Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
mustlive vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2012-6550
Cross-site scripting (XSS) vulnerability in ZeroClipboard prior to 1.1.4 allows remote malicious users to inject arbitrary web script or HTML via "the clipText returned from the flash object," a different vulnerability than CVE-2013-1808.
Zeroclipboard Project Zeroclipboard
Zeroclipboard Project Zeroclipboard 1.0.5
1 EDB exploit
4.3
CVSSv2
CVE-2012-2941
Cross-site scripting (XSS) vulnerability in search/ in Yandex.Server 2010 9.0 Enterprise allows remote malicious users to inject arbitrary web script or HTML via the text parameter.
Yandex Yandex.server 2010 9.0
1 EDB exploit
5
CVSSv2
CVE-2009-4170
WP-Cumulus Plug-in 1.20 for WordPress, and possibly other versions, allows remote malicious users to obtain sensitive information via a crafted request to wp-cumulus.php, probably without parameters, which reveals the installation path in an error message.
Roytanck Wp-cumulus 1.20
1 EDB exploit
4.3
CVSSv2
CVE-2007-4482
Cross-site scripting (XSS) vulnerability in index.php in the Pool 1.0.7 theme for WordPress allows remote malicious users to inject arbitrary web script or HTML via the PATH_INFO (PHP_SELF).
Wordpress Pool 1.0.7
1 EDB exploit
9
CVSSv2
CVE-2009-4112
Cacti 0.8.7e and previous versions allows remote authenticated administrators to gain privileges by modifying the "Data Input Method" for the "Linux - Get Memory Usage" setting to contain arbitrary commands.
Cacti Cacti 0.8.6f
Cacti Cacti 0.8.6c
Cacti Cacti 0.8.2
Cacti Cacti 0.8.1
Cacti Cacti 0.8.5a
Cacti Cacti 0.8.5
Cacti Cacti 0.8
Cacti Cacti 0.6.7
Cacti Cacti 0.8.4
Cacti Cacti 0.8.3a
Cacti Cacti 0.8.7a
Cacti Cacti
Cacti Cacti 0.8.7
Cacti Cacti 0.8.6i
Cacti Cacti 0.8.3
Cacti Cacti 0.8.2a
1 EDB exploit
4.3
CVSSv2
CVE-2007-5427
Cross-site scripting (XSS) vulnerability in the com_search component in Joomla! 1.0.13 and previous versions allows remote malicious users to inject arbitrary web script or HTML via the searchword parameter. NOTE: this might be related to CVE-2007-4189.1.
Joomla Com Search Component
Joomla Joomla
1 EDB exploit
4.3
CVSSv2
CVE-2007-5429
Cross-site scripting (XSS) vulnerability in index.php in Nucleus 3.01 allows remote malicious users to inject arbitrary web script or HTML via the archive parameter.
Nucleus Cms Nucleus Cms 3.01
1 EDB exploit
5.8
CVSSv2
CVE-2012-4842
Open redirect vulnerability in the web server in IBM Lotus Domino 8.5.x up to and including 8.5.3 allows remote malicious users to redirect users to arbitrary web sites and conduct phishing attacks via unspecified vectors.
Ibm Lotus Domino 8.5.1.2
Ibm Lotus Domino 8.5.1
Ibm Lotus Domino 8.5.2.4
Ibm Lotus Domino 8.5.3.0
Ibm Lotus Domino 8.5.1.3
Ibm Lotus Domino 8.5.0
Ibm Lotus Domino 8.5.2.2
Ibm Lotus Domino 8.5.2.1
Ibm Lotus Domino 8.5.0.1
Ibm Lotus Domino 8.5.1.5
Ibm Lotus Domino 8.5.2.0
Ibm Lotus Domino 8.5.2.3
Ibm Lotus Domino 8.5.1.1
Ibm Lotus Domino 8.5.1.4
4.3
CVSSv2
CVE-2005-4053
Cross-site scripting (XSS) vulnerability in coWiki 0.3.4 allows remote malicious users to inject arbitrary web script or HTML via the q parameter, as demonstrated using 26.html.
Cowiki Cowiki 0.3.4
1 EDB exploit
7.5
CVSSv2
CVE-2010-4899
SQL injection vulnerability in c.php in CMS WebManager-Pro prior to 8.1 allows remote malicious users to execute arbitrary SQL commands via the id parameter.
Webmanager-pro Cms Webmanager-pro
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-7073
CVE-2024-5496
CVE-2024-5495
XPath injection
bypass
CVE-2024-30043
CVE-2024-24919
denial of service
CVE-2024-35468
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
NEXT »