Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
valentin vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2024-30924
Cross Site Scripting vulnerability in DerbyNet v9.0 and below allows malicious users to execute arbitrary code via the checkin.php component.
8.8
CVSSv3
CVE-2024-22899
Vinchin Backup & Recovery v7.2 exists to contain an authenticated remote code execution (RCE) vulnerability via the syncNtpTime function.
Vinchin Vinchin Backup And Recovery
1 Github repository
8.8
CVSSv3
CVE-2024-22900
Vinchin Backup & Recovery v7.2 exists to contain an authenticated remote code execution (RCE) vulnerability via the setNetworkCardInfo function.
Vinchin Vinchin Backup And Recovery
9.8
CVSSv3
CVE-2024-22901
Vinchin Backup & Recovery v7.2 exists to use default MYSQL credentials.
Vinchin Vinchin Backup And Recovery
1 Github repository
9.8
CVSSv3
CVE-2024-22902
Vinchin Backup & Recovery v7.2 exists to be configured with default root credentials.
Vinchin Vinchin Backup And Recovery
1 Github repository
8.8
CVSSv3
CVE-2024-22903
Vinchin Backup & Recovery v7.2 exists to contain an authenticated remote code execution (RCE) vulnerability via the deleteUpdateAPK function.
Vinchin Vinchin Backup And Recovery
1 Github repository
NA
CVE-2010-1497
Cross-site scripting (XSS) vulnerability in download_proc.php in dl_stats prior to 2.0 allows remote malicious users to inject arbitrary web script or HTML via the id parameter.
Clausvb Dl Stats 1.2
1 EDB exploit
NA
CVE-2024-25228
Vinchin Backup and Recovery 7.2 and previous versions is vulnerable to Authenticated Remote Code Execution (RCE) via the getVerifydiyResult function in ManoeuvreHandler.class.php.
1 Github repository
NA
CVE-1999-0970
The OmniHTTPD visadmin.exe program allows a remote malicious user to conduct a denial of service via a malformed URL which causes a large number of temporary files to be created.
Omnicron Omnihttpd
1 EDB exploit
NA
CVE-2010-1498
Multiple SQL injection vulnerabilities in dl_stats prior to 2.0 allow remote malicious users to execute arbitrary SQL commands via the id parameter to (1) download.php and (2) view_file.php.
Clausvb Dl Stats
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27802
template injection
CVE-2024-0044
code injection
CVE-2024-35474
CVE-2024-27857
CVE-2024-23251
CVE-2024-23692
physical
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »