Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
super vulnerabilities and exploits
(subscribe to this query)
383
VMScore
CVE-2020-21504
waimai Super Cms 20150505 contains a cross-site scripting (XSS) vulnerability in the component /admin.php?&m=Public&a=login.
Waimai Super Cms Project Waimai Super Cms 20150505
383
VMScore
CVE-2020-21505
waimai Super Cms 20150505 contains a cross-site scripting (XSS) vulnerability in the component /admin.php/Link/addsave.
Waimai Super Cms Project Waimai Super Cms 20150505
383
VMScore
CVE-2020-21506
waimai Super Cms 20150505 contains a cross-site scripting (XSS) vulnerability in the component /admin.php?m=Config&a=add.
Waimai Super Cms Project Waimai Super Cms 20150505
NA
CVE-2023-27652
An issue found in Ego Studio SuperClean v.1.1.9 and v.1.1.5 allows an malicious user to gain privileges cause a denial of service via the update_info field of the _default_.xml file.
Egostudiogroup Super Clean 1.1.5
Egostudiogroup Super Clean 1.1.9
801
VMScore
CVE-2020-7998
An arbitrary file upload vulnerability has been discovered in the Super File Explorer app 1.0.1 for iOS. The vulnerability is located in the developer path that is accessible and hidden next to the root path. By default, there is no password set for the FTP or Web UI service.
Super File Explorer Project Super File Explorer 1.0.1
1 Github repository
605
VMScore
CVE-2006-7033
Cross-site scripting (XSS) vulnerability in Super Link Exchange Script 1.0 allows remote malicious users to inject arbitrary web script or HTML via IMG tags in the search box.
Super Link Exchange Script Super Link Exchange Script 1.0
694
VMScore
CVE-2006-7035
Directory traversal vulnerability in make_thumbnail.php in Super Link Exchange Script 1.0 allows remote malicious users to read arbitrary files via ".." sequences in the imgpath parameter.
Super Link Exchange Script Super Link Exchange Script 1.0
755
VMScore
CVE-2018-17391
SQL Injection exists in authors_post.php in Super Cms Blog Pro 1.0 via the author parameter.
Super Cms Blog Pro Project Super Cms Blog Pro 1.0
1 EDB exploit
383
VMScore
CVE-2014-100026
Cross-site scripting (XSS) vulnerability in readme.php in the April's Super Functions Pack plugin prior to 1.4.8 for WordPress allows remote malicious users to inject arbitrary web script or HTML via the page parameter. NOTE: some of these details are obtained from third par...
April\\'s Super Functions Pack Project April\\'s Super Functions Pack
NA
CVE-2022-4484
The Social Share, Social Login and Social Comments Plugin WordPress plugin prior to 7.13.44 does not validate and escape some of its shortcode attributes before outputting them back in the page, which could allow users with a role as low as contributor to perform Stored Cross-Sit...
Heateor Super Socializer
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-33572
CVE-2024-24919
CVE-2024-0230
CVE-2024-32714
HTML injection
local file inclusion
CVE-2024-31098
CVE-2024-31244
privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »