Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
activity vulnerabilities and exploits
(subscribe to this query)
8.8
CVSSv3
CVE-2018-15877
The Plainview Activity Monitor plugin prior to 20180826 for WordPress is vulnerable to OS command injection via shell metacharacters in the ip parameter of a wp-admin/admin.php?page=plainview_activity_monitor&tab=activity_tools request.
Plainview Activity Monitor Project Plainview Activity Monitor
1 EDB exploit
2 Github repositories
NA
CVE-2008-1132
Untrusted search path vulnerability in src/mainwindow.c in Net Activity Viewer 0.2.1 allows local users with Net Activity Viewer privileges to execute arbitrary code via a malicious gksu program, which is invoked during the Restart As Root action.
Net Activity Viewer Net Activity Viewer 0.2.1
8.8
CVSSv3
CVE-2016-0239
IBM Security Guardium Database Activity Monitor 9.x up to and including 9.5 before p700 and 10.x up to and including 10.0.1 before p100 allows remote authenticated users to make HTTP requests with administrator privileges via unspecified vectors.
Ibm Security Guardium Database Activity Monitor 9.0
Ibm Security Guardium Database Activity Monitor 9.5
Ibm Security Guardium Database Activity Monitor 10.0.1
Ibm Security Guardium Database Activity Monitor 9.1
Ibm Security Guardium Database Activity Monitor 10.0
4.4
CVSSv3
CVE-2018-1368
IBM Security Guardium Database Activity Monitor 9.0, 9.1, and 9.5 could allow a local user with low privileges to view report pages and perform some actions that only an admin should be performing, so there is risk that someone not authorized can change things that they are not s...
Ibm Security Guardium Database Activity Monitor 9.0
Ibm Security Guardium Database Activity Monitor 9.5
Ibm Security Guardium Database Activity Monitor 9.1
9.3
CVSSv3
CVE-2022-31528
The bonn-activity-maps/bam_annotation_tool repository through 2021-08-31 on GitHub allows absolute path traversal because the Flask send_file function is used unsafely.
Bonn Activity Maps Annotation Tool Project Bonn Activity Maps Annotation Tool
7.2
CVSSv3
CVE-2022-38267
School Activity Updates with SMS Notification v1.0 exists to contain a SQL injection vulnerability via the component /modules/user/index.php?view=edit&id=.
School Activity Updates With Sms Notification Project School Activity Updates With Sms Notification 1.0
7.2
CVSSv3
CVE-2022-38269
School Activity Updates with SMS Notification v1.0 exists to contain a SQL injection vulnerability via the component /modules/modstudent/index.php?view=edit&id=.
School Activity Updates With Sms Notification Project School Activity Updates With Sms Notification 1.0
9.8
CVSSv3
CVE-2022-39976
School Activity Updates with SMS Notification v1.0 exists to contain a SQL injection vulnerability via the id parameter at /modules/announcement/index.php?view=edit&id=.
School Activity Updates With Sms Notification Project School Activity Updates With Sms Notification 1.0
7.2
CVSSv3
CVE-2022-38878
School Activity Updates with SMS Notification v1.0 is vulnerable to SQL Injection via /activity/admin/modules/event/index.php?view=edit&id=.
School Activity Updates With Sms Notification Project School Activity Updates With Sms Notification 1.0
7.2
CVSSv3
CVE-2022-38268
School Activity Updates with SMS Notification v1.0 exists to contain a SQL injection vulnerability via the component /modules/autonumber/index.php?view=edit&id=.
School Activity Updates With Sms Notification Project School Activity Updates With Sms Notification 1.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
TCP
CVE-2024-4577
CVE-2024-2695
CVE-2024-31870
injection
CVE-2024-3813
arbitrary code
CVE-2024-27801
CVE-2024-30120
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »