Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
noam rathaus vulnerabilities and exploits
(subscribe to this query)
755
VMScore
CVE-2004-2551
Multiple SQL injection vulnerabilities in Layton HelpBox 3.0.1 allow remote malicious users to execute arbitrary SQL commands via (1) the sys_comment_id parameter in editcommentenduser.asp, (2) the sys_suspend_id parameter in editsuspensionuser.asp, (3) the table parameter in exp...
Layton Technology Helpbox 3.0.1
1 EDB exploit
755
VMScore
CVE-2004-2562
SQL injection vulnerability in jobedit.asp in Leigh Business Enterprises (LBE) Web Helpdesk prior to 4.0.0.81 allows remote malicious users to execute arbitrary SQL commands via the id parameter.
Leigh Business Enterprises Web Helpdesk 4.0.0.66
Leigh Business Enterprises Web Helpdesk 1.2 1999-07-00
Leigh Business Enterprises Web Helpdesk 4.0.0.80
Leigh Business Enterprises Web Helpdesk 4.0.0.78
Leigh Business Enterprises Web Helpdesk 4.0.0.75
Leigh Business Enterprises Web Helpdesk 4.0.0.64
Leigh Business Enterprises Web Helpdesk 4.0.0.71
Leigh Business Enterprises Web Helpdesk 4.0.0.59
Leigh Business Enterprises Web Helpdesk 4.0.0.72
Leigh Business Enterprises Web Helpdesk 1.3 2000-07-00
Leigh Business Enterprises Web Helpdesk 4.0.0.79
Leigh Business Enterprises Web Helpdesk 4.0.0.53
Leigh Business Enterprises Web Helpdesk 4.0.0.76
Leigh Business Enterprises Web Helpdesk 4.0.0.73
Leigh Business Enterprises Web Helpdesk 4.0.0.40 2001-07-21
Leigh Business Enterprises Web Helpdesk 4.0.0.43 2001-09-28
Leigh Business Enterprises Web Helpdesk 4.0.0.41 2001-08-27
Leigh Business Enterprises Web Helpdesk 4.0.0.63
Leigh Business Enterprises Web Helpdesk 4.0.0.54
Leigh Business Enterprises Web Helpdesk 4.0.0.65
Leigh Business Enterprises Web Helpdesk 4.0.0.52
Leigh Business Enterprises Web Helpdesk 4.0.0.60
1 EDB exploit
585
VMScore
CVE-2004-2563
Serena TeamTrack 6.1.1 allows remote malicious users to obtain sensitive information such as user names, versions, and database information, and conduct cross-site scripting (XSS) attacks, via a direct request to tmtrack.dll with modified LoginPage and Template parameters.
Serena Software Serena Teamtrack 6.1.1
1 EDB exploit
755
VMScore
CVE-2004-2561
Multiple SQL injection vulnerabilities in Internet Software Sciences Web+Center 4.0.1 allow remote malicious users to execute arbitrary SQL commands via (1) the ISS_TECH_CENTER_LOGIN cookie in search.asp and (2) one or more cookies in DoCustomerOptions.asp.
Internet Sofware Sciences Web\\+center 4.0.1
1 EDB exploit
505
VMScore
CVE-2004-2736
Polar HelpDesk 3.0 allows remote malicious users to bypass authentication by setting the UserId and UserType values in a cookie.
Polar Software Helpdesk 3.0
1 EDB exploit
755
VMScore
CVE-2006-5444
Integer overflow in the get_input function in the Skinny channel driver (chan_skinny.c) in Asterisk 1.0.x prior to 1.0.12 and 1.2.x prior to 1.2.13, as used by Cisco SCCP phones, allows remote malicious users to execute arbitrary code via a certain dlen value that passes a signed...
Digium Asterisk 0.4
Digium Asterisk 0.7
Digium Asterisk 1.0.8
Digium Asterisk 1.0.9
Digium Asterisk 1.2.9
Digium Asterisk 1.2 Beta1
Digium Asterisk 0.2
Digium Asterisk 0.3
Digium Asterisk 1.0.11
Digium Asterisk 1.0.7
Digium Asterisk 1.2.7
Digium Asterisk 1.2.8
Digium Asterisk 0.1.7
Digium Asterisk 0.1.8
Digium Asterisk 0.7.1
Digium Asterisk 0.7.2
Digium Asterisk 1.2.10
Digium Asterisk 1.2.11
Digium Asterisk 1.2 Beta2
Digium Asterisk 0.1.9
Digium Asterisk 0.1.9.1
Digium Asterisk 0.9
1 EDB exploit
935
VMScore
CVE-2002-2360
The RPC module in Webmin 0.21 up to and including 0.99, when installed without root or admin privileges, allows remote malicious users to read and write to arbitrary files and execute arbitrary commands via remote_foreign_require and remote_foreign_call requests.
Webmin Webmin 0.41
Webmin Webmin 0.51
Webmin Webmin 0.88
Webmin Webmin 0.92
Webmin Webmin 0.970
Webmin Webmin 0.990
Webmin Webmin 0.21
Webmin Webmin 0.22
Webmin Webmin 0.31
Webmin Webmin 0.93
Webmin Webmin 0.94
Webmin Webmin 0.950
Webmin Webmin 0.960
Webmin Webmin 0.77
Webmin Webmin 0.78
Webmin Webmin 0.79
Webmin Webmin 0.80
Webmin Webmin 0.42
Webmin Webmin 0.76
Webmin Webmin 0.85
Webmin Webmin 0.91
Webmin Webmin 0.980
1 EDB exploit
755
VMScore
CVE-2004-2218
SQL injection vulnerability in pmwh.php in PHPMyWebHosting 0.3.4 and previous versions allows remote malicious users to modify SQL statements via the password parameter.
Phpmywebhosting Phpmywebhosting
1 EDB exploit
760
VMScore
CVE-2005-0305
CRLF injection vulnerability in users.php in Siteman 1.1.10 and previous versions allows remote malicious users to add arbitrary users and gain privileges via the line parameter in a docreate operation.
Siteman Siteman 1.1.10
Siteman Siteman 1.1.9
2 EDB exploits
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-20065
open redirect
CVE-2024-1086
path traversal
CVE-2024-29825
XXE
CVE-2024-29822
CVE-2024-20696
CVE-2024-3564
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2