Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
webapp vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2007-1489
Unspecified vulnerability in web-app.org Web Automated Perl Portal (WebAPP) 0.9.9.4 to 0.9.9.6 allows remote malicious users to obtain admin access by modifying cookies and performing "certain consecutive actions," possibly due to a cross-site request forgery (CSRF) vul...
Web-app.org Webapp 0.9.9.6
Web-app.org Webapp 0.9.9.4
Web-app.org Webapp 0.9.9.5
9.8
CVSSv3
CVE-2017-1002002
Vulnerability in wordpress plugin webapp-builder v2.0, The plugin includes unlicensed vulnerable CMS software from http://www.invedion.com/
Webapp-builder Project Webapp-builder 2.0
1 EDB exploit
NA
CVE-2006-6687
Cross-site scripting (XSS) vulnerability in Web Automated Perl Portal (WebAPP) 0.9.9.4, and 0.9.9.3.4 Network Edition (NE) (aka WebAPP.NET), allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors. NOTE: The provenance of this information is u...
Web-app.net Webapp 0.9.9.4
Web-app.net Webapp 0.9.9.3.4
NA
CVE-2006-6688
Web Automated Perl Portal (WebAPP) 0.9.9.4, and 0.9.9.3.4 Network Edition (NE) (aka WebAPP.NET) allows remote malicious users to bypass filtering mechanisms via unknown vectors. NOTE: The provenance of this information is unknown; the details are obtained solely from third party ...
Web-app.net Webapp 0.9.9.4
Web-app.net Webapp 0.9.9.3.4 Ne
6.1
CVSSv3
CVE-2017-11666
Cross-site scripting (XSS) vulnerability in js/ViewerPanel.js in the file previewer plugin in Kopano WebApp versions 3.3.0 and previous versions allows remote malicious users to inject arbitrary web script or HTML via a specially crafted previewable file.
Kopano Webapp
9.8
CVSSv3
CVE-2022-22845
QXIP SIPCAPTURE homer-app prior to 1.4.28 for HOMER 7.x has the same 167f0db2-f83e-4baa-9736-d56064a5b415 JWT secret key across different customers' installations.
Qxip Homer Webapp
2 Github repositories
5.3
CVSSv3
CVE-2022-39380
Wire web-app is part of Wire communications. Versions before 2022-11-02 are subject to Improper Handling of Exceptional Conditions. In the wire-webapp, certain combinations of Markdown formatting can trigger an unhandled error in the conversion to HTML representation. The error m...
Wire Wire-webapp
NA
CVE-2006-7186
cgi-lib/subs.pl in web-app.net WebAPP prior to 0.9.9.3.5 allows malicious users to open list files in "profile and other functions," a different vulnerability than CVE-2005-0927.
Web-app.net Webapp
NA
CVE-2006-7187
Cross-site scripting (XSS) vulnerability in the show_recent_searches function in cgi-lib/user-lib/search.pl in web-app.net WebAPP prior to 20060909 allows remote malicious users to inject arbitrary web script or HTML via the srch variable.
Web-app.net Webapp
NA
CVE-2007-1175
Cross-site scripting (XSS) vulnerability in an admin feature in WebAPP prior to 20070209 allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors.
Web-app.org Webapp
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3380
CVE-2024-1694
local file inclusion
CVE-2024-5645
CVE-2024-24919
XSS
CVE-2024-36774
CVE-2024-21306
SQL
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »