Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
class class vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2005-4640
SQL injection vulnerability in index.php in class-1 Poll Software 0.4 and previous versions allows remote malicious users to execute arbitrary SQL commands via the (1) pollid or (2) previouspoll parameters.
Class-1 Poll Software
NA
CVE-2008-3242
Heap-based buffer overflow in the PPMedia Class ActiveX control in PPMPlayer.dll in PPMate 2.3.1.93 allows remote malicious users to execute arbitrary code via a long argument to the StartUrl method. NOTE: some of these details are obtained from third party information.
Ppmate Ppmedia Class 2.3.1.93
1 EDB exploit
NA
CVE-2002-0883
Vulnerability in Compaq ProLiant BL e-Class Integrated Administrator 1.0 and 1.10, allows authenticated users with Telnet, SSH, or console access to conduct unauthorized activities.
Compaq Proliant Bl E-class Integrated Administrator Firmware 1.0
Compaq Proliant Bl E-class Integrated Administrator Firmware 1.10
5.4
CVSSv3
CVE-2023-5205
The Add Custom Body Class plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'add_custom_body_class' value in versions up to, and including, 1.4.1 due to insufficient input sanitization and output escaping. This makes it possible for authenticated...
Anilankola Add Custom Body Class
9.8
CVSSv3
CVE-2023-36134
In PHP Jabbers Class Scheduling System 1.0, lack of verification when changing an email address and/or password (on the Profile Page) allows remote malicious users to take over accounts.
Phpjabbers Class Scheduling System 1.0
7.5
CVSSv3
CVE-2023-36135
User enumeration is found in in PHPJabbers Class Scheduling System v1.0. This issue occurs during password recovery, where a difference in messages could allow an malicious user to determine if the user is valid or not, enabling a brute force attack with valid users.
Phpjabbers Class Scheduling System 1.0
6.5
CVSSv3
CVE-2023-36136
PHPJabbers Class Scheduling System 1.0 lacks encryption on the password when editing a user account (update user page) allowing an malicious user to capture all user names and passwords in clear text.
Phpjabbers Class Scheduling System 1.0
6.1
CVSSv3
CVE-2023-36137
There is a Cross Site Scripting (XSS) vulnerability in the "theme" parameter of preview.php in PHPJabbers Class Scheduling System 1.0.
Phpjabbers Class Scheduling System 1.0
NA
CVE-2008-4771
Stack-based buffer overflow in VATDecoder.VatCtrl.1 ActiveX control in (1) 4xem VatCtrl Class (VATDecoder.dll 1.0.0.27 and 1.0.0.51), (2) D-Link MPEG4 SHM Audio Control (VAPGDecoder.dll 1.7.0.5), (3) Vivotek RTSP MPEG4 SP Control (RtspVapgDecoderNew.dll 2.0.0.39), and possibly ot...
4xem Vatctrl Class 1.0.0.27
D-link Mpeg4 Shm Audio Control 1.7.0.5
4xem Vatctrl Class 1.0.0.51
Vivotek Rtsp Mpeg4 Sp Control 2.0.0.39
1 EDB exploit
6.1
CVSSv3
CVE-2018-11557
YIBAN Easy class education platform 2.0 has XSS via the articlelist.php k parameter.
Yiban Easy Class Education Platform 2.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-5324
path traversal
CVE-2024-4743
CVE-2024-5184
TCP
CVE-2024-27822
code injection
CVE-2024-28995
CVE-2023-20938
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »