Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
liquidworm vulnerabilities and exploits
(subscribe to this query)
435
VMScore
CVE-2013-7368
Multiple cross-site scripting (XSS) vulnerabilities in Gnew 2013.1 allow remote malicious users to inject arbitrary web script or HTML via the gnew_template parameter to (1) users/profile.php, (2) articles/index.php, or (3) admin/polls.php; (4) category_id parameter to news/submi...
Raoul Proenca Gnew 2013.1
1 EDB exploit
685
VMScore
CVE-2014-9344
Cross-site request forgery (CSRF) vulnerability in Snowfox CMS prior to 1.0.10 allows remote malicious users to hijack the authentication of administrators for requests that add a new admin account via a submit action in the admin/accounts/create uri to snowfox/.
Globiz Solutions Snowfox Content Management System
1 EDB exploit
505
VMScore
CVE-2014-9350
TP-Link TL-WR740N 4 with firmware 3.17.0 Build 140520, 3.16.6 Build 130529, and 3.16.4 Build 130205 allows remote malicious users to cause a denial of service (httpd crash) via vectors involving a "new" value in the isNew parameter to PingIframeRpm.htm.
Tp-link Tl-wr740n Firmware 3.16.6
Tp-link Tl-wr740n Firmware 3.16.4
Tp-link Tl-wr740n Firmware 3.17.0
Tp-link Tl-wr740n 4
1 EDB exploit
215
VMScore
CVE-2014-9417
The Meeting component in Huawei eSpace Desktop before V100R001C03 allows local users to cause a denial of service (program exit) via a crafted image.
Huawei Espace Desktop
1 EDB exploit
685
VMScore
CVE-2010-5281
Directory traversal vulnerability in ibrowser.php in the CMScout 2.09 IBrowser TinyMCE Plugin 1.4.1, when magic_quotes_gpc is disabled, allows remote malicious users to read arbitrary files via a .. (dot dot) in the lang parameter. NOTE: some of these details are obtained from th...
Net4visions Ibrowser 1.4.1
1 EDB exploit
655
VMScore
CVE-2011-1100
Multiple SQL injection vulnerabilities in admin/index.php in Pixelpost 1.7.3 allow remote authenticated users to execute arbitrary SQL commands via the (1) findfid, (2) id, (3) selectfcat, (4) selectfmon, or (5) selectftag parameter in an images action.
Pixelpost Pixelpost 1.7.3
1 EDB exploit
435
VMScore
CVE-2014-8653
Cross-site scripting (XSS) vulnerability in Compal Broadband Networks (CBN) CH6640E and CG6640E Wireless Gateway 1.0 with firmware CH6640-3.5.11.7-NOSH allows remote malicious users to inject arbitrary web script or HTML via the userData cookie.
Compal Broadband Networks Firmware Ch6640-3.5.11.7-nosh
Compal Broadband Networks Ch664oe Wireless Gateway 1.0
Compal Broadband Networks Cg6640e Wireless Gateway 1.0
1 EDB exploit
685
VMScore
CVE-2014-8654
Multiple cross-site request forgery (CSRF) vulnerabilities in Compal Broadband Networks (CBN) CH6640E and CG6640E Wireless Gateway hardware 1.0 with firmware CH6640-3.5.11.7-NOSH allow remote malicious users to hijack the authentication of administrators for requests that (1) hav...
Compal Broadband Networks Firmware Ch6640-3.5.11.7-nosh
Compal Broadband Networks Ch664oe Wireless Gateway 1.0
Compal Broadband Networks Cg6640e Wireless Gateway 1.0
1 EDB exploit
505
VMScore
CVE-2014-8655
The Compal Broadband Networks (CBN) CH6640E and CG6640E Wireless Gateway 1.0 with firmware CH6640-3.5.11.7-NOSH allows remote malicious users to bypass authentication and obtain sensitive information via an (a) admin or a (b) root value in the userData cookie in a request to (1) ...
Compal Broadband Networks Firmware Ch6640-3.5.11.7-nosh
Compal Broadband Networks Cg6640e Wireless Gateway 1.0
Compal Broadband Networks Ch664oe Wireless Gateway 1.0
1 EDB exploit
1000
VMScore
CVE-2014-8656
The Compal Broadband Networks (CBN) CH6640E and CG6640E Wireless Gateway 1.0 with firmware CH6640-3.5.11.7-NOSH have a default password of (1) admin for the admin account and (2) compalbn for the root account, which makes it easier for remote malicious users to obtain access to c...
Compal Broadband Networks Firmware Ch6640-3.5.11.7-nosh
Compal Broadband Networks Cg6640e Wireless Gateway 1.0
Compal Broadband Networks Ch664oe Wireless Gateway 1.0
1 EDB exploit
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-7073
CVE-2024-5496
CVE-2024-5495
XPath injection
bypass
CVE-2024-30043
CVE-2024-24919
denial of service
CVE-2024-35468
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
2
3
4
5
6
7
8
9
10
NEXT »