Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
mr_me vulnerabilities and exploits
(subscribe to this query)
3.5
CVSSv2
CVE-2009-4567
Multiple cross-site scripting (XSS) vulnerabilities in editprofile.php in Viscacha 0.8 Gold allow remote authenticated users to inject arbitrary web script or HTML via the (1) skype, (2) yahoo, (3) aol, (4) msn, or (5) jabber parameter in a profile2 action. NOTE: some of these de...
Viscacha Viscacha 0.8
1 EDB exploit
9.3
CVSSv2
CVE-2010-2931
Stack-based buffer overflow in SigPlus Pro 3.74 ActiveX control allows remote malicious users to execute arbitrary code via a long eighth argument (HexString) to the LCDWriteString method.
Topazsystems Sigplus Pro Activex Control 3.74
1 EDB exploit
7.5
CVSSv2
CVE-2011-1055
SQL injection vulnerability in api/ice_media.cfc in Lingxia I.C.E CMS 1.0 allows remote malicious users to execute arbitrary SQL commands via the session.user_id parameter to media.cfm.
Lingxia273 Lingxia I.c.e Cms 1.0
1 EDB exploit
6.8
CVSSv2
CVE-2011-5195
Cross-site request forgery (CSRF) vulnerability in index/manager/fileUpload in Public Knowledge Project Open Conference Systems 2.3.4 and previous versions allows remote malicious users to hijack the authentication of administrators for requests that upload a PHP file.
Public Knowledge Project Open Conference Systems 2.0
Public Knowledge Project Open Conference Systems 1.1.7
Public Knowledge Project Open Conference Systems 1.1.6
Public Knowledge Project Open Conference Systems 1.1.5
Public Knowledge Project Open Conference Systems 2.3.1
Public Knowledge Project Open Conference Systems 2.3
Public Knowledge Project Open Conference Systems 2.1.2-1
Public Knowledge Project Open Conference Systems 2.1.2
Public Knowledge Project Open Conference Systems 2.1.1.-2
Public Knowledge Project Open Conference Systems 1.1
Public Knowledge Project Open Conference Systems 1.0
Public Knowledge Project Open Conference Systems
Public Knowledge Project Open Conference Systems 2.3.3
Public Knowledge Project Open Conference Systems 2.1.1-1
Public Knowledge Project Open Conference Systems 2.1.0-1
Public Knowledge Project Open Conference Systems 1.1.3
Public Knowledge Project Open Conference Systems 1.1.1
Public Knowledge Project Open Conference Systems 2.3.3-1
Public Knowledge Project Open Conference Systems 2.3.2
Public Knowledge Project Open Conference Systems 2.1.1
Public Knowledge Project Open Conference Systems 2.1
Public Knowledge Project Open Conference Systems 1.1.4
1 EDB exploit
6.8
CVSSv2
CVE-2011-5196
Cross-site request forgery (CSRF) vulnerability in index/manager/fileUpload in Public Knowledge Project Open Journal Systems 2.3.6 and previous versions allows remote malicious users to hijack the authentication of administrators for requests that upload PHP files.
Public Knowledge Project Open Journal Systems 2.3.2
Public Knowledge Project Open Journal Systems 2.3.1-2
Public Knowledge Project Open Journal Systems 2.3.0
Public Knowledge Project Open Journal Systems 2.2.4
Public Knowledge Project Open Journal Systems 1.1.7
Public Knowledge Project Open Journal Systems 1.1.6
Public Knowledge Project Open Journal Systems 1.1.5
Public Knowledge Project Open Journal Systems 1.1
Public Knowledge Project Open Journal Systems 2.3.4
Public Knowledge Project Open Journal Systems 2.1.1
Public Knowledge Project Open Journal Systems 2.1
Public Knowledge Project Open Journal Systems 2.0.2-1
Public Knowledge Project Open Journal Systems 2.0.1
Public Knowledge Project Open Journal Systems 2.3.3-3
Public Knowledge Project Open Journal Systems 2.3.3-1
Public Knowledge Project Open Journal Systems 2.3.2-1
Public Knowledge Project Open Journal Systems 2.2.3
Public Knowledge Project Open Journal Systems 2.2.1
Public Knowledge Project Open Journal Systems 1.1.10
Public Knowledge Project Open Journal Systems 1.1.8
Public Knowledge Project Open Journal Systems 1.0.1
Public Knowledge Project Open Journal Systems
1 EDB exploit
6.8
CVSSv2
CVE-2011-5197
Cross-site request forgery (CSRF) vulnerability in index/manager/fileUpload in Public Knowledge Project Open Harvester Systems 2.3.1 and previous versions allows remote malicious users to hijack the authentication of administrators for requests that upload PHP files.
Public Knowledge Project Open Harvester Systems 1.0
Public Knowledge Project Open Harvester Systems 1.0.1
Public Knowledge Project Open Harvester Systems 2.0.0
Public Knowledge Project Open Harvester Systems 2.0.1
Public Knowledge Project Open Harvester Systems 2.3.0
Public Knowledge Project Open Harvester Systems
1 EDB exploit
6
CVSSv2
CVE-2011-5135
Multiple SQL injection vulnerabilities in the save_connection function in lib/lib.iotask.php in the iotask module in DoceboLMS 4.0.4 and previous versions allow remote authenticated users with admin or teacher privileges to execute arbitrary SQL commands via the (1) coursereportu...
Docebo Docebolms 2.0.4
Docebo Docebolms
Docebo Docebolms 4.0
Docebo Docebolms 2.0.5
1 EDB exploit
5.1
CVSSv2
CVE-2011-0518
Directory traversal vulnerability in core/lib/router.php in LotusCMS Fraise 3.0, when magic_quotes_gpc is disabled, allows remote malicious users to include and execute arbitrary local files via the system parameter to index.php.
Lotuscms Fraise 3.0
1 EDB exploit
7.2
CVSSv2
CVE-2016-2288
Cogent DataHub prior to 7.3.10 allows local users to gain privileges by leveraging the user or guest role to modify a file.
Cogentdatahub Cogent Datahub
1 EDB exploit
9.3
CVSSv2
CVE-2010-0688
Stack-based buffer overflow in Orbital Viewer 1.04 allows user-assisted remote malicious users to execute arbitrary code via a crafted (1) .orb or (2) .ov file.
Orbitals Orbital Viewer 1.04
3 EDB exploits
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
privilege escalation
CVE-2024-20696
CVE-2024-29829
CVE-2024-33999
CVE-2024-35646
physical
CVE-2024-24919
CVE-2024-31030
local users
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »