Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
pro search pro search vulnerabilities and exploits
(subscribe to this query)
6.9
CVSSv2
CVE-2010-5239
Untrusted search path vulnerability in DAEMON Tools Lite 4.35.6.0091 and Pro Standard 4.36.0309.0160 allows local users to gain privileges via a Trojan horse mfc80loc.dll file in the current working directory, as demonstrated by a directory that contains a .mds file. NOTE: some o...
Daemon-tools Daemon Tools 4.36.0309.0160
Daemon-tools Daemon Tools 4.35.6.0091
1 EDB exploit
5
CVSSv2
CVE-2022-0919
The Salon booking system Free and pro WordPress plugins prior to 7.6.3 do not have proper authorisation when searching bookings, allowing any unauthenticated users to search other's booking, as well as retrieve sensitive information about the bookings, such as the full name,...
Salonbookingsystem Salon Booking System
5
CVSSv2
CVE-2018-20523
Xiaomi Stock Browser 10.2.4.g on Xiaomi Redmi Note 5 Pro devices and other Redmi Android phones allows content provider injection. In other words, a third-party application can read the user's cleartext browser history via an app.provider.query content://com.android.browser....
Mi Stock Browser 10.2.4g
Mi Redmi 7 Firmware -
Mi Redmi Note 7 Firmware -
Mi Redmi Note 6 Pro Firmware -
Mi Redmi 6 Firmware -
Mi Redmi 6a Firmware -
Mi Redmi S2 Firmware -
Mi Redmi Note 5 Pro Firmware -
Mi Redmi K20 Pro Firmware -
Mi Redmi K20 Firmware -
Mi Redmi 7a Firmware -
Mi Redmi Go Firmware -
Mi Redmi Note 5 Firmware -
Mi Redmi Y3 Firmware -
Mi Redmi Note 7s Firmware -
Mi Redmi 4a Firmware -
Mi Redmi Note 4 Firmware -
Mi Redmi 5 Plus Firmware -
Mi Redmi Note 5a Prime Firmware -
6.4
CVSSv2
CVE-2006-2827
SQL injection vulnerability in search.php in X-Cart Gold and Pro 4.0.18, and X-Cart 4.1.0 beta 1, allows remote malicious users to execute arbitrary SQL commands via the "Search for pattern" field, when the settings specify only "Search in Detailed description"...
Qualiteam X-cart 4.1.0 Beta 1
Qualiteam X-cart Gold 4.0.18
Qualiteam X-cart Pro 4.0.18
6.9
CVSSv2
CVE-2022-26319
An installer search patch element vulnerability in Trend Micro Portable Security 3.0 Pro, 3.0 and 2.0 could allow a local malicious user to place an arbitrarily generated DLL file in an installer folder to elevate local privileges. Please note: an attacker must first obtain the a...
Trendmicro Portable Security
6.8
CVSSv2
CVE-2018-0580
Untrusted search path vulnerability in CELSYS, Inc CLIP STUDIO series (CLIP STUDIO PAINT (for Windows) EX/PRO/DEBUT Ver.1.7.3 and previous versions, CLIP STUDIO ACTION (for Windows) Ver.1.5.5 and previous versions, with its timestamp prior to April 25, 2018, 12:11:31, and CLIP ST...
Celsys Clip Studio Modeler
Celsys Clip Studio Paint
Celsys Clip Studio Action
4.3
CVSSv2
CVE-2008-0583
Cross-zone scripting vulnerability in the Internet Explorer web control in Skype 3.6.0.244, and previous versions 3.5.x and 3.6.x versions, on Windows allows user-assisted remote malicious users to inject arbitrary web script or HTML in the Local Machine Zone via the Description ...
Skype Technologies Skype 3.5
Skype Technologies Skype 3.6
Skype Technologies Skype 3.6.216
Skype Technologies Skype 3.6.244
NA
CVE_2022_40684
Official Writeup - Simple CTF 2.0 Created: April 23, 2024 7:50 PM Today I completed an other room on TryHackMe with a simple file-upload vulnerability which I built. I have tried for dancing around this whole CTF machine and getting a lot of walls of challenges in the end it co...
1 Github repository
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
validation
CVE-2012-1823
malicious code
CVE-2024-5770
CVE-2023-45866
CVE-2024-35687
local users
CVE-2024-31246
CVE-2024-35730
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
2
3
4
5
6
7