Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
rgod vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2005-3200
Multiple cross-site scripting (XSS) vulnerabilities in Utopia News Pro (UNP) 1.1.3 and 1.1.4 allow remote malicious users to inject arbitrary web script or HTML via (1) the sitetitle parameter in header.php and (2) the version and (3) query_count parameters in footer.php.
Utopia Software Utopia News Pro 1.1.4
Utopia Software Utopia News Pro 1.1.3
2 EDB exploits
NA
CVE-2007-2856
Buffer overflow in the Dart Communications PowerTCP ZIP Compression ActiveX control in DartZip.dll 1.8.5.3, when Internet Explorer 6 is used, allows user-assisted remote malicious users to execute arbitrary code via a long first argument to the QuickZip function, a related issue ...
Dart Powertcp Zip Compression 1.8.5.3
2 EDB exploits
NA
CVE-2007-2222
Multiple buffer overflows in the (1) ActiveListen (Xlisten.dll) and (2) ActiveVoice (Xvoice.dll) speech controls, as used by Microsoft Internet Explorer 5.01, 6, and 7, allow remote malicious users to execute arbitrary code via a crafted ActiveX object that triggers memory corrup...
Microsoft Internet Explorer 5.01
Microsoft Internet Explorer 6
Microsoft Internet Explorer 7.0
2 EDB exploits
NA
CVE-2005-4208
Directory traversal vulnerability in Flatnuke 2.5.6 allows remote malicious users to access arbitrary files via a .. (dot dot) and null byte (%00) in the id parameter of the read module.
Flatnuke Flatnuke 2.5.6
2 EDB exploits
NA
CVE-2006-6661
Variable overwrite vulnerability in blog.php in PHP-Update 2.7 and previous versions allows remote malicious users to overwrite arbitrary program variables and execute arbitrary PHP code via multiple vectors that use the extract function, as demonstrated by the (1) f, (2) newmess...
Php-update Php-update
1 EDB exploit
NA
CVE-2006-1031
config/config_inc.php in iGENUS Webmail 2.02 and previous versions allows remote malicious users to include arbitrary local files via the SG_HOME parameter.
Igenus Igenus Webmail 2.0
Igenus Igenus Webmail 2.01
Igenus Igenus Webmail 2.02
1 EDB exploit
NA
CVE-2007-2667
Buffer overflow in the DB Software Laboratory VImpX ActiveX control in VImpX.ocx 4.7.3 allows remote malicious users to execute arbitrary code via a long LogFile parameter.
Db Soft Lab Vimp X 4.7.3
1 EDB exploit
NA
CVE-2006-3533
Multiple cross-site scripting (XSS) vulnerabilities in Pivot 1.30 RC2 and previous versions, when register_globals is enabled, allow remote malicious users to inject arbitrary web script or HTML via the (1) fg, (2) line1, (3) line2, (4) bg, (5) c1, (6) c2, (7) c3, and (8) c4 para...
Pivot Pivot 1.30 Rc2
1 EDB exploit
NA
CVE-2006-3996
SQL injection vulnerability in links/index.php in ATutor 1.5.3.1 and previous versions allows remote authenticated users to execute arbitrary SQL commands via the (1) desc or (2) asc parameters.
Adaptive Technology Resource Centre Atutor
1 EDB exploit
NA
CVE-2006-3102
Race condition in articles/BitArticle.php in Bitweaver 1.3, when run on Apache with the mod_mime extension, allows remote malicious users to execute arbitrary PHP code by uploading arbitrary files with double extensions, which are stored for a small period of time under the webro...
Bitweaver Bitweaver 1.3
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
firewall
CVE-2024-35649
stored XSS
CVE-2022-28654
CVE-2020-35153
CVE-2024-27348
CVE-2022-28652
local users
CVE-2017-3506
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »