Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
high-tech bridge sa vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2014-1908
The error-handling feature in (1) bp.php, (2) videowhisper_streaming.php, and (3) ls/rtmp.inc.php in the VideoWhisper Live Streaming Integration plugin prior to 4.29.5 for WordPress allows remote malicious users to obtain sensitive information via a direct request, which reveals ...
Videowhisper Videowhisper Live Streaming Integration
1 EDB exploit
NA
CVE-2014-1944
Cross-site scripting (XSS) vulnerability in Ilch CMS 2.0 and previous versions allows remote malicious users to inject arbitrary web script or HTML via the text parameter to index.php/guestbook/index/newentry.
Ilch Ilch Cms
1 EDB exploit
NA
CVE-2014-1945
SQL injection vulnerability in ajax_udf.php in OpenDocMan prior to 1.2.7.2 allows remote malicious users to execute arbitrary SQL commands via the add_value parameter.
Opendocman Opendocman 1.2.6.3
Opendocman Opendocman 1.2.6.2
Opendocman Opendocman 1.2.6.7
Opendocman Opendocman 1.2.6.6
Opendocman Opendocman
Opendocman Opendocman 1.2.7
Opendocman Opendocman 1.2.6.8
Opendocman Opendocman 1.2.6.5
1 EDB exploit
NA
CVE-2014-0793
Multiple cross-site scripting (XSS) vulnerabilities in the StackIdeas Komento (com_komento) component prior to 1.7.3 for Joomla! allow remote malicious users to inject arbitrary web script or HTML via the (1) website or (2) latitude parameter in a comment to the default URI.
Stackideas Komento 1.7.1
Stackideas Komento 1.7.0
Stackideas Komento
1 EDB exploit
NA
CVE-2014-0794
SQL injection vulnerability in the JV Comment (com_jvcomment) component prior to 3.0.3 for Joomla! allows remote authenticated users to execute arbitrary SQL commands via the id parameter in a comment.like action to index.php.
Joomla Com Jvcomment 3.0.2
1 EDB exploit
NA
CVE-2012-2208
Directory traversal vulnerability in upgrade.php in Piwigo prior to 2.3.4 allows remote malicious users to include and execute arbitrary local files via a .. (dot dot) in the language parameter.
Piwigo Piwigo
1 EDB exploit
NA
CVE-2012-2209
Multiple cross-site scripting (XSS) vulnerabilities in admin.php in Piwigo prior to 2.3.4 allow remote malicious users to inject arbitrary web script or HTML via the (1) section parameter in the configuration module, (2) installstatus parameter in the languages_new module, or (3)...
Piwigo Piwigo
1 EDB exploit
NA
CVE-2012-2227
Directory traversal vulnerability in update/index.php in PluXml prior to 5.1.6 allows remote malicious users to include and execute arbitrary local files via a ..%2F (encoded dot dot slash) in the default_lang parameter.
Pluxml Pluxml
1 EDB exploit
NA
CVE-2014-1401
Multiple SQL injection vulnerabilities in AuraCMS 2.3 and previous versions allow remote authenticated users to execute arbitrary SQL commands via the (1) search parameter to mod/content/content.php or (2) CLIENT_IP, (3) X_FORWARDED_FOR, (4) X_FORWARDED, (5) FORWARDED_FOR, or (6)...
Auracms Auracms 2.2.2
Auracms Auracms 1.5
Auracms Auracms 2.1
Auracms Auracms 2.2
Auracms Auracms 2.2.1
Auracms Auracms 1.62
Auracms Auracms 2.0
Auracms Auracms 1.1
Auracms Auracms 1.0
Auracms Auracms
Auracms Auracms 1.61
Auracms Auracms 1.3
Auracms Auracms 1.2
1 EDB exploit
NA
CVE-2014-1459
SQL injection vulnerability in dg-admin/index.php in doorGets CMS 5.2 and previous versions allows remote authenticated administrators to execute arbitrary SQL commands via the _position_down_id parameter. NOTE: this can be leveraged using CSRF to allow remote malicious users to ...
Doorgets Doorgets Cms 3.0
Doorgets Doorgets Cms
Doorgets Doorgets Cms 4.0
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-7073
CVE-2024-5496
CVE-2024-5495
XPath injection
bypass
CVE-2024-30043
CVE-2024-24919
denial of service
CVE-2024-35468
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »