Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
pro search pro search vulnerabilities and exploits
(subscribe to this query)
9.3
CVSSv2
CVE-2013-0733
Untrusted search path vulnerability in Corel PaintShop Pro X5 and X6 16.0.0.113, 15.2.0.2, and previous versions allows local users to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse dwmapi.dll that is located in the same folder as a .jpg file.
Corel Paintshop Pro X6
Corel Paintshop Pro X5
NA
CVE-2018-25055
A vulnerability was found in FarCry Solr Pro Plugin up to 1.5.x. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file packages/forms/solrProSearch.cfc of the component Search Handler. The manipulation of the argument suggesti...
Farcry Solr Pro Project Farcry Solr Pro
10
CVSSv2
CVE-2005-2840
Multiple unknown vulnerabilities in MAXdev MD-Pro 1.0.72 and previous versions have unknown impact and unspecified attack vectors, in one or more of the (1) Download, (2) Search, (3) Web links, (4) Blocks, (5) Messages, (6) News, (7) Comments, (8) Settings, (9) Stats or (10) subj...
Maxdev Md-pro
NA
CVE-2023-6155
The Quiz Maker WordPress plugin prior to 6.4.9.5 does not adequately authorize the `ays_quiz_author_user_search` AJAX action, allowing an unauthenticated malicious user to perform a search for users of the system, ultimately leaking user email addresses.
Ays-pro Quiz Maker
7.5
CVSSv2
CVE-2008-2914
SQL injection vulnerability in jobseekers/JobSearch3.php (aka the search module) in PHP JOBWEBSITE PRO allows remote malicious users to execute arbitrary SQL commands via the (1) kw or (2) position parameter. NOTE: some of these details are obtained from third party information.
Preprojects Php Jobwebsite Pro
1 EDB exploit
4.3
CVSSv2
CVE-2007-3540
Multiple cross-site scripting (XSS) vulnerabilities in search.asp in rwAuction Pro 5.0 allow remote malicious users to inject arbitrary web script or HTML via the (1) search, (2) show, (3) searchtype, (4) catid, and (5) searchtxt parameters, a different version and vectors than C...
Rainworx Rwauction Pro 5.0
4.3
CVSSv2
CVE-2011-5177
Multiple cross-site scripting (XSS) vulnerabilities in admin/controller.php in eSyndiCat Pro 2.3.05 allow remote malicious users to inject arbitrary web script or HTML via the (1) id parameter to the admins (2) blocks, (3) articles, or (4) suggest-category; or (5) sort parameter ...
Esyndicat Esyndicat Pro 2.3.05
1 EDB exploit
7.5
CVSSv2
CVE-2010-4996
SQL injection vulnerability in ogp_show.php in esoftpro Online Guestbook Pro 5.1 allows remote malicious users to execute arbitrary SQL commands via the search parameter.
Esoftpro Online Guestbook Pro 5.1
2 EDB exploits
NA
CVE-2022-34848
Uncontrolled search path for the Intel(R) NUC Pro Software Suite before version 2.0.0.3 may allow an authenticated user to potentially enable escalation of privilege via local access.
Intel Nuc Pro Software Suite
4.4
CVSSv2
CVE-2021-22775
A CWE-427: Uncontrolled Search Path Element vulnerability exists in GP-Pro EX,V4.09.250 and prior, that could cause local code execution with elevated privileges when installing the software.
Schneider-electric Gp-pro Ex
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-29895
blind SQL injection
CVE-2024-5064
CVE-2023-52677
CVE-2023-52682
CVE-2024-30051
CVE-2024-35849
remote attackers
remote
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »