Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
htbridge.ch vulnerabilities and exploits
(subscribe to this query)
7.2
CVSSv3
CVE-2013-2267
PHP Code Injection vulnerability in FUDforum Bulletin Board Software 3.0.4 could allow remote malicious users to execute arbitrary code on the system.
Fudforum Fudforum 3.0.4
1 EDB exploit
7.5
CVSSv3
CVE-2013-2474
Directory traversal vulnerability in AWS XMS 2.5 allows remote malicious users to view arbitrary files via the 'what' parameter.
Aws-dms Aws Xms 2.5
1 EDB exploit
NA
CVE-2012-5879
An ActiveX control in McHealthCheck.dll in McAfee Virtual Technician (MVT) and ePO-MVT 6.5.0.2101 and previous versions allows remote malicious users to modify or create arbitrary files via a full pathname argument to the Save method.
Mcafee Mcafee Virtual Technician
Mcafee Mcafee Virtual Technician 6.3.0.1911
Mcafee Epo Mcafee Virtual Technician 1.0.8
Mcafee Epo Mcafee Virtual Technician 1.0
Mcafee Epo Mcafee Virtual Technician 1.0.9
Mcafee Epo Mcafee Virtual Technician 1.0.4.0
Mcafee Epo Mcafee Virtual Technician 1.0.7
Mcafee Epo Mcafee Virtual Technician
1 EDB exploit
NA
CVE-2013-2712
Cross-site scripting (XSS) vulnerability in services/get_article.php in KrisonAV CMS prior to 3.0.2 allows remote malicious users to inject arbitrary web script or HTML via the content parameter.
Krisonav Krisonav 0.9.6
Krisonav Krisonav 0.9.5
Krisonav Krisonav 0.9.4
Krisonav Krisonav 0.9.3
Krisonav Krisonav 2.1.6
Krisonav Krisonav 2.1.5
Krisonav Krisonav 2.1.3
Krisonav Krisonav 2.0.1
Krisonav Krisonav 3.0.0
Krisonav Krisonav 1.1.35
Krisonav Krisonav 1.0.1
Krisonav Krisonav 0.9.7
Krisonav Krisonav
Krisonav Krisonav 1.0.2
Krisonav Krisonav 1.0.0
1 EDB exploit
NA
CVE-2013-2713
Cross-site request forgery (CSRF) vulnerability in users_maint.html in KrisonAV CMS prior to 3.0.2 allows remote malicious users to hijack the authentication of administrators for requests that create user accounts via a crafted request.
Krisonav Krisonav 0.9.7
Krisonav Krisonav 0.9.6
Krisonav Krisonav 0.9.5
Krisonav Krisonav 0.9.4
Krisonav Krisonav 2.1.6
Krisonav Krisonav 2.1.5
Krisonav Krisonav 2.1.3
Krisonav Krisonav 2.0.1
Krisonav Krisonav 3.0.0
Krisonav Krisonav 1.1.35
Krisonav Krisonav 1.0.1
Krisonav Krisonav
Krisonav Krisonav 1.0.2
Krisonav Krisonav 1.0.0
Krisonav Krisonav 0.9.3
1 EDB exploit
NA
CVE-2013-2945
SQL injection vulnerability in blogs/admin.php in b2evolution prior to 4.1.7 allows remote authenticated administrators to execute arbitrary SQL commands via the show_statuses[] parameter. NOTE: this can be leveraged using CSRF to allow remote unauthenticated malicious users to e...
B2evolution B2evolution 4.1.5
B2evolution B2evolution 4.1.4
B2evolution B2evolution 4.1.3
B2evolution B2evolution 4.1.2
B2evolution B2evolution
B2evolution B2evolution 4.1.1
B2evolution B2evolution 4.1.0
1 EDB exploit
NA
CVE-2013-1668
The uploadFile function in upload/index.php in CosCMS prior to 1.822 allows remote administrators to execute arbitrary commands via shell metacharacters in the name of an uploaded file.
Coscms Coscms
Coscms Coscms 1.41
Coscms Coscms 1.3
1 EDB exploit
NA
CVE-2013-1468
Cross-site request forgery (CSRF) vulnerability in the LocalFiles Editor plugin in Piwigo prior to 2.4.7 allows remote malicious users to hijack the authentication of administrators for requests that create arbitrary PHP files via unspecified vectors.
Piwigo Piwigo 2.0.4
Piwigo Piwigo 2.0.5
Piwigo Piwigo 2.0.2
Piwigo Piwigo 2.0.3
Piwigo Piwigo 2.3.4
Piwigo Piwigo 2.0
Piwigo Piwigo 2.1.5
Piwigo Piwigo 1.6.2
Piwigo Piwigo 2.2.3
Piwigo Piwigo 1.5.0
Piwigo Piwigo 2.2.2
Piwigo Piwigo 2.0.10
Piwigo Piwigo 2.0.9
Piwigo Piwigo 1.1.0
Piwigo Piwigo 1.0.2
Piwigo Piwigo 1.3.3
Piwigo Piwigo 1.3.2
Piwigo Piwigo 2.4.4
Piwigo Piwigo 2.4.5
Piwigo Piwigo 2.3.5
Piwigo Piwigo 2.4.0
Piwigo Piwigo 2.4.1
1 EDB exploit
NA
CVE-2013-1469
Directory traversal vulnerability in install.php in Piwigo prior to 2.4.7 allows remote malicious users to read and delete arbitrary files via a .. (dot dot) in the dl parameter.
Piwigo Piwigo 2.2.4
Piwigo Piwigo 2.2.3
Piwigo Piwigo 2.2.2
Piwigo Piwigo 2.2.1
Piwigo Piwigo 2.0.2
Piwigo Piwigo 2.0.3
Piwigo Piwigo 2.0.0
Piwigo Piwigo 2.0.1
Piwigo Piwigo 1.2.0
Piwigo Piwigo 1.3.1
Piwigo Piwigo 1.3.0
Piwigo Piwigo 1.6.2
Piwigo Piwigo 1.7.0
Piwigo Piwigo 2.4.0
Piwigo Piwigo 2.3.5
Piwigo Piwigo 2.3.4
Piwigo Piwigo 2.3.3
Piwigo Piwigo 2.1.3
Piwigo Piwigo 2.1.2
Piwigo Piwigo 2.1.1
Piwigo Piwigo 2.1.0
Piwigo Piwigo 1.0.0
2 EDB exploits
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-23316
SQL injection
type confusion
CVE-2024-20697
CVE-2024-4344
local
CVE-2024-30043
CVE-2024-3821
CVE-2024-5041
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2