Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
absolute vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2008-6864
Xigla Software Absolute Live Support .NET 5.1 allows remote malicious users to bypass authentication and gain administrative access by setting a cookie to a certain value.
Xigla Absolute Live Support .net 5.1
1 EDB exploit
5.4
CVSSv2
CVE-2014-6940
The Absolute Lending Solutions (aka com.soln.S008F6C05EC0B63264B429F6D76286562) application 1.0073.b0073 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle malicious users to spoof servers and obtain sensitive information via a crafted...
Mibizapps Absolute Lending Solutions 1.0073.b0073
7.5
CVSSv2
CVE-2008-4569
SQL injection vulnerability in xlacomments.asp in XIGLA Software Absolute Poll Manager XE 4.1 allows remote malicious users to execute arbitrary SQL commands via the p parameter.
Xigla Absolute Poll Manager Xe 4.1
1 EDB exploit
7.5
CVSSv2
CVE-2009-1504
Absolute Form Processor XE 1.5 allows remote malicious users to bypass authentication and gain administrative access by setting the xlaAFPadmin cookie to "lvl=1&userid=1."
Xigla Absolute Control Panel Xe 1.5
1 EDB exploit
4.3
CVSSv2
CVE-2006-1410
Multiple cross-site scripting (XSS) vulnerabilities in XIGLA Absolute Live Support XE 2.0 and previous versions allow remote malicious users to inject arbitrary web script or HTML via the (1) Screen name or (2) Session Topic field.
Xigla Absolute Live Support Xe 2.0
3.5
CVSSv2
CVE-2021-24261
The “HT Mega – Absolute Addons for Elementor Page Builder” WordPress Plugin prior to 1.5.7 has several widgets that are vulnerable to stored Cross-Site Scripting (XSS) by lower-privileged users such as contributors, all via a similar method.
Hasthemes Ht Mega - Absolute Addons For Elementor Page Builder
NA
CVE-2023-50901
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in HasThemes HT Mega – Absolute Addons For Elementor allows Reflected XSS.This issue affects HT Mega – Absolute Addons For Elementor: from n/a up to and includ...
Hasthemes Ht Mega - Absolute Addons For Elementor Page Builder
9.3
CVSSv2
CVE-2007-0018
Stack-based buffer overflow in the NCTAudioFile2.AudioFile ActiveX control (NCTAudioFile2.dll), as used by multiple products, allows remote malicious users to execute arbitrary code via a long argument to the SetFormatLikeSample function. NOTE: the products include (1) NCTsoft NC...
Mcfunsoft Audio Studio 6.6.3 Build 479
J Hepple Products Fx Movie Joiner And Splitter 6.2.8
Movavi Suite 3.5
Movavi Dvd To Ipod 1.0
Cheetahburner Cheetah Dvd Burner 1.79
Mcfunsoft Ipod Music Converter 5.1
Mystik Media Products Blaze Media Pro 7.0
Xrlly Software Arial Audio Converter 2.3.40
Code-it Softare Wave Mp3 Editor 10.1
Softdiv Softare Videozilla 2.5
Code-it Softare Abasic Editor 10.1
Dandans Digital Media Products Music Editing Master 5.2
Magicvideosoftare Magic Music Editor 5.2.2
Mcfunsoft Recording To Ipod Solution 5.1
Softdiv Softare Dexster 3.0
Nctsoft Products Nctaudioeditor 2.7.1
Dandans Digital Media Products Easy Audio Editor 7.4
Cdburnerxp Cdburnerxp Pro 3.0.116
Dandans Digital Media Products Full Audio Converter 4.2
Magicvideosoftare Magic Audio Converter 8.2.6 Build 719
J Hepple Products Fx Audio Editor 4.7.11
Virtual Cd Virtual Cd 7.1.0.2
3 EDB exploits
5.8
CVSSv2
CVE-2021-32804
The npm package "tar" (aka node-tar) prior to 6.1.1, 5.0.6, 4.4.14, and 3.3.2 has a arbitrary File Creation/Overwrite vulnerability due to insufficient absolute path sanitization. node-tar aims to prevent extraction of absolute file paths by turning absolute paths into ...
Tar Project Tar
Oracle Graalvm 20.3.3
Oracle Graalvm 21.2.0
Siemens Sinec Infrastructure Network Services
1 Github repository
4
CVSSv2
CVE-2006-3934
Absolute path traversal vulnerability in downloadTrigger.jsp in Alkacon OpenCms prior to 6.2.2 allows remote authenticated users to download arbitrary files via an absolute pathname in the filePath parameter.
Alkacon Opencms 6.0.3
Alkacon Opencms 6.0.4
Alkacon Opencms
Alkacon Opencms 6.0.0
Alkacon Opencms 6.2
Alkacon Opencms 6.0.2
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-23692
CVE-2012-1823
memory leak
CVE-2024-0627
CVE-2024-31402
privilege escalation
CVE-2024-36418
remote code execution
CVE-2024-27844
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »