Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
dsecrg vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2009-0039
Multiple cross-site request forgery (CSRF) vulnerabilities in the web administration console in Apache Geronimo Application Server 2.1 up to and including 2.1.3 allow remote malicious users to hijack the authentication of administrators for requests that (1) change the web admini...
Apache Geronimo 2.1.3
Apache Geronimo 2.1.1
Apache Geronimo 2.1.2
Apache Geronimo 2.1
1 EDB exploit
NA
CVE-2009-1212
Multiple insecure method vulnerabilities in PRECIS~2.DLL in the PrecisionID Datamatrix ActiveX control (DMATRIXLib.Datamatrix) allow remote malicious users to overwrite arbitrary files via the (1) SaveBarCode and (2) SaveEnhWMF methods.
Precisionid Data Matrix Barcode Activex Control -
1 EDB exploit
NA
CVE-2008-0513
Directory traversal vulnerability in parser/include/class.cache_phpcms.php in phpCMS 1.2.2 allows remote malicious users to read arbitrary files via a .. (dot dot) in the file parameter to parser/parser.php, as demonstrated by a filename ending with %00.gif, a different vector th...
Phpcms Phpcms 1.2.2
1 EDB exploit
NA
CVE-2009-1315
Multiple cross-site scripting (XSS) vulnerabilities in AbleSpace 1.0 allow remote malicious users to inject arbitrary web script or HTML via the (1) gid parameter to groups_profile.php, (2) cat_id and (3) razd_id parameters to adv_cat.php, and the (4) URL to blogs_full.php.
Abk-soft Ablespace 1.0
1 EDB exploit
NA
CVE-2008-1534
Multiple directory traversal vulnerabilities in PowerPHPBoard 1.00b allow remote malicious users to include and execute arbitrary local files via a .. (dot dot) in the (1) settings[footer] parameter to footer.inc.php and the (2) settings[header] parameter to header.inc.php.
Powerscripts Powerphpboard 1.00b
1 EDB exploit
NA
CVE-2008-1555
Directory traversal vulnerability in system/_b/contentFiles/gbincluder.php in BolinOS 4.6.1 allows remote malicious users to include and execute arbitrary local files via a .. (dot dot) in the _bFileToInclude parameter.
Bolinos Bolinos 4.6.1
1 EDB exploit
NA
CVE-2008-1557
BolinOS 4.6.1 allows remote malicious users to obtain sensitive information via a direct request to system/actionspages/_b/contentFiles/gBphpInfo.php, which calls the phpinfo function.
Bolinos Bolinos 4.6.1
1 EDB exploit
NA
CVE-2008-0231
Multiple directory traversal vulnerabilities in index.php in Tuned Studios (1) Subwoofer, (2) Freeze Theme, (3) Orange Cutout, (4) Lonely Maple, (5) Endless, (6) Classic Theme, and (7) Music Theme webpage templates allow remote malicious users to include and execute arbitrary fil...
Tuned Studios Orange Cutout
Tuned Studios Subwoofer
Tuned Studios Endless
Tuned Studios Freeze Theme
Tuned Studios Lonely Maple
Tuned Studios Music Theme
Tuned Studios Classic Theme
1 EDB exploit
NA
CVE-2008-0332
Directory traversal vulnerability in arias/help/effect.php in aria 0.99-6 allows remote malicious users to include and execute arbitrary local files via directory traversal sequences in the page parameter.
Aria Aria 0.99-6
1 EDB exploit
NA
CVE-2008-0360
Multiple SQL injection vulnerabilities in BLOG:CMS 4.2.1b allow remote malicious users to execute arbitrary SQL commands via (1) the blogid parameter to index.php, (2) the user parameter to action.php, or (3) the field parameter to admin/plugins/table/index.php.
Blog Cms Blog Cms 4.2.1 C
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3201
CVE-2024-4779
CVE-2024-35090
CVE-2024-5084
hard-coded
CVE-2024-4985
HTML injection
CVE-2024-33655
local file inclusion
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
NEXT »