Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
validation vulnerabilities and exploits
(subscribe to this query)
8.1
CVSSv3
CVE-2018-17215
An information-disclosure issue exists in Postman up to and including 6.3.0. It validates a server's X.509 certificate and presents an error if the certificate is not valid. Unfortunately, the associated HTTPS request data is sent anyway. Only the response is not displayed. ...
Postman Postman
NA
CVE-2004-0846
Unknown vulnerability in Microsoft Excel 2000, 2002, 2001 for Mac, and v.X for Mac allows remote malicious users to execute arbitrary code via a malicious file containing certain parameters that are not properly validated.
Microsoft Excel X
Microsoft Office 2000
Microsoft Excel 2001
Microsoft Excel 2002
Microsoft Office 2001
Microsoft Office V.x
Microsoft Excel 2000
NA
CVE-2012-2981
Webmin 1.590 and previous versions allows remote authenticated users to execute arbitrary Perl code via a crafted file associated with the type (aka monitor type name) parameter.
Gentoo Webmin 1.570
Gentoo Webmin 1.550
Gentoo Webmin 1.450
Gentoo Webmin 1.440
Gentoo Webmin 1.370
Gentoo Webmin 1.340
Gentoo Webmin 1.270
Gentoo Webmin 1.560
Gentoo Webmin 1.530
Gentoo Webmin 1.430
Gentoo Webmin 1.420
Gentoo Webmin 1.330
Gentoo Webmin 1.320
Gentoo Webmin 1.240
Gentoo Webmin 1.230
Gentoo Webmin 1.140
Gentoo Webmin 1.520
Gentoo Webmin 1.510
Gentoo Webmin 1.410
Gentoo Webmin 1.400
Gentoo Webmin 1.310
Gentoo Webmin 1.300
9.8
CVSSv3
CVE-2018-19971
JFrog Artifactory Pro 6.5.9 has Incorrect Access Control.
Jfrog Artifactory 6.5.9
NA
CVE-2006-5943
Multiple SQL injection vulnerabilities in inventory/display/imager.asp in Website Designs for Less Inventory Manager allow remote malicious users to execute arbitrary SQL commands via the (1) pictable, (2) picfield, or (3) where parameter.
Website Designs For Less Inventory Manager
1 EDB exploit
NA
CVE-2002-1673
The web interface for Webmin 0.92 does not properly quote or filter script code in files that are displayed to the interface, which allows local users to execute script and possibly steal cookies by inserting the script into certain files or fields, such as a real user name entry...
Webmin Webmin 0.1
Webmin Webmin 0.41
Webmin Webmin 0.42
Webmin Webmin 0.78
Webmin Webmin 0.79
Webmin Webmin 0.80
Webmin Webmin 0.92.1
Webmin Webmin 0.22
Webmin Webmin 0.3
Webmin Webmin 0.6
Webmin Webmin 0.7
Webmin Webmin 0.85
Webmin Webmin 0.88
Webmin Webmin 0.31
Webmin Webmin 0.4
Webmin Webmin 0.76
Webmin Webmin 0.77
Webmin Webmin 0.91
Webmin Webmin 0.92
Webmin Webmin 0.2
Webmin Webmin 0.21
Webmin Webmin 0.5
1 EDB exploit
NA
CVE-2010-4873
Cross-site scripting (XSS) vulnerability in confirm.php in WeBid 0.8.5 P1 allows remote malicious users to inject arbitrary web script or HTML via the id parameter.
Webidsupport Webid 0.8.5
1 EDB exploit
NA
CVE-2006-1916
Multiple cross-site scripting (XSS) vulnerabilities in profile.php in DbbS 2.0-alpha and previous versions allow remote malicious users to inject arbitrary web script or HTML via the (1) ulocation or (2) uhobbies parameters.
Dbbs Dbbs 2.0
Dbbs Dbbs
1 EDB exploit
NA
CVE-2006-2067
SQL injection vulnerability in vb_board_functions.php in MKPortal 1.1, as used with vBulletin 3.5.4 and previous versions, allows remote malicious users to execute arbitrary SQL commands via the userid parameter.
Mkportal Mkportal 1.1
1 EDB exploit
NA
CVE-2007-3354
Multiple SQL injection vulnerabilities in NetClassifieds Premium Edition allow remote malicious users to execute arbitrary SQL commands via the s_user_id parameter to ViewCat.php and other unspecified vectors. NOTE: the CatID/ViewCat.php, CatID/gallery.php, and ItemNum/ViewItem.p...
Scriptdevelopers.net Netclassifieds 1.9.6.3
Scriptdevelopers.net Netclassifieds 1.0.1
Scriptdevelopers.net Netclassifieds 1.5.1
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
validation
CVE-2012-1823
malicious code
CVE-2024-5770
CVE-2023-45866
CVE-2024-35687
local users
CVE-2024-31246
CVE-2024-35730
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »