Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
super vulnerabilities and exploits
(subscribe to this query)
5.4
CVSSv2
CVE-2014-7396
The PocketKnife Bravo Super (aka com.wPocketKnifeBravo) application 0.54.13345.33028 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle malicious users to spoof servers and obtain sensitive information via a crafted certificate.
Pocketknife Bravo Super Project Pocketknife Bravo Super 0.54.13345.33028
NA
CVE-2023-27652
An issue found in Ego Studio SuperClean v.1.1.9 and v.1.1.5 allows an malicious user to gain privileges cause a denial of service via the update_info field of the _default_.xml file.
Egostudiogroup Super Clean 1.1.5
Egostudiogroup Super Clean 1.1.9
9
CVSSv2
CVE-2020-7998
An arbitrary file upload vulnerability has been discovered in the Super File Explorer app 1.0.1 for iOS. The vulnerability is located in the developer path that is accessible and hidden next to the root path. By default, there is no password set for the FTP or Web UI service.
Super File Explorer Project Super File Explorer 1.0.1
1 Github repository
5
CVSSv2
CVE-2020-21503
waimai Super Cms 20150505 has a logic flaw allowing malicious users to modify a price, before form submission, by observing data in a packet capture. By setting the index.php?m=gift&a=addsave credit parameter to -1, the product is sold for free.
Waimai Super Cms Project Waimai Super Cms 20150505
4.3
CVSSv2
CVE-2020-21504
waimai Super Cms 20150505 contains a cross-site scripting (XSS) vulnerability in the component /admin.php?&m=Public&a=login.
Waimai Super Cms Project Waimai Super Cms 20150505
4.3
CVSSv2
CVE-2020-21506
waimai Super Cms 20150505 contains a cross-site scripting (XSS) vulnerability in the component /admin.php?m=Config&a=add.
Waimai Super Cms Project Waimai Super Cms 20150505
4.3
CVSSv2
CVE-2014-100026
Cross-site scripting (XSS) vulnerability in readme.php in the April's Super Functions Pack plugin prior to 1.4.8 for WordPress allows remote malicious users to inject arbitrary web script or HTML via the page parameter. NOTE: some of these details are obtained from third par...
April's Super Functions Pack Project April's Super Functions Pack
6.8
CVSSv2
CVE-2006-7033
Cross-site scripting (XSS) vulnerability in Super Link Exchange Script 1.0 allows remote malicious users to inject arbitrary web script or HTML via IMG tags in the search box.
Super Link Exchange Script Super Link Exchange Script 1.0
7.5
CVSSv2
CVE-2006-7034
SQL injection vulnerability in directory.php in Super Link Exchange Script 1.0 might allow remote malicious users to execute arbitrary SQL queries via the cat parameter.
Super Link Exchange Script Super Link Exchange Script 1.0
7.8
CVSSv2
CVE-2006-7035
Directory traversal vulnerability in make_thumbnail.php in Super Link Exchange Script 1.0 allows remote malicious users to read arbitrary files via ".." sequences in the imgpath parameter.
Super Link Exchange Script Super Link Exchange Script 1.0
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
buffer overflow
type confusion
server-side request forgery
CVE-2024-38440
CVE-2024-27801
CVE-2024-5868
CVE-2024-0582
CVE-2024-37643
CVE-2024-3105
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »