Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
coresecurity.com vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2010-1486
Multiple cross-site scripting (XSS) vulnerabilities in _invoice.asp in CactuShop prior to 6.155 allow remote malicious users to inject arbitrary web script or HTML via the (1) billing address or (2) shipping address.
Cactushop Cactushop 4.5
Cactushop Cactushop 4.6
Cactushop Cactushop 4.7
Cactushop Cactushop 5.0
Cactushop Cactushop 4
Cactushop Cactushop
Cactushop Cactushop 3
Cactushop Cactushop 4.1
Cactushop Cactushop 5.1
1 EDB exploit
NA
CVE-2009-2898
Cross-site scripting (XSS) vulnerability in the Alerts list feature in the web interface in SpringSource Hyperic HQ 3.2.x prior to 3.2.6.1, 4.0.x prior to 4.0.3.1, 4.1.x prior to 4.1.2.1, and 4.2-beta1; Application Management Suite (AMS) 2.0.0.SR3; and tc Server 6.0.20.B allows r...
Springsource Hyperic Hq 3.2.2
Springsource Hyperic Hq 3.2.3
Springsource Hyperic Hq 4.0.3
Springsource Hyperic Hq 4.1.1
Springsource Hyperic Hq 3.2.4
Springsource Hyperic Hq 3.2.5
Springsource Hyperic Hq 4.1.0
Springsource Hyperic Hq 4.1.2
Springsource Hyperic Hq 3.2.0
Springsource Hyperic Hq 3.2.6
Springsource Hyperic Hq 4.0.0
Springsource Hyperic Hq 4.2
Springsource Application Management Suite 2.0.0
Springsource Tc Server 6.0.20
Springsource Hyperic Hq 3.2.1
Springsource Hyperic Hq 3.2
Springsource Hyperic Hq 4.0.1
Springsource Hyperic Hq 4.0.2
1 EDB exploit
NA
CVE-2013-1604
Directory traversal vulnerability in MayGion IP Cameras with firmware prior to 2013.04.22 (05.53) allows remote malicious users to read arbitrary files via a .. (dot dot) in the default URI.
Maygion Ip Camera Firmware
Maygion Ip Camera Firmware 05.49
Maygion Ip Camera Firmware 05.59
Maygion Ip Camera Firmware 05.53
Maygion Ip Camera Firmware 6.2
Maygion Ip Camera Firmware 6.1
Maygion Ip Camera Firmware 6.0
Maygion Ip Camera Firmware 05.60
1 EDB exploit
7.8
CVSSv3
CVE-2018-19321
The GPCIDrv and GDrv low-level drivers in GIGABYTE APP Center v1.05.21 and previous versions, AORUS GRAPHICS ENGINE prior to 1.57, XTREME GAMING ENGINE prior to 1.26, and OC GURU II v2.08 expose functionality to read and write arbitrary physical memory. This could be leveraged by...
Gigabyte App Center
Gigabyte Aorus Graphics Engine
Gigabyte Xtreme Gaming Engine
Gigabyte Oc Guru Ii 2.08
2 Github repositories
7.8
CVSSv3
CVE-2018-19322
The GPCIDrv and GDrv low-level drivers in GIGABYTE APP Center v1.05.21 and previous versions, AORUS GRAPHICS ENGINE prior to 1.57, XTREME GAMING ENGINE prior to 1.26, and OC GURU II v2.08 expose functionality to read/write data from/to IO ports. This could be leveraged in a numbe...
Gigabyte App Center
Gigabyte Aorus Graphics Engine
Gigabyte Xtreme Gaming Engine
Gigabyte Oc Guru Ii 2.08
9.8
CVSSv3
CVE-2018-19323
The GDrv low-level driver in GIGABYTE APP Center v1.05.21 and previous versions, AORUS GRAPHICS ENGINE prior to 1.57, XTREME GAMING ENGINE prior to 1.26, and OC GURU II v2.08 exposes functionality to read and write Machine Specific Registers (MSRs).
Gigabyte Aorus Graphics Engine
Gigabyte Xtreme Gaming Engine
Gigabyte Gigabyte App Center
Gigabyte Oc Guru Ii 2.08
2 Github repositories
NA
CVE-2014-83983
Various Corel software suffers from a DLL hijacking vulnerability. When a file associated with the Corel software is opened, the directory of that document is first used to locate DLLs, which could allow an attacker to execute arbitrary commands by inserting malicious DLLs into t...
NA
CVE-2013-49843
Core Security Technologies Advisory - Sophos Web Protection Appliance versions 3.7.9 and earlier, 3.8.1, and 3.8.0 suffer from multiple OS command injection vulnerabilities.
NA
CVE-2013-49873
Core Security Technologies Advisory - A security vulnerability was discovered in PineApp Mail-SeCure Suite, allowing a non-privileged attacker to get a root shell by sending a specially crafted command from the Mail-SeCure console. A valid user account is needed to launch the att...
NA
CVE-2013-49883
Core Security Technologies Advisory - IcoFX is prone to a (client side) security vulnerability when processing .ICO files. This vulnerability could be exploited by a remote attacker to execute arbitrary code on the target machine, by enticing the user of IcoFX to open a specially...
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27322
cross-site request forgery
unauthorized
CVE-2024-33925
reflected XSS
CVE-2023-51580
CVE-2023-51579
CVE-2015-2051
CVE-2023-51609
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »