Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ahmed vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2007-2783
Unspecified vulnerability in Rational Soft Hidden Administrator 1.7 and previous versions allows remote malicious users to bypass authentication and execute arbitrary code via unspecified vectors. NOTE: this issue has no actionable information, and perhaps should not be included ...
Rational Software Hidden Administrator
1 EDB exploit
9.8
CVSSv3
CVE-2021-4039
A command injection vulnerability in the web interface of the Zyxel NWA-1100-NH firmware could allow an malicious user to execute arbitrary OS commands on the device.
Zyxel Nwa1100-nh Firmware
7.5
CVSSv3
CVE-2021-46378
DLink DIR850 ET850-1.08TRb03 is affected by an incorrect access control vulnerability through an unauthenticated remote configuration download.
Dlink Dir-850l Firmware 1.08trb03
9.1
CVSSv3
CVE-2021-46424
Telesquare TLR-2005KSH 1.0.0 is affected by an arbitrary file deletion vulnerability that allows a remote malicious user to delete any file, even system internal files, via a DELETE request.
Telesquare Tlr-2005ksh Firmware 1.0.0
9.8
CVSSv3
CVE-2023-28343
OS command injection affects Altenergy Power Control Software C1.2.5 via shell metacharacters in the index.php/management/set_timezone timezone parameter, because of set_timezone in models/management_model.php.
Apsystems Energy Communication Unit Firmware C1.2.5
2 Github repositories
NA
CVE-2006-5166
PHP remote file inclusion vulnerability in functions.php in PHP Web Scripts Easy Banner Free allows remote malicious users to execute arbitrary PHP code via a URL in the s[phppath] parameter.
Php Web Scripts Easy Banner Free
1 EDB exploit
4.5
CVSSv3
CVE-2017-8382
admidio 3.2.8 has CSRF in adm_program/modules/members/members_function.php with an impact of deleting arbitrary user accounts.
Admidio Admidio 3.2.8
1 EDB exploit
1 Github repository
NA
CVE-2009-4324
Use-after-free vulnerability in the Doc.media.newPlayer method in Multimedia.api in Adobe Reader and Acrobat 9.x prior to 9.3, and 8.x prior to 8.2 on Windows and Mac OS X, allows remote malicious users to execute arbitrary code via a crafted PDF file using ZLib compressed stream...
Adobe Acrobat Reader 3.0
Adobe Acrobat Reader 4.0
Adobe Acrobat Reader 5.0.11
Adobe Acrobat Reader 5.0.5
Adobe Acrobat 6.0.4
Adobe Acrobat 6.0.5
Adobe Acrobat 7.0.6
Adobe Acrobat 7.0.7
Adobe Acrobat Reader 5.1
Adobe Acrobat Reader 6.0
Adobe Acrobat Reader 7.0.2
Adobe Acrobat Reader 7.0.3
Adobe Acrobat Reader 8.0
Adobe Acrobat Reader 8.1
Adobe Acrobat Reader
Adobe Acrobat Reader 4.0.5c
Adobe Acrobat Reader 4.5
Adobe Acrobat Reader 5.0.9
Adobe Acrobat 6.0
Adobe Acrobat 7.0.2
Adobe Acrobat 7.0.3
Adobe Acrobat 8.0
3 EDB exploits
3 Articles
8.8
CVSSv3
CVE-2012-0699
Multiple cross-site request forgery (CSRF) vulnerabilities in Family Connections CMS (aka FCMS) 2.9 and previous versions allow remote malicious users to hijack the authentication of arbitrary users for requests that (1) add news via an add action to familynews.php or (2) add a p...
Haudenschilt Family Connections Cms
2 EDB exploits
8.8
CVSSv3
CVE-2019-0235
Apache OFBiz 17.12.01 is vulnerable to some CSRF attacks.
Apache Ofbiz 17.12.01
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-33572
CVE-2024-24919
CVE-2024-0230
CVE-2024-32714
HTML injection
local file inclusion
CVE-2024-31098
CVE-2024-31244
privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
2
3
4
5
6
7
8
9
NEXT »