Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
jerzy kramarz vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2014-5462
Multiple SQL injection vulnerabilities in OpenEMR 4.1.2 (Patch 7) and previous versions allow remote authenticated users to execute arbitrary SQL commands via the (1) layout_id parameter to interface/super/edit_layout.php; (2) form_patient_id, (3) form_drug_name, or (4) form_lot_...
Open-emr Openemr
1 EDB exploit
NA
CVE-2014-6389
backup.php in PHPCompta/NOALYSS prior to 6.7.2 allows remote malicious users to execute arbitrary commands via shell metacharacters in the d parameter.
Phpcompta Phpcompta\\/noalyss
1 EDB exploit
NA
CVE-2014-2043
SQL injection vulnerability in Resources/System/Templates/Data.aspx in Procentia IntelliPen prior to 1.1.18.1658 allows remote authenticated users to execute arbitrary SQL commands via the value parameter.
Procentia Intellipen
1 EDB exploit
NA
CVE-2014-7176
SQL injection vulnerability in Enalean Tuleap prior to 7.5.99.4 allows remote authenticated users to execute arbitrary SQL commands via the lobal_txt parameter to plugins/docman.
Enalean Tuleap
2 EDB exploits
NA
CVE-2014-5387
Multiple SQL injection vulnerabilities in EllisLab ExpressionEngine prior to 2.9.1 allow remote authenticated users to execute arbitrary SQL commands via the (1) column_filter or (2) category[] parameter to system/index.php or the (3) tbl_sort[0][] parameter in the comment module...
Ellislab Expressionengine 2..5.4
Expressionengine Expressionengine 2.5.3
Expressionengine Expressionengine 2.5.2
Expressionengine Expressionengine 2.5.1
Expressionengine Expressionengine 2.5.0
Ellislab Expressionengine 2.0.2
Ellislab Expressionengine 2.0.1
Ellislab Expressionengine 2.0.0
Expressionengine Expressionengine 2.8.0
Expressionengine Expressionengine 2.7.3
Ellislab Expressionengine 2.7.2
Ellislab Expressionengine 2.7.1
Expressionengine Expressionengine 2.2.1
Expressionengine Expressionengine 2.2.0
Expressionengine Expressionengine 2.1.5
Expressionengine Expressionengine 2.1.4
Expressionengine Expressionengine
Ellislab Expressionengine 2.6.1
Ellislab Expressionengine 2.5.5
Ellislab Expressionengine 2.3.1
Expressionengine Expressionengine 2.2.2
Expressionengine Expressionengine 2.1.3
NA
CVE-2014-1222
Directory traversal vulnerability in kcfinder/browse.php in Vtiger CRM prior to 6.0.0 Security patch 1 allows remote authenticated users to read arbitrary files via a .. (dot dot) in the file parameter in a download action. NOTE: it is likely that this issue is actually in the KC...
Vtiger Vtiger Crm
3 EDB exploits
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
bypass
open redirect
CVE-2024-4358
CVE-2024-24199
CVE-2024-5550
CVE-2024-5305
CVE-2024-30373
CVE-2024-1800
deserialization
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2