Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
webapp vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2006-7187
Cross-site scripting (XSS) vulnerability in the show_recent_searches function in cgi-lib/user-lib/search.pl in web-app.net WebAPP prior to 20060909 allows remote malicious users to inject arbitrary web script or HTML via the srch variable.
Web-app.net Webapp
NA
CVE-2007-1832
web-app.org WebAPP prior to 0.9.9.6 allows remote authenticated users to upload certain files (1) via a crafted filename or (2) by "using percent encoding in forms."
Web-app.org Webapp
NA
CVE-2007-1183
WebAPP prior to 0.9.9.5 allows remote authenticated users to spoof another user's Real Name via whitespace, which has unknown impact and attack vectors.
Web-app.org Webapp
NA
CVE-2007-1174
Multiple cross-site scripting (XSS) vulnerabilities in WebAPP prior to 20070214 allow remote malicious users to inject arbitrary web script or HTML via unspecified vectors, related to unspecified fields in user Profiles. NOTE: some of these details are obtained from third party i...
Web-app.org Webapp
NA
CVE-2007-1175
Cross-site scripting (XSS) vulnerability in an admin feature in WebAPP prior to 20070209 allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors.
Web-app.org Webapp
NA
CVE-2007-1176
Multiple cross-site scripting (XSS) vulnerabilities in WebAPP prior to 0.9.9.5 allow remote malicious users to inject arbitrary web script or HTML via unspecified vectors related to (1) Gallery Comments pages, (2) Feedback pages, (3) Search Results pages, and (4) the Statistics L...
Web-app.org Webapp
NA
CVE-2007-1178
WebAPP prior to 0.9.9.5 does not check access in certain contexts related to (1) Calendar Administration, (2) Instant Messages Administration, and (3) the Image Uploader, which has unknown impact and attack vectors.
Web-app.org Webapp
NA
CVE-2007-1179
WebAPP prior to 0.9.9.5 does not properly manage e-mail addresses in certain contexts related to (1) the Recommend feature, Email Article (2) senders and (3) recipients, (4) New User Approval, (5) Edit Profiles, (6) the Newsletter Subscription form, (7) the Recommend form, and (8...
Web-app.org Webapp
NA
CVE-2007-1180
WebAPP prior to 0.9.9.5 does not check referrers in certain forms, which might facilitate remote cross-site request forgery (CSRF) attacks or have other unknown impact.
Web-app.org Webapp
NA
CVE-2007-3417
Multiple cross-site scripting (XSS) vulnerabilities in cgi-bin/cgi-lib/search.pl in web-app.org WebAPP prior to 0.9.9.7 allow remote malicious users to inject arbitrary web script or HTML via a search string, which is not sanitized when an HREF attribute is printed by the (1) pro...
Web-app.org Webapp
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
authentication bypass
CVE-2024-30043
camera
CVE-2023-40404
CVE-2024-2793
client side
CVE-2024-4469
CVE-2024-3565
CVE-2024-29825
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »