Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
webapp vulnerabilities and exploits
(subscribe to this query)
10
CVSSv2
CVE-2005-0927
Unknown vulnerability in subs.pl for WebAPP 0.9.9 up to and including 0.9.9.2 has unknown impact and attack vectors, probably involving shell metacharacters or .. sequences.
Web-app.org Webapp 0.9.9
Web-app.org Webapp 0.9.9.2
Web-app.org Webapp 0.9.9.1
7.5
CVSSv2
CVE-2017-1002002
Vulnerability in wordpress plugin webapp-builder v2.0, The plugin includes unlicensed vulnerable CMS software from http://www.invedion.com/
Webapp-builder Project Webapp-builder 2.0
1 EDB exploit
4.3
CVSSv2
CVE-2006-6687
Cross-site scripting (XSS) vulnerability in Web Automated Perl Portal (WebAPP) 0.9.9.4, and 0.9.9.3.4 Network Edition (NE) (aka WebAPP.NET), allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors. NOTE: The provenance of this information is u...
Web-app.net Webapp 0.9.9.4
Web-app.net Webapp 0.9.9.3.4
7.5
CVSSv2
CVE-2006-6688
Web Automated Perl Portal (WebAPP) 0.9.9.4, and 0.9.9.3.4 Network Edition (NE) (aka WebAPP.NET) allows remote malicious users to bypass filtering mechanisms via unknown vectors. NOTE: The provenance of this information is unknown; the details are obtained solely from third party ...
Web-app.net Webapp 0.9.9.4
Web-app.net Webapp 0.9.9.3.4 Ne
4.3
CVSSv2
CVE-2017-11666
Cross-site scripting (XSS) vulnerability in js/ViewerPanel.js in the file previewer plugin in Kopano WebApp versions 3.3.0 and previous versions allows remote malicious users to inject arbitrary web script or HTML via a specially crafted previewable file.
Kopano Webapp
6.5
CVSSv2
CVE-2007-3418
The displaypost function in cgi-bin/cgi-lib/forum_display.pl in web-app.org WebAPP prior to 0.9.9.7 does not display usernames in conjunction with real names, which makes it easier for remote authenticated users to impersonate other users.
Web-app.org Webapp
7.5
CVSSv2
CVE-2007-3420
The Random Cookie Password functionality in the loaduser function in cgi-bin/cgi-lib/subs.pl in web-app.org WebAPP prior to 0.9.9.7 does not clear the (1) username, (2) password, (3) usertheme, and (4) userlang cookies for unauthorized users, which has unknown impact and remote a...
Web-app.org Webapp
7.5
CVSSv2
CVE-2007-3422
The getcgi function in cgi-bin/cgi-lib/subs.pl in web-app.org WebAPP prior to 0.9.9.7 attempts to parse query strings that contain (1) non-printing characters, (2) certain printing characters that do not commonly occur in URLs, or (3) invalid URL encoding sequences, which has unk...
Web-app.org Webapp
4.3
CVSSv2
CVE-2007-1174
Multiple cross-site scripting (XSS) vulnerabilities in WebAPP prior to 20070214 allow remote malicious users to inject arbitrary web script or HTML via unspecified vectors, related to unspecified fields in user Profiles. NOTE: some of these details are obtained from third party i...
Web-app.org Webapp
5
CVSSv2
CVE-2007-1179
WebAPP prior to 0.9.9.5 does not properly manage e-mail addresses in certain contexts related to (1) the Recommend feature, Email Article (2) senders and (3) recipients, (4) New User Approval, (5) Edit Profiles, (6) the Newsletter Subscription form, (7) the Recommend form, and (8...
Web-app.org Webapp
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
blind SQL injection
SSRF
buffer overflow
CVE-2023-28952
CVE-2023-41822
CVE-2024-27956
CVE-2023-7028
CVE-2024-34447
CVE-2024-34460
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »