Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
high-tech bridge sa vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2010-4863
Cross-site scripting (XSS) vulnerability in admin/changedata.php in GetSimple CMS 2.01 allows remote malicious users to inject arbitrary web script or HTML via the post-title parameter.
Get-simple Getsimple Cms 2.01
1 EDB exploit
NA
CVE-2010-4870
SQL injection vulnerability in index.php in BloofoxCMS 0.3.5 allows remote malicious users to execute arbitrary SQL commands via the gender parameter.
Bloofox Bloofoxcms 0.3.5
1 EDB exploit
NA
CVE-2010-4874
Multiple cross-site scripting (XSS) vulnerabilities in users.php in NinkoBB 1.3 RC5 allow remote malicious users to inject arbitrary web script or HTML via the (1) first_name, (2) last_name, (3) msn, or (4) aim parameter.
Ninkobb Ninkobb 1.3
1 EDB exploit
NA
CVE-2011-5313
Multiple SQL injection vulnerabilities in includes/password.php in Redaxscript 0.3.2 allow remote malicious users to execute arbitrary SQL commands via the (1) id or (2) password parameter to the password_reset program.
Redaxscript Redaxscript 0.3.2
1 EDB exploit
NA
CVE-2011-5318
Multiple cross-site request forgery (CSRF) vulnerabilities in diafan.CMS prior to 5.1 allow remote malicious users to hijack the authentication of administrators for requests that (1) modify articles via a save_post action to admin/news/saveNEWS_ID/, (2) modify settings via a sav...
Diafan Diafan.cms
1 EDB exploit
NA
CVE-2011-0503
Cross-site request forgery (CSRF) vulnerability in VaM Shop 1.6, 1.6.1, and probably earlier versions allows remote malicious users to hijack the authentication of administrators for requests that (1) change user status via admin/customers.php or (2) change user permissions via a...
Vamsoft Vam Shop 1.6
Vamsoft Vam Shop
1 EDB exploit
NA
CVE-2010-0817
Cross-site scripting (XSS) vulnerability in _layouts/help.aspx in Microsoft SharePoint Server 2007 12.0.0.6421 and possibly earlier, and SharePoint Services 3.0 SP1 and SP2, versions, allows remote malicious users to inject arbitrary web script or HTML via the cid0 parameter.
Microsoft Sharepoint Server 2007
Microsoft Sharepoint Services 3.0
1 EDB exploit
NA
CVE-2010-2003
Cross-site scripting (XSS) vulnerability in misc/get_admin.php in Advanced Poll 2.08 allows remote malicious users to inject arbitrary web script or HTML via the mysql_host parameter.
Proxy2 Advanced Poll 2.08
1 EDB exploit
NA
CVE-2012-4679
Cross-site scripting (XSS) vulnerability in admin/login.php in Newscoop prior to 3.5.5 allows remote malicious users to inject arbitrary web script or HTML via the f_user_name parameter.
Sourcefabric Newscoop 3.5.1
Sourcefabric Newscoop 3.5.0
Sourcefabric Newscoop 3.5.3
Sourcefabric Newscoop 3.5.2
Sourcefabric Newscoop
1 EDB exploit
NA
CVE-2010-4781
index.php in Enano CMS 1.1.7pl1, and possibly other versions prior to 1.1.8, 1.0.6pl3, and 1.1.7pl2, allows remote malicious users to obtain sensitive information via a crafted title parameter, which reveals the installation path in an error message.
Enanocms Enano Cms 1.1.4
Enanocms Enano Cms 1.1.3
Enanocms Enano Cms 0.8.2
Enanocms Enano Cms 0.8.3
Enanocms Enano Cms 1.0.2
Enanocms Enano Cms 1.0.2b1
Enanocms Enano Cms
Enanocms Enano Cms 1.1.7
Enanocms Enano Cms 1.0.6
Enanocms Enano Cms 0.9.2
Enanocms Enano Cms 0.9.3
Enanocms Enano Cms 1.0.5
Enanocms Enano Cms 1.1.6
Enanocms Enano Cms 1.1.5
Enanocms Enano Cms 0.8.1
Enanocms Enano Cms 1.0
Enanocms Enano Cms 1.0.1
Enanocms Enano Cms 1.1.2
Enanocms Enano Cms 1.1.1
Enanocms Enano Cms 0.8.4
Enanocms Enano Cms 0.9.1
Enanocms Enano Cms 1.0.3
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-26925
CVE-2023-41826
LFI
CVE-2022-22364
CVE-2024-2887
command injection
remote code execution
CVE-2024-34446
CVE-2022-48699
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »