Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
multiple vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2013-2226
Multiple SQL injection vulnerabilities in GLPI prior to 0.83.9 allow remote malicious users to execute arbitrary SQL commands via the (1) users_id_assign parameter to ajax/ticketassigninformation.php, (2) filename parameter to front/document.form.php, or (3) table parameter to aj...
Glpi-project Glpi
Glpi-project Glpi 0.83.7
Glpi-project Glpi 0.83.6
Glpi-project Glpi 0.83.5
Glpi-project Glpi 0.83.1
Glpi-project Glpi 0.83
Glpi-project Glpi 0.83.4
Glpi-project Glpi 0.83.3
Glpi-project Glpi 0.83.31
Glpi-project Glpi 0.83.2
1 EDB exploit
7.5
CVSSv3
CVE-2013-2227
GLPI 0.83.7 has Local File Inclusion in common.tabs.php.
Glpi-project Glpi 0.83.7
Debian Debian Linux 8.0
1 EDB exploit
NA
CVE-2011-5160
Cross-site scripting (XSS) vulnerability in setup.php in OpenEMR 4 allows remote malicious users to inject arbitrary web script or HTML via the site parameter.
Open-emr Openemr 4.0.0
Open-emr Openemr 4.1.1
Open-emr Openemr 4.1.0
2 EDB exploits
NA
CVE-2009-4218
Multiple SQL injection vulnerabilities in files/login.asp in JiRo's Banner System eXperience (JBSX) allow remote malicious users to execute arbitrary SQL commands via the (1) admin or (2) password field, a related issue to CVE-2007-6091. NOTE: the provenance of this informat...
Jiros Jbsx
1 EDB exploit
NA
CVE-2013-3597
servlet/CollectionListServlet in SearchBlox prior to 7.5 build 1 allows remote malicious users to read usernames and passwords via a getList action.
Searchblox Searchblox 7.1
Searchblox Searchblox 7.2
Searchblox Searchblox 7.3
Searchblox Searchblox 7.4
Searchblox Searchblox 6.2
Searchblox Searchblox 6.4
Searchblox Searchblox 7.0
Searchblox Searchblox
Searchblox Searchblox 6.3
1 EDB exploit
7.5
CVSSv3
CVE-2021-27224
The WPG plugin prior to 3.1.0.0 for IrfanView 4.57 has a user-mode write access violation starting at WPG+0x0000000000012ec6, which might allow remote malicious users to execute arbitrary code.
Irfanview Wpg
NA
CVE-2005-3486
Multiple format string vulnerabilities in Scorched 3D 39.1 (bf) and previous versions allow remote malicious users to execute arbitrary code via various (1) GLConsole::addLine, (2) ServerCommon::sendString, (3) ServerCommon::serverLog functions, and possibly other unspecified vec...
Scorched 3d Scorched 3d 39.1
1 EDB exploit
NA
CVE-2005-3487
Multiple buffer overflows in Scorched 3D 39.1 (bf) and previous versions allow remote malicious users to execute arbitrary code via various (1) GLConsole::addLine, (2) ServerCommon::sendString, (3) ServerCommon::serverLog functions, (4) a long command that is not properly handled...
Scorched 3d Scorched 3d 39.1
1 EDB exploit
NA
CVE-2005-3488
Scorched 3D 39.1 (bf) and previous versions allows remote malicious users to cause a denial of service (long loop and server hang) via a negative numplayers value that bypasses a signed check in ServerConnectHandler.cpp.
Scorched 3d Scorched 3d 39.1
1 EDB exploit
NA
CVE-2013-7349
Multiple SQL injection vulnerabilities in Gnew 2013.1 allow remote malicious users to execute arbitrary SQL commands via the (1) news_id parameter to news/send.php, (2) thread_id parameter to posts/edit.php, or (3) user_email parameter to users/password.php or (4) users/register....
Raoul Proenca Gnew 2013.1
2 EDB exploits
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-17519
open redirect
CVE-2024-21683
cache poisoning
CVE-2021-47524
CVE-2021-47521
CVE-2024-5229
CVE-2021-47560
local
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »