Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
arora vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2011-0108
Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual who requested this candidate did not associate it with any vulnerability during 2011. Notes: none
1 EDB exploit
NA
CVE-2007-6455
Multiple cross-site scripting (XSS) vulnerabilities in index.php in Mambo 4.6.2 allow remote malicious users to inject arbitrary web script or HTML via the (1) Itemid parameter in a com_frontpage option and the (2) option parameter.
Mambo Mambo 4.6.2
1 EDB exploit
NA
CVE-2008-6266
SQL injection vulnerability in links.php in Appalachian State University phpWebSite allows remote malicious users to execute arbitrary SQL commands via the cid parameter in a viewlink action.
Appstate Phpwebsite 0.9.3-3
Appstate Phpwebsite 0.9.3-2
Appstate Phpwebsite 0.9.3-4
Appstate Phpwebsite 0.9.3-1
Appstate Phpwebsite 0.9.3
Appstate Phpwebsite 0.8.3
Appstate Phpwebsite 0.8.2
Appstate Phpwebsite 0.7.3
1 EDB exploit
NA
CVE-2008-4741
Directory traversal vulnerability in index.php in FAR-PHP 1.00, when magic_quotes_gpc is disabled, allows remote malicious users to read arbitrary files via a .. (dot dot) in the c parameter.
Far-php Far-php 1.00
1 EDB exploit
6.1
CVSSv3
CVE-2021-3186
A Stored Cross-site scripting (XSS) vulnerability in /main.html Wifi Settings in Tenda AC5 AC1200 version V15.03.06.47_multi allows remote malicious users to inject arbitrary web script or HTML via the Wifi Name parameter.
Tenda Ac1200 Firmware 15.03.06.47 Multi
NA
CVE-2010-3148
Untrusted search path vulnerability in Microsoft Visio 2003 SP3 allows local users to gain privileges via a Trojan horse mfc71enu.dll file in the current working directory, as demonstrated by a directory that contains a .vsd, .vdx, .vst, or .vtx file, aka "Microsoft Visio In...
Microsoft Visio 2003
1 EDB exploit
NA
CVE-2008-6213
SQL injection vulnerability in mypage.php in Harlandscripts Pro Traffic One allows remote malicious users to execute arbitrary SQL commands via the trg parameter.
Harlandscripts Pro Traffic One -
1 EDB exploit
NA
CVE-2010-3143
Untrusted search path vulnerability in Microsoft Windows Contacts allows local users, and possibly remote attackers, to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse wab32res.dll that is located in the same folder as a .contact, .group, .p7c, .vcf, o...
Microsoft Windows
3 EDB exploits
NA
CVE-2010-3147
Untrusted search path vulnerability in wab.exe 6.00.2900.5512 in Windows Address Book in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP1 and SP2, Windows Server 2008 Gold, SP2, and R2, and Windows 7 allows local users to gain privileges via a Trojan h...
Microsoft Outlook Express 6.00.2900.5512
Microsoft Windows 2003 Server
Microsoft Windows 7
Microsoft Windows 7 -
Microsoft Windows Server 2003
Microsoft Windows Server 2008
Microsoft Windows Server 2008 -
Microsoft Windows Vista
Microsoft Windows Vista -
Microsoft Windows Xp
Microsoft Windows Xp -
3 EDB exploits
NA
CVE-2010-1598
phpThumb.php in phpThumb() 1.7.9 and possibly other versions, when ImageMagick is installed, allows remote malicious users to execute arbitrary commands via the fltr[] parameter, as discovered in the wild in April 2010. NOTE: the provenance of this information is unknown; the det...
Silisoftware Phpthumb\\(\\) 1.7.9
1 Github repository
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
inject
CVE-2024-34001
CVE-2024-37018
LFI
CVE-2024-1275
CVE-2024-1086
CSRF
CVE-2024-31030
CVE-2024-24919
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2