Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
vulnerability-lab vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2012-4261
SQL injection vulnerability in modules/patient/mycare2x_pat_info.php in myCare2x allows remote malicious users to execute arbitrary SQL commands via the lang parameter.
Hccgmbh Mycare2x -
1 EDB exploit
NA
CVE-2013-6793
Multiple cross-site scripting (XSS) vulnerabilities in the Calendar module in Olat 7.8.0.1 (b20130821 N1) allow remote malicious users to inject arbitrary web script or HTML via the (1) event name or (2) date field.
Olat Olat 7.8.0.1
1 EDB exploit
NA
CVE-2012-5894
SQL injection vulnerability in hava_post.php in Havalite CMS 1.1.0 and previous versions allows remote malicious users to execute arbitrary SQL commands via the postId parameter.
Havalite Cms
1 EDB exploit
NA
CVE-2012-5900
Multiple SQL injection vulnerabilities in SAMEDIA LandShop 0.9.2 allow remote malicious users to execute arbitrary SQL commands via the (1) OB_ID parameter in a single action to admin/action/objects.php, (2) AREA_ID parameter in a single action to admin/action/areas.php, or (3) s...
Samedia Landshop 0.9.2
1 EDB exploit
NA
CVE-2012-6508
Multiple cross-site request forgery (CSRF) vulnerabilities in NetArt Media Car Portal 3.0 allow remote malicious users to hijack the authentication of administrators for requests that (1) change arbitrary user passwords via a nouveau action in the security module to cars/ADMIN/in...
Netartmedia Car Portal 3.0
1 EDB exploit
NA
CVE-2012-6509
Unrestricted file upload vulnerability in NetArt Media Car Portal 3.0 allows remote malicious users to execute arbitrary PHP code by uploading a file a double extension, as demonstrated by .php%00.jpg.
Netartmedia Car Portal 3.0
1 EDB exploit
NA
CVE-2012-6518
Cross-site request forgery (CSRF) vulnerability in mod.php in DiY-CMS 1.0 allows remote malicious users to hijack the authentication of administrators for requests that create a poll via an add action to the poll module.
Diy-cms Diy-cms 1.0
1 EDB exploit
NA
CVE-2012-6519
SQL injection vulnerability in modules/poll/index.php in DIY-CMS 1.0 allows remote malicious users to execute arbitrary SQL commands via the start parameter to mod.php.
Diy-cms Diy-cms 1.0
1 EDB exploit
NA
CVE-2012-3839
Multiple SQL injection vulnerabilities in application/core/MY_Model.php in MyClientBase 0.12 allow remote malicious users to execute arbitrary SQL commands via the (1) invoice_number or (2) tags parameter to index.php/invoice_search.
Myclientbase Myclientbase 0.12
1 EDB exploit
NA
CVE-2012-3840
Multiple cross-site scripting (XSS) vulnerabilities in index.php/users/form/user_id in MyClientBase 0.12 allow remote malicious users to inject arbitrary web script or HTML via the (1) first_name or (2) last_name parameters.
Myclientbase Myclientbase 0.12
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27802
template injection
CVE-2024-0044
code injection
CVE-2024-35474
CVE-2024-27857
CVE-2024-23251
CVE-2024-23692
physical
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
NEXT »