Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
hanno boeck vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2007-3694
Cross-site scripting (XSS) vulnerability in login.php in Miro Project Broadcast Machine 0.9.9.9 allows remote malicious users to inject arbitrary web script or HTML via the username parameter.
Getmiro Broadcast Machine 0.9.9.9
1 EDB exploit
NA
CVE-2008-0125
Cross-site scripting (XSS) vulnerability in phpstats.php in Michael Wagner phpstats 0.1 alpha allows remote malicious users to inject arbitrary web script or HTML via the baseDir parameter.
Phpstats Phpstats 0.1 Alpha
1 EDB exploit
NA
CVE-2008-1385
Cross-site scripting (XSS) vulnerability in the Top Referrers (aka referrer) plugin in Serendipity (S9Y) prior to 1.3.1 allows remote malicious users to inject arbitrary web script or HTML via the Referer HTTP header.
S9y Serendipity 0.7
S9y Serendipity 0.7.1
S9y Serendipity 1.0
S9y Serendipity 1.0.1
S9y Serendipity 1.1.3
S9y Serendipity 1.1.4
S9y Serendipity 0.8
S9y Serendipity 0.8.1
S9y Serendipity 0.8.2
S9y Serendipity 1.0.2
S9y Serendipity 1.0.3
S9y Serendipity 1.2
S9y Serendipity 1.2.1
S9y Serendipity 0.5 Pl1
S9y Serendipity 0.6 Pl3
S9y Serendipity 0.9
S9y Serendipity 0.9.1
S9y Serendipity 1.1.1
S9y Serendipity 1.1.2
S9y Serendipity 0.3
S9y Serendipity 0.4
S9y Serendipity 0.8.3
1 EDB exploit
NA
CVE-2010-1482
Cross-site scripting (XSS) vulnerability in admin/editprefs.php in the backend in CMS Made Simple (CMSMS) prior to 1.7.1 might allow remote malicious users to inject arbitrary web script or HTML via the date_format_string parameter.
Cmsmadesimple Cms Made Simple 1.2
Cmsmadesimple Cms Made Simple 1.1.2
Cmsmadesimple Cms Made Simple 0.10
Cmsmadesimple Cms Made Simple 1.6.7
Cmsmadesimple Cms Made Simple 1.6
Cmsmadesimple Cms Made Simple 1.5.3
Cmsmadesimple Cms Made Simple 1.2.5
Cmsmadesimple Cms Made Simple 1.2.3
Cmsmadesimple Cms Made Simple 1.0.7
Cmsmadesimple Cms Made Simple 1.0.4
Cmsmadesimple Cms Made Simple 0.11.1
Cmsmadesimple Cms Made Simple 0.10.4
Cmsmadesimple Cms Made Simple 1.1
Cmsmadesimple Cms Made Simple 1.0
Cmsmadesimple Cms Made Simple 0.11
Cmsmadesimple Cms Made Simple 1.4.1
Cmsmadesimple Cms Made Simple 1.3
Cmsmadesimple Cms Made Simple 1.6.5
Cmsmadesimple Cms Made Simple 1.6.4
Cmsmadesimple Cms Made Simple 1.6.3
Cmsmadesimple Cms Made Simple 1.6.2
Cmsmadesimple Cms Made Simple 1.6.1
NA
CVE-2011-0746
Cross-site request forgery (CSRF) vulnerability in Forms/PortForwarding_Edit_1 on the ZyXEL O2 DSL Router Classic allows remote malicious users to hijack the authentication of administrators for requests that insert cross-site scripting (XSS) sequences via the PortRule_Name param...
Zyxel O2 Dsl Router Classic
NA
CVE-2007-1871
Cross-site scripting (XSS) vulnerability in chcounter 3.1.3 allows remote malicious users to inject arbitrary web script or HTML via the login_name parameter to /stats/.
Chcounter Chcounter 3.1.3
NA
CVE-2008-1386
Multiple cross-site scripting (XSS) vulnerabilities in the installer in Serendipity (S9Y) 1.3 allow remote malicious users to inject arbitrary web script or HTML via (1) unspecified path fields or (2) the database host field. NOTE: the timing window for exploitation of this issue...
S9y Serendipity 1.3
NA
CVE-2010-1481
Cross-site scripting (XSS) vulnerability in the table feature in PmWiki 2.2.15 allows remote authenticated users to inject arbitrary web script or HTML via the width attribute.
Pmwiki Pmwiki 2.2.15
NA
CVE-2008-0123
Cross-site scripting (XSS) vulnerability in install.php for Moodle 1.8.3, and possibly other versions prior to 1.8.4, allows remote malicious users to inject arbitrary web script or HTML via the dbname parameter. NOTE: this issue only exists until the installation is complete.
Moodle Moodle
1 EDB exploit
3.7
CVSSv3
CVE-2015-4000
The TLS protocol 1.2 and previous versions, when a DHE_EXPORT ciphersuite is enabled on a server but not on a client, does not properly convey a DHE_EXPORT choice, which allows man-in-the-middle malicious users to conduct cipher-downgrade attacks by rewriting a ClientHello with D...
Openssl Openssl
Canonical Ubuntu Linux 12.04
Canonical Ubuntu Linux 14.10
Canonical Ubuntu Linux 14.04
Canonical Ubuntu Linux 15.04
Hp Hp-ux B.11.31
Ibm Content Manager 8.5
Oracle Jrockit R28.3.6
Debian Debian Linux 8.0
Debian Debian Linux 7.0
Oracle Jdk 1.8.0
Oracle Jre 1.7.0
Oracle Jre 1.6.0
Oracle Jre 1.8.0
Oracle Jdk 1.7.0
Oracle Jdk 1.6.0
Suse Linux Enterprise Server 11.0
Suse Linux Enterprise Software Development Kit 12
Suse Linux Enterprise Desktop 12
Suse Suse Linux Enterprise Server 12
Apple Mac Os X
Apple Iphone Os
1 Nmap script
4 Github repositories
1 Article
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
path traversal
CVE-2024-33545
CVE-2024-35725
CVE-2024-32704
overflow
file upload
CVE-2024-0230
CVE-2024-32705
CVE-2024-23692
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
NEXT »