Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
craig vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2012-1038
Cross-site scripting (XSS) vulnerability in the WebAAA login functionality (wba_login.html) in Juniper Networks Mobility System Software (MSS) 7.6.x prior to 7.6.3, 7.7.x prior to 7.7.1, 7.5.x prior to 7.5.3, and other unspecified versions prior to 7.4 and 7.3 allows remote malic...
Juniper Networks Mobility System Software 7.6
Juniper Networks Mobility System Software 7.5.1.6
Juniper Networks Mobility System Software 7.5
Juniper Networks Mobility System Software 7.7
Juniper Networks Mobility System Software 7.3
Juniper Networks Mobility System Software 7.4
1 EDB exploit
NA
CVE-2014-2736
Multiple SQL injection vulnerabilities in MODX Revolution prior to 2.2.14 allow remote malicious users to execute arbitrary SQL commands via the (1) session ID (PHPSESSID) to index.php or remote authenticated users to execute arbitrary SQL commands via the (2) user parameter to c...
Modx Modx Revolution 2.0.0
Modx Modx Revolution 2.1.5
Modx Modx Revolution 2.2.0
Modx Modx Revolution 2.2.1
Modx Modx Revolution 2.2.10
Modx Modx Revolution 2.0.5
Modx Modx Revolution 2.0.6
Modx Modx Revolution 2.0.7
Modx Modx Revolution 2.0.8
Modx Modx Revolution 2.1.0
Modx Modx Revolution 2.2.3
Modx Modx Revolution 2.2.4
Modx Modx Revolution 2.2.5
Modx Modx Revolution 2.2.6
Modx Modx Revolution 2.0.4
Modx Modx Revolution 2.1.2
Modx Modx Revolution 2.1.4
Modx Modx Revolution 2.2.11
Modx Modx Revolution
Modx Modx Revolution 2.2.8
Modx Modx Revolution 2.0.1
Modx Modx Revolution 2.0.3
NA
CVE-2007-5253
c32web.exe in McMurtrey/Whitaker Cart32 prior to 6.4 allows remote malicious users to read arbitrary files via the ImageName parameter in a GetImage action, by appending a NULL byte (%00) sequence followed by an image file extension, as demonstrated by a request for a ".txt%...
Mcmurtrey Whitaker And Associates Cart32
1 EDB exploit
NA
CVE-2004-1661
MailWorks Professional allows remote malicious users to bypass authentication and gain privileges via a cookie that contains "auth=1" and "uId=1."
Sitecubed Mailworks Professional
1 EDB exploit
NA
CVE-2007-0042
Interpretation conflict in ASP.NET in Microsoft .NET Framework 1.0, 1.1, and 2.0 for Windows 2000, XP, Server 2003, and Vista allows remote malicious users to access configuration files and obtain sensitive information, and possibly bypass security mechanisms that try to constrai...
Microsoft .net Framework 1.1
Microsoft .net Framework 2.0
Microsoft .net Framework 1.0
1 EDB exploit
NA
CVE-2014-2278
Unrestricted file upload vulnerability in op/op.AddFile2.php in SeedDMS (formerly LetoDMS and MyDMS) prior to 4.3.4 allows remote malicious users to execute arbitrary code by uploading a file with an executable extension specified by the partitionIndex parameter and leveraging CV...
Seeddms Seeddms
NA
CVE-2014-2279
Multiple directory traversal vulnerabilities in SeedDMS (formerly LetoDMS and MyDMS) prior to 4.3.4 allow (1) remote authenticated users with access to the LogManagement functionality to read arbitrary files via a .. (dot dot) in the logname parameter to out/out.LogManagement.php...
Seeddms Seeddms
NA
CVE-2006-5889
SQL injection vulnerability in printLog.php in BrewBlogger (BB) 1.3.1 allows remote malicious users to execute arbitrary SQL commands via the id parameter.
Brewblogger Brewblogger 1.3.1
1 EDB exploit
NA
CVE-2006-6028
Directory traversal vulnerability in textview.php in Anton Vlasov DoSePa 1.0.4 allows remote malicious users to read arbitrary files via a .. (dot dot) sequence or absolute file path in the file parameter.
Anton Vlasov Dosepa 1.0.4
1 EDB exploit
7.1
CVSSv3
CVE-2004-1714
BlackICE PC Protection and Server Protection installs (1) firewall.ini, (2) blackice.ini, (3) sigs.ini and (4) protect.ini with Everyone Full Control permissions, which allows local users to cause a denial of service (crash) or modify configuration, as demonstrated by modifying f...
Iss Blackice Server Protection 3.6ccg
Iss Blackice Pc Protection 3.6ccf
Iss Blackice Pc Protection 3.6ccb
Iss Blackice Pc Protection 3.6cbz
Iss Blackice Pc Protection 3.6cce
Iss Blackice Pc Protection 3.6cbr
Iss Blackice Pc Protection 3.6cca
Iss Blackice Server Protection 3.6cch
Iss Blackice Server Protection 3.6ccb
Iss Blackice Server Protection 3.6cno
Iss Blackice Pc Protection 3.6ccd
Iss Blackice Server Protection 3.5cdf
Iss Blackice Server Protection 3.6cce
Iss Blackice Pc Protection 3.6ccc
Iss Blackice Server Protection 3.6ccd
Iss Blackice Pc Protection 3.6cbd
Iss Blackice Server Protection 3.6cca
Iss Blackice Pc Protection 3.6ccg
Iss Blackice Server Protection 3.6ccc
Iss Blackice Server Protection 3.6cbz
Iss Blackice Server Protection 3.6ccf
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
inject
CVE-2024-34001
CVE-2024-37018
LFI
CVE-2024-1275
CVE-2024-1086
CSRF
CVE-2024-31030
CVE-2024-24919
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »