Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
liquidworm vulnerabilities and exploits
(subscribe to this query)
3.5
CVSSv2
CVE-2009-2173
The LAN game feature in Carom3D 5.06 allows remote authenticated users to cause a denial of service (application hang) via a crafted HTTP request to TCP port 28012.
Gameis Carom3d 5.06
1 EDB exploit
9.3
CVSSv2
CVE-2008-7079
Buffer overflow in Nero ShowTime 5.0.15.0 allows remote malicious users to cause a denial of service (crash) and possibly execute arbitrary code via a long entry in a .M3U playlist file. NOTE: this issue might be related to CVE-2008-0619.
Nero Showtime 5.0.15.0
1 EDB exploit
4.3
CVSSv2
CVE-2013-3535
Multiple cross-site scripting (XSS) vulnerabilities in CMSLogik 1.2.0 and 1.2.1 allow remote malicious users to inject arbitrary web script or HTML via the (1) admin_email, (2) header_title, (3) site_title parameter to admin/settings; (4) recaptcha_private or (5) recaptcha_public...
Themelogik Cmslogik 1.2.0
Themelogik Cmslogik 1.2.1
1 EDB exploit
10
CVSSv2
CVE-2008-4588
Stack-based buffer overflow in the FTP server in Etype Eserv 3.x, possibly 3.26, allows remote malicious users to cause a denial of service (daemon crash) and possibly execute arbitrary code via a long argument to the ABOR command.
Etype Eserv 3.0
Etype Eserv 3.25
Etype Eserv 3.26
1 EDB exploit
6.3
CVSSv2
CVE-2011-5155
Untrusted search path vulnerability in Help & Manual 5.5.1 Build 1296 allows local users to gain privileges via a Trojan horse ijl15.dll file in the current working directory, as demonstrated by a directory that contains a .hmxz, .hmxp, .hmskin, .hmx, .hm3, .hpj, .hlp, or .ch...
Helpandmanual Help \\& Manual 5.5.1
1 EDB exploit
4.3
CVSSv2
CVE-2015-2678
Multiple cross-site scripting (XSS) vulnerabilities in MetalGenix GeniXCMS prior to 0.0.2 allow remote malicious users to inject arbitrary web script or HTML via the (1) cat parameter in the categories page to gxadmin/index.php or (2) page parameter to index.php.
Genixcms Genixcms
1 EDB exploit
7.5
CVSSv2
CVE-2015-2679
Multiple SQL injection vulnerabilities in MetalGenix GeniXCMS prior to 0.0.2 allow remote malicious users to execute arbitrary SQL commands via the (1) page parameter to index.php or (2) username parameter to gxadmin/login.php.
Genixcms Genixcms
1 EDB exploit
7.5
CVSSv2
CVE-2014-4034
SQL injection vulnerability in zero_view_article.php in ZeroCMS 1.0 allows remote malicious users to execute arbitrary SQL commands via the article_id parameter.
Aas9 Zerocms 1.0
1 EDB exploit
6.8
CVSSv2
CVE-2014-10008
Multiple cross-site request forgery (CSRF) vulnerabilities in Stark CRM 1.0 allow remote malicious users to hijack the authentication of administrators for requests that add (1) an administrator via a crafted request to the admin page, (2) an agent via a crafted request to the ag...
Iwcn Stark Crm 1.0
1 EDB exploit
6.8
CVSSv2
CVE-2015-2680
Cross-site request forgery (CSRF) vulnerability in MetalGenix GeniXCMS prior to 0.0.2 allows remote malicious users to hijack the authentication of administrators for requests that add an administrator account via a request in the users page to gxadmin/index.php.
Metalgenix Genixcms
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
validation
CVE-2012-1823
malicious code
CVE-2024-5770
CVE-2023-45866
CVE-2024-35687
local users
CVE-2024-31246
CVE-2024-35730
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
2
3
4
5
6
7
8
9
10
NEXT »