Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
mustlive vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2007-5427
Cross-site scripting (XSS) vulnerability in the com_search component in Joomla! 1.0.13 and previous versions allows remote malicious users to inject arbitrary web script or HTML via the searchword parameter. NOTE: this might be related to CVE-2007-4189.1.
Joomla Com Search Component
Joomla Joomla
1 EDB exploit
NA
CVE-2012-6550
Cross-site scripting (XSS) vulnerability in ZeroClipboard prior to 1.1.4 allows remote malicious users to inject arbitrary web script or HTML via "the clipText returned from the flash object," a different vulnerability than CVE-2013-1808.
Zeroclipboard Project Zeroclipboard
Zeroclipboard Project Zeroclipboard 1.0.5
1 EDB exploit
NA
CVE-2007-4482
Cross-site scripting (XSS) vulnerability in index.php in the Pool 1.0.7 theme for WordPress allows remote malicious users to inject arbitrary web script or HTML via the PATH_INFO (PHP_SELF).
Wordpress Pool 1.0.7
1 EDB exploit
NA
CVE-2007-3485
Multiple cross-site scripting (XSS) vulnerabilities in Yandex.Server allow remote malicious users to inject arbitrary web script or HTML via the (1) query or (2) within parameter to the default URI.
Yandex Yandex.server
NA
CVE-2007-3555
Cross-site scripting (XSS) vulnerability in index.php in Moodle 1.7.1 allows remote malicious users to inject arbitrary web script or HTML via a style expression in the search parameter, a different vulnerability than CVE-2004-1424.
Moodle Moodle 1.7.1
1 EDB exploit
NA
CVE-2012-4842
Open redirect vulnerability in the web server in IBM Lotus Domino 8.5.x up to and including 8.5.3 allows remote malicious users to redirect users to arbitrary web sites and conduct phishing attacks via unspecified vectors.
Ibm Lotus Domino 8.5.1.2
Ibm Lotus Domino 8.5.1
Ibm Lotus Domino 8.5.2.4
Ibm Lotus Domino 8.5.3.0
Ibm Lotus Domino 8.5.1.3
Ibm Lotus Domino 8.5.0
Ibm Lotus Domino 8.5.2.2
Ibm Lotus Domino 8.5.2.1
Ibm Lotus Domino 8.5.0.1
Ibm Lotus Domino 8.5.1.5
Ibm Lotus Domino 8.5.2.0
Ibm Lotus Domino 8.5.2.3
Ibm Lotus Domino 8.5.1.1
Ibm Lotus Domino 8.5.1.4
NA
CVE-2013-1808
Cross-site scripting (XSS) vulnerability in ZeroClipboard.swf and ZeroClipboard10.swf in ZeroClipboard prior to 1.0.8, as used in em-shorty, RepRapCalculator, Fulcrum, Django, aCMS, and other products, allows remote malicious users to inject arbitrary web script or HTML via the i...
Zeroclipboard Project Zeroclipboard
Zeroclipboard Project Zeroclipboard 1.0.5
NA
CVE-2009-4157
Multiple cross-site scripting (XSS) vulnerabilities in index.php in the ProofReader (com_proofreader) component 1.0 RC9 and previous versions for Joomla! allow remote malicious users to inject arbitrary web script or HTML via the URI, which is not properly handled in (1) 404 or (...
Joomlatune Com Proofreader
Joomlatune Com Proofreader 1.0
1 EDB exploit
NA
CVE-2009-4168
Cross-site scripting (XSS) vulnerability in Roy Tanck tagcloud.swf, as used in the WP-Cumulus plugin prior to 1.23 for WordPress and the Joomulus module 2.0 and previous versions for Joomla!, allows remote malicious users to inject arbitrary web script or HTML via the tagcloud pa...
Roytanck Wp-cumulus 1.16
Roytanck Wp-cumulus 1.15
Roytanck Wp-cumulus 1.14
Roytanck Wp-cumulus 1.03
Roytanck Wp-cumulus 1.02
Roytanck Wp-cumulus 1.18
Roytanck Wp-cumulus 1.17
Roytanck Wp-cumulus 1.05
Roytanck Wp-cumulus 1.04
Roytanck Wp-cumulus
Roytanck Wp-cumulus 1.2.1
Roytanck Wp-cumulus 1.13
Roytanck Wp-cumulus 1.12
Roytanck Wp-cumulus 1.01
Roytanck Wp-cumulus 1.00
Roytanck Wp-cumulus 1.20
Roytanck Wp-cumulus 1.19
Roytanck Wp-cumulus 1.11
Roytanck Wp-cumulus 1.10
1 EDB exploit
NA
CVE-2009-4170
WP-Cumulus Plug-in 1.20 for WordPress, and possibly other versions, allows remote malicious users to obtain sensitive information via a crafted request to wp-cumulus.php, probably without parameters, which reveals the installation path in an error message.
Roytanck Wp-cumulus 1.20
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-5324
path traversal
CVE-2024-4743
CVE-2024-5184
TCP
CVE-2024-27822
code injection
CVE-2024-28995
CVE-2023-20938
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
NEXT »