Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
multiple vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2007-6078
Multiple SQL injection vulnerabilities in SkyPortal RC6 allow remote malicious users to execute arbitrary SQL commands via unspecified parameters to (1) nc_top.asp; (2) inc_bookmarks.asp, possibly involving a parameter passed from cp_main.asp; (3) inc_profile_functions.asp; or (4...
Skyportal Skyportal Rc6
1 EDB exploit
NA
CVE-2012-6522
Directory traversal vulnerability in the getContent function in codes/wcms.php in w-CMS 2.01 allows remote malicious users to read arbitrary files via a .. (dot dot) in the p parameter. NOTE: some of these details are obtained from third party information.
W-cms W-cms 2.01
2 EDB exploits
6.5
CVSSv3
CVE-2018-12466
openSUSE openbuildservice prior to 9.2.4 allowed authenticated users to delete packages on specific projects with project links.
Opensuse Open Build Service
7.5
CVSSv3
CVE-2018-12477
A Improper Neutralization of CRLF Sequences vulnerability in Open Build Service allows remote malicious users to cause deletion of directories by tricking obs-service-refresh_patches to delete them. Affected releases are openSUSE Open Build Service: versions prior to d6244245dda5...
Opensuse Leap 42.3
Opensuse Leap 15.0
6.5
CVSSv3
CVE-2018-12478
A Improper Input Validation vulnerability in Open Build Service allows remote malicious users to extract files from the system where the service runs. Affected releases are openSUSE Open Build Service: status of is unknown.
Opensuse Open Build Service -
NA
CVE-2011-0379
Buffer overflow on Cisco Adaptive Security Appliances (ASA) 5500 series devices with software 1.6.x; Cisco TelePresence Multipoint Switch (CTMS) devices with software 1.0.x, 1.1.x, 1.5.x, and 1.6.x; Cisco TelePresence endpoint devices with software 1.2.x up to and including 1.6.x...
Cisco Adaptive Security Appliance Software 1.6.0
Cisco Asa 5500
Cisco 5500 Series Adaptive Security Appliance
Cisco Telepresence Multipoint Switch Software 1.0.4.0
Cisco Telepresence Multipoint Switch Software 1.1.0
Cisco Telepresence Multipoint Switch Software 1.5.4
Cisco Telepresence Multipoint Switch Software 1.5.5
Cisco Telepresence Multipoint Switch Software 1.1.1
Cisco Telepresence Multipoint Switch Software 1.1.2
Cisco Telepresence Multipoint Switch Software 1.5.6
Cisco Telepresence Multipoint Switch Software 1.6.0
Cisco Telepresence Multipoint Switch Software 1.5.2
Cisco Telepresence Multipoint Switch Software 1.5.3
Cisco Telepresence Multipoint Switch Software 1.6.3
Cisco Telepresence Multipoint Switch Software 1.6.4
Cisco Telepresence Multipoint Switch Software 1.5.0
Cisco Telepresence Multipoint Switch Software 1.5.1
Cisco Telepresence Multipoint Switch Software 1.6.1
Cisco Telepresence Multipoint Switch Software 1.6.2
Cisco Telepresence Multipoint Switch
Cisco Telepresence System Software 1.4.7
Cisco Telepresence System Software 1.3.2
8.8
CVSSv3
CVE-2015-3140
Multiple cross-site request forgery (CSRF) vulnerabilities in Synametrics Technologies SynaMan prior to 3.5 Build 1451, Syncrify prior to 3.7 Build 856, and SynTail prior to 1.5 Build 567
Synametrics Synaman 1.0
Synametrics Synaman 1.1
Synametrics Synaman 2.0
Synametrics Synaman 2.1
Synametrics Synaman 2.2
Synametrics Synaman 2.3
Synametrics Synaman 2.4
Synametrics Synaman 2.5
Synametrics Synaman 2.6
Synametrics Synaman 2.7
Synametrics Synaman 3.0
Synametrics Synaman 3.1
Synametrics Synaman 3.2
Synametrics Synaman 3.3
Synametrics Synaman 3.4
Synametrics Syncrify 1.3
Synametrics Syncrify 1.4
Synametrics Syncrify 2.0
Synametrics Syncrify 2.1
Synametrics Syncrify 2.2
Synametrics Syncrify 2.3
Synametrics Syncrify 2.4
3 EDB exploits
NA
CVE-2015-6009
Multiple SQL injection vulnerabilities in Web Reference Database (aka refbase) up to and including 0.9.6 allow remote malicious users to execute arbitrary SQL commands via (1) the where parameter to rss.php or (2) the sqlQuery parameter to search.php, a different issue than CVE-2...
Refbase Refbase
1 EDB exploit
9.8
CVSSv3
CVE-2017-1002003
Vulnerability in wordpress plugin wp2android-turn-wp-site-into-android-app v1.1.4, The plugin includes unlicensed vulnerable CMS software from http://www.invedion.com.
Wp2android-turn-wp-site-into-android-app Project Wp2android-turn-wp-site-into-android-app 1.1.4
1 EDB exploit
NA
CVE-2009-0165
Integer overflow in the JBIG2 decoder in Xpdf 3.02pl2 and previous versions, as used in Poppler and other products, when running on Mac OS X, has unspecified impact, related to "g*allocn."
Foolabs Xpdf 0.91a
Glyphandcog Xpdfreader 0.90
Glyphandcog Xpdfreader 0.4
Glyphandcog Xpdfreader 0.3
Glyphandcog Xpdfreader 1.01
Foolabs Xpdf 0.93c
Foolabs Xpdf 0.92d
Foolabs Xpdf 0.92a
Foolabs Xpdf 0.92b
Glyphandcog Xpdfreader
Glyphandcog Xpdfreader 3.01
Glyphandcog Xpdfreader 0.91
Glyphandcog Xpdfreader 0.6
Foolabs Xpdf 0.5a
Glyphandcog Xpdfreader 2.03
Glyphandcog Xpdfreader 2.00
Foolabs Xpdf 0.92e
Glyphandcog Xpdfreader 0.93
Glyphandcog Xpdfreader 0.80
Foolabs Xpdf 0.7a
Glyphandcog Xpdfreader 0.92
Glyphandcog Xpdfreader 0.2
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
NULL pointer dereference
CVE-2024-5274
CVE-2020-17519
CVE-2024-35340
CVE-2021-47558
local
XML injection
CVE-2021-47519
CVE-2021-47543
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »