Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
nine:situations:group vulnerabilities and exploits
(subscribe to this query)
505
VMScore
CVE-2008-3128
Directory traversal vulnerability in search.php in Pivot 1.40.5 allows remote malicious users to read arbitrary files via a .. (dot dot) in the t parameter.
Pivot Pivot 1.40.5
1 EDB exploit
935
VMScore
CVE-2008-7070
Argument injection vulnerability in the URI handler in KVIrc 3.4.2 Shiny allows remote malicious users to execute arbitrary commands via a " (quote) followed by command line switches in a (1) irc:///, (2) irc6:///, (3) ircs:///, or (4) and ircs6:/// URI. NOTE: this might be ...
Kvirc Kvirc 3.4.2
1 EDB exploit
685
VMScore
CVE-2008-5750
Argument injection vulnerability in Microsoft Internet Explorer 8 beta 2 on Windows XP SP3 allows remote malicious users to execute arbitrary commands via the --renderer-path option in a chromehtml: URI.
Microsoft Internet Explorer 8
1 EDB exploit
755
VMScore
CVE-2009-4796
Multiple SQL injection vulnerabilities in the ExecuteQueries function in private/system/classes/listfactory.class.php in glFusion 1.1.2 and previous versions allow remote malicious users to execute arbitrary SQL commands via the (1) order and (2) direction parameters to search.ph...
Glfusion Glfusion
Glfusion Glfusion 1.1.0
Glfusion Glfusion 1.1.1
Glfusion Glfusion 1.0.0
Glfusion Glfusion 1.0.1
1 EDB exploit
940
VMScore
CVE-2009-1960
inc/init.php in DokuWiki 2009-02-14, rc2009-02-06, and rc2009-01-30, when register_globals is enabled, allows remote malicious users to include and execute arbitrary local files via the config_cascade[main][default][] parameter to doku.php. NOTE: PHP remote file inclusion is also...
Dokuwiki Dokuwiki Rc2009-02-06
Dokuwiki Dokuwiki 2009-02-14
Dokuwiki Dokuwiki Rc2009-01-30
2 EDB exploits
940
VMScore
CVE-2008-2551
The DownloaderActiveX Control (DownloaderActiveX.ocx) in Icona SpA C6 Messenger 1.0.0.1 allows remote malicious users to force the download and execution of arbitrary files via a URL in the propDownloadUrl parameter with the propPostDownloadAction parameter set to "run."...
Icona Instant Messenger 1.0.0.1
2 EDB exploits
940
VMScore
CVE-2008-6748
Eval injection vulnerability in Megacubo 5.0.7 allows remote malicious users to inject and execute arbitrary PHP code via the play action in a mega:// URI.
Megacubo Megacubo 5.0.7
2 EDB exploits
940
VMScore
CVE-2009-1068
Stack-based buffer overflow in BS.Player (bsplayer) 2.32 Build 975 Free and 2.34 Build 980 PRO and previous versions allows remote malicious users to cause a denial of service (application crash) or execute arbitrary code via a long hostname in a .bsl playlist file.
Bsplayer Bs.player 2.32
Bsplayer Bs.player 2.34
2 EDB exploits
940
VMScore
CVE-2009-2261
PeaZIP 2.6.1, 2.5.1, and previous versions on Windows allows user-assisted remote malicious users to execute arbitrary commands via a .zip archive with a .txt file whose name contains | (pipe) characters and a command.
Giorgio Tani Peazip
Giorgio Tani Peazip 2.4.1
Giorgio Tani Peazip 1.10
Giorgio Tani Peazip 1.9.3
Giorgio Tani Peazip 1.6
Giorgio Tani Peazip 1.5
Giorgio Tani Peazip 2.2
Giorgio Tani Peazip 2.1
Giorgio Tani Peazip 1.8.2
Giorgio Tani Peazip 1.8.1
Giorgio Tani Peazip 1.2
Giorgio Tani Peazip 1.1
Giorgio Tani Peazip 2.4
Giorgio Tani Peazip 2.3a
Giorgio Tani Peazip 1.9.2
Giorgio Tani Peazip 1.9.1
Giorgio Tani Peazip 1.9
Giorgio Tani Peazip 1.4
Giorgio Tani Peazip 1.3
Giorgio Tani Peazip 2.6.1
Giorgio Tani Peazip 2.0
Giorgio Tani Peazip 1.11
2 EDB exploits
730
VMScore
CVE-2009-2564
NOS Microsystems getPlus Download Manager, as used in Adobe Reader 1.6.2.36 and possibly other versions, Corel getPlus Download Manager prior to 1.5.0.48, and possibly other products, installs NOS\bin\getPlus_HelperSvc.exe with insecure permissions (Everyone:Full Control), which ...
Nos Microsystems Getplus Download Manager 1.6.2.36
Adobe Acrobat Reader 9.1
Adobe Acrobat Reader 9.0
Corel Getplus Download Manager 1.5.0.48
2 EDB exploits
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-49223
CVE-2024-0044
information disclosure
CVE-2024-35753
HTML injection
CVE-2024-21306
CVE-2024-35733
SQL injection
CVE-2024-35732
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
NEXT »