Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
revolution vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2014-8992
Cross-site scripting (XSS) vulnerability in manager/assets/fileapi/FileAPI.flash.image.swf in MODX Revolution 2.3.2-pl allows remote malicious users to inject arbitrary web script or HTML via the callback parameter.
Modx Modx Revolution 2.3.2
4.3
CVSSv2
CVE-2015-5151
Cross-site scripting (XSS) vulnerability in the Slider Revolution (revslider) plugin 4.2.2 for WordPress allows remote malicious users to inject arbitrary web script or HTML via the client_action parameter in a revslider_ajax_action action to wp-admin/admin-ajax.php.
Themepunch Slider Revolution 4.2.2
4.3
CVSSv2
CVE-2007-4713
Multiple cross-site scripting (XSS) vulnerabilities in urchin.cgi in Urchin 5.6.00r2 allow remote malicious users to inject arbitrary web script or HTML via the (1) dtc, (2) vid, (3) n, (4) dt, (5) ed, and (6) bd parameters.
Roi Revolution Urchin 5.6.00r2
7.5
CVSSv2
CVE-2007-4832
Format string vulnerability in CellFactor Revolution 1.03 and previous versions allows remote malicious users to execute arbitrary code via format string specifiers in a malformed nickname.
Immersion Games Cellfactor Revolution
4.3
CVSSv2
CVE-2017-11744
In MODX Revolution 2.5.7, the "key" and "name" parameters in the System Settings module are vulnerable to XSS. A malicious payload sent to connectors/index.php will be triggered by every user, when they visit this module.
Modx Modx Revolution 2.5.7
7.5
CVSSv2
CVE-2004-1552
SQL injection vulnerability in aspWebCalendar allows remote malicious users to execute arbitrary SQL statements via (1) the username field on the login page or (2) the eventid parameter to calendar.asp.
Full Revolution Aspwebcalendar 4.5
2 EDB exploits
7.5
CVSSv2
CVE-2007-4838
Multiple buffer overflows in CellFactor Revolution 1.03 and previous versions allow remote malicious users to execute arbitrary code via a long string in a (1) 0x21, (2) 0x22, or (3) 0x23 packet.
Immersion Games Cellfactor Revolution
1 EDB exploit
3.5
CVSSv2
CVE-2018-10382
MODX Revolution 2.6.3 has XSS.
Modx Modx Revolution 2.6.3
5
CVSSv2
CVE-2017-8115
Directory traversal in setup/processors/url_search.php (aka the search page of an unused processor) in MODX Revolution 2.5.7 might allow remote malicious users to obtain system directory information.
Modx Modx Revolution 2.5.7
NA
CVE-2023-28622
Auth. (author+) Stored Cross-Site Scripting (XSS) vulnerability in Trident Technolabs Easy Slider Revolution plugin <= 1.0.0 versions.
Tridenttechnolabs Easy Slider Revolution
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3581
reflected XSS
CVE-2024-26925
CVE-2024-27956
LFI
CVE-2024-3607
CVE-2024-3107
CVE-2024-3295
SQL
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »