Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
larry cashdollar vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2001-0059
patchadd in Solaris allows local users to overwrite arbitrary files via a symlink attack.
Sun Sunos 5.7
1 EDB exploit
7.2
CVSSv3
CVE-2016-1000119
SQLi and XSS in Huge IT catalog extension v1.0.4 for Joomla
Huge-it Catalog 1.0.4
NA
CVE-2013-4203
The self.run_gpg function in lib/rgpg/gpg_helper.rb in the rgpg gem prior to 0.2.3 for Ruby allows remote malicious users to execute arbitrary commands via shell metacharacters in unspecified vectors.
Richard Cook Rgpg
Richard Cook Rgpg 0.2.1
Richard Cook Rgpg 0.2.0
NA
CVE-2002-0296
The installation of Tarantella Enterprise 3 allows local users to overwrite arbitrary files via a symlink attack on the "spinning" temporary file.
Tarantella Tarantella Enterprise 3.10
Tarantella Tarantella Enterprise 3.11
Tarantella Tarantella Enterprise 3.0
Tarantella Tarantella Enterprise 3.01
Tarantella Tarantella Enterprise 3.20
1 EDB exploit
NA
CVE-2014-8603
cloner.functions.php in the XCloner plugin 3.1.1 for WordPress and 3.5.1 for Joomla! allows remote administrators to execute arbitrary code via shell metacharacters in the (1) file name when creating a backup or vectors related to the (2) $_CONFIG[tarpath], (3) $exclude, (4) $_CO...
Xcloner Xcloner 3.5.1
Xcloner Xcloner 3.1.1
1 EDB exploit
NA
CVE-2014-8605
The XCloner plugin 3.1.1 for WordPress and 3.5.1 for Joomla! stores database backup files with predictable names under the web root with insufficient access control, which allows remote malicious users to obtain sensitive information via a direct request to a backup file in admin...
Xcloner Xcloner 3.1.1
Xcloner Xcloner 3.5.1
1 EDB exploit
NA
CVE-2014-8606
Directory traversal vulnerability in the XCloner plugin 3.1.1 for WordPress and 3.5.1 for Joomla! allows remote administrators to read arbitrary files via a .. (dot dot) in the file parameter in a json_return action in the xcloner_show page to wp-admin/admin-ajax.php.
Xcloner Xcloner 3.1.1
Xcloner Xcloner 3.5.1
1 EDB exploit
NA
CVE-2014-8607
The XCloner plugin 3.1.1 for WordPress and 3.5.1 for Joomla! provides the MySQL username and password on the command line, which allows local users to obtain sensitive information via the ps command.
Xcloner Xcloner 3.1.1
Xcloner Xcloner 3.5.1
1 EDB exploit
NA
CVE-2013-1948
converter.rb in the md2pdf gem 0.0.1 for Ruby allows context-dependent malicious users to execute arbitrary commands via shell metacharacters in a filename.
Rob Westgeest Md2pdf 0.0.1
NA
CVE-1999-1405
snap command in AIX prior to 4.3.2 creates the /tmp/ibmsupt directory with world-readable permissions and does not remove or clear the directory when snap -a is executed, which could allow local users to access the shadowed password file by creating /tmp/ibmsupt/general/passwd be...
Ibm Aix 4.2
Ibm Aix 4.2.1
Ibm Aix 4.1.4
Ibm Aix 4.1.5
Ibm Aix 3.2.5
Ibm Aix 4.1
Ibm Aix 4.1.2
Ibm Aix 4.1.3
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
inject
CVE-2024-34001
CVE-2024-37018
LFI
CVE-2024-1275
CVE-2024-1086
CSRF
CVE-2024-31030
CVE-2024-24919
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
NEXT »