Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
rgod vulnerabilities and exploits
(subscribe to this query)
755
VMScore
CVE-2007-2080
Multiple SQL injection vulnerabilities in XAMPP 1.6.0a for Windows allow remote malicious users to execute arbitrary SQL commands via unspecified vectors in certain test scripts.
Xampp Apache Distribution 1.6.0a
1 EDB exploit
755
VMScore
CVE-2006-7101
SQL injection vulnerability in admin.php in PHPWind 5.0.1 and previous versions allows remote malicious users to execute arbitrary SQL commands via the AdminUser cookie.
Phpwind Phpwind
1 EDB exploit
935
VMScore
CVE-2007-2667
Buffer overflow in the DB Software Laboratory VImpX ActiveX control in VImpX.ocx 4.7.3 allows remote malicious users to execute arbitrary code via a long LogFile parameter.
Db Soft Lab Vimp X 4.7.3
1 EDB exploit
1000
VMScore
CVE-2007-2853
The VCDAPILibApi ActiveX control in vc9api.DLL 9.0.0.57 in Virtual CD 9.0.0.2 allows remote malicious users to execute arbitrary commands via a command line in the first argument to the VCDLaunchAndWait function.
H\\+h Vcdapilibapi Activex Control 9.0.0.57
H\\+h Virtual Cd 9.0.0.2
1 EDB exploit
515
VMScore
CVE-2006-0786
Incomplete blacklist vulnerability in include.php in PHPKIT 1.6.1 Release 2 and previous versions, with allow_url_fopen enabled, allows remote malicious users to conduct PHP remote file include attacks via a path parameter that specifies a (1) UNC share or (2) ftps URL, which byp...
Phpkit Phpkit
1 EDB exploit
755
VMScore
CVE-2006-0852
Direct static code injection vulnerability in write.php in Admbook 1.2.2 and previous versions allows remote malicious users to execute arbitrary PHP code via the X-Forwarded-For HTTP header field, which is inserted into content-data.php.
Devscripts Admbook
1 EDB exploit
755
VMScore
CVE-2006-0899
Directory traversal vulnerability in index.php in 4Images 1.7.1 and previous versions allows remote malicious users to read and include arbitrary files via ".." (dot dot) sequences in the template parameter.
4images Image Gallery Management System
1 EDB exploit
505
VMScore
CVE-2006-1219
Directory traversal vulnerability in Gallery 2.0.3 and previous versions, and 2.1 before RC-2a, allows remote malicious users to include arbitrary PHP files via ".." (dot dot) sequences in the stepOrder parameter to (1) upgrade/index.php or (2) install/index.php.
Gallery Project Gallery 2.0.3
Gallery Project Gallery 2.0 Alpha
Gallery Project Gallery 2.0 Beta3
Gallery Project Gallery 2.1 Rc1
Gallery Project Gallery 2.0
Gallery Project Gallery 2.0 Alpha3
Gallery Project Gallery 2.0 Alpha4
Gallery Project Gallery 2.0 Alpha1
Gallery Project Gallery 2.0 Alpha2
Gallery Project Gallery 2.1 Rc2
Gallery Project Gallery 2.0.1
Gallery Project Gallery 2.0.2
Gallery Project Gallery 2.0 Beta1
Gallery Project Gallery 2.0 Beta2
1 EDB exploit
505
VMScore
CVE-2011-4858
Apache Tomcat prior to 5.5.35, 6.x prior to 6.0.35, and 7.x prior to 7.0.23 computes hash values for form parameters without restricting the ability to trigger hash collisions predictably, which allows remote malicious users to cause a denial of service (CPU consumption) by sendi...
Apache Tomcat 6.0.33
Apache Tomcat 7.0.12
Apache Tomcat 6.0.6
Apache Tomcat 7.0.20
Apache Tomcat 6.0.11
Apache Tomcat 6.0.34
Apache Tomcat 7.0.8
Apache Tomcat 7.0.1
Apache Tomcat 7.0.2
Apache Tomcat 7.0.5
Apache Tomcat 6.0.22
Apache Tomcat 6.0.25
Apache Tomcat 6.0.7
Apache Tomcat 6.0.4
Apache Tomcat 7.0.22
Apache Tomcat 5.5.35
Apache Tomcat 6.0.15
Apache Tomcat 7.0.0
Apache Tomcat 7.0.6
Apache Tomcat 7.0.18
Apache Tomcat 6.0.20
Apache Tomcat 7.0.14
1 EDB exploit
505
VMScore
CVE-2011-5035
Oracle Glassfish 2.1.1, 3.0.1, and 3.1.1, as used in Communications Server 2.0, Sun Java System Application Server 8.1 and 8.2, and possibly other products, computes hash values for form parameters without restricting the ability to trigger hash collisions predictably, which allo...
Oracle Glassfish Server
Oracle Glassfish Server 2.1.1
Oracle Glassfish Server 3.0.1
1 EDB exploit
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-33228
CVE-2024-20361
log injection
bypass
CVE-2024-4985
CVE-2024-35223
CVE-2024-29849
CVE-2024-31893
IMAP
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »