execute arbitrary code.
Getrailo Railo
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
privilege escalation
CVE-2024-20696
CVE-2024-29829
CVE-2024-33999
CVE-2024-35646
physical
CVE-2024-24919
CVE-2024-31030
local users
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
5
6
7
8
9
10
NEXT »