Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
liquidworm vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2006-2758
Directory traversal vulnerability in jetty 6.0.x (jetty6) beta16 allows remote malicious users to read arbitrary files via a %2e%2e%5c (encoded ../) in the URL. NOTE: this might be the same issue as CVE-2005-3747.
Jetty Jetty 6.0
1 EDB exploit
NA
CVE-2012-3837
Multiple cross-site scripting (XSS) vulnerabilities in apps/users/registration.template.php in Baby Gekko 1.2.0 and previous versions allow remote malicious users to inject arbitrary web script or HTML via the (1) username, (2) email_address, (3) password, (4) password_verify, (5...
Babygekko Baby Gekko 0.90
Babygekko Baby Gekko 1.1.5
Babygekko Baby Gekko
Babygekko Baby Gekko 1.0.0
Babygekko Baby Gekko 0.98
Babygekko Baby Gekko 1.1.3
Babygekko Baby Gekko 1.1.2
Babygekko Baby Gekko 1.1.1
Babygekko Baby Gekko 1.1.0
Babygekko Baby Gekko 1.1.4
Babygekko Baby Gekko 1.0.1
Babygekko Baby Gekko 0.99
Babygekko Baby Gekko 0.91
1 EDB exploit
NA
CVE-2011-5155
Untrusted search path vulnerability in Help & Manual 5.5.1 Build 1296 allows local users to gain privileges via a Trojan horse ijl15.dll file in the current working directory, as demonstrated by a directory that contains a .hmxz, .hmxp, .hmskin, .hmx, .hm3, .hpj, .hlp, or .ch...
Helpandmanual Help \\& Manual 5.5.1
1 EDB exploit
NA
CVE-2015-6494
Cross-site scripting (XSS) vulnerability in Infinite Automation Mango Automation 2.5.x and 2.6.x prior to 2.6.0 build 430 allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors.
Infinite Automation Systems Mango Automation 2.5.0
Infinite Automation Systems Mango Automation 2.5.5
Infinite Automation Systems Mango Automation 2.6.0
1 EDB exploit
NA
CVE-2009-1660
Stack-based buffer overflow in URUWorks ViPlay3 3.0 and previous versions allows remote malicious users to cause a denial of service (crash) and possibly execute arbitrary code via a long file entry in a .vpl file.
Urusoft Viplay3 3.0
1 EDB exploit
NA
CVE-2014-9101
Multiple cross-site request forgery (CSRF) vulnerabilities in Oxwall 1.7.0 (build 7907 and 7906) and SkaDate Lite 2.0 (build 7651) allow remote malicious users to hijack the authentication of administrators for requests that conduct cross-site scripting (XSS) attacks or possibly ...
Skalfa Skadate Lite 2.0
Oxwall Oxwall 1.7.0
1 EDB exploit
NA
CVE-2013-2226
Multiple SQL injection vulnerabilities in GLPI prior to 0.83.9 allow remote malicious users to execute arbitrary SQL commands via the (1) users_id_assign parameter to ajax/ticketassigninformation.php, (2) filename parameter to front/document.form.php, or (3) table parameter to aj...
Glpi-project Glpi
Glpi-project Glpi 0.83.7
Glpi-project Glpi 0.83.6
Glpi-project Glpi 0.83.5
Glpi-project Glpi 0.83.1
Glpi-project Glpi 0.83
Glpi-project Glpi 0.83.4
Glpi-project Glpi 0.83.3
Glpi-project Glpi 0.83.31
Glpi-project Glpi 0.83.2
1 EDB exploit
NA
CVE-2014-10008
Multiple cross-site request forgery (CSRF) vulnerabilities in Stark CRM 1.0 allow remote malicious users to hijack the authentication of administrators for requests that add (1) an administrator via a crafted request to the admin page, (2) an agent via a crafted request to the ag...
Iwcn Stark Crm 1.0
1 EDB exploit
NA
CVE-2014-10009
Multiple cross-site scripting (XSS) vulnerabilities in Stark CRM 1.0 allow remote malicious users to inject arbitrary web script or HTML via the (1) first_name, (2) last_name, or (3) notes parameter to the client page; (4) insu_name or (5) price parameter to the add_insurance_cat...
Iwcn Stark Crm 1.0
1 EDB exploit
NA
CVE-2014-10035
Multiple cross-site scripting (XSS) vulnerabilities in the admin area in couponPHP prior to 1.2.0 allow remote administrators to inject arbitrary web script or HTML via the (1) sEcho parameter to comments_paginate.php or (2) stores_paginate.php or the (3) affiliate_url, (4) descr...
Couponphp Couponphp
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-34377
CVE-2024-20859
CVE-2023-49606
inject
arbitrary
CVE-2024-33788
CVE-2024-30973
IDOR
CVE-2024-33907
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »