Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
validation vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2006-0240
Multiple SQL injection vulnerabilities in Simple Blog 2.1 allow remote malicious users to execute arbitrary SQL commands via the month parameter in an archives view operation and possibly certain other parameters in unspecified scripts.
8pixel.net Simple Blog
1 EDB exploit
7.5
CVSSv2
CVE-2006-0135
SQL injection vulnerability in login.php in TheWebForum (twf) 1.2.1 allows remote malicious users to execute arbitrary SQL commands and bypass login authentication via the username parameter (aka the u variable).
Thewebforum Thewebforum
1 EDB exploit
5.8
CVSSv2
CVE-2019-1659
A vulnerability in the Identity Services Engine (ISE) integration feature of Cisco Prime Infrastructure (PI) could allow an unauthenticated, remote malicious user to perform a man-in-the-middle attack against the Secure Sockets Layer (SSL) tunnel established between ISE and PI. T...
Cisco Prime Infrastructure
4.3
CVSSv2
CVE-2010-4873
Cross-site scripting (XSS) vulnerability in confirm.php in WeBid 0.8.5 P1 allows remote malicious users to inject arbitrary web script or HTML via the id parameter.
Webidsupport Webid 0.8.5
1 EDB exploit
6.8
CVSSv2
CVE-2006-2699
Cross-site scripting (XSS) vulnerability in getimage.php in Geeklog 1.4.0sr2 and previous versions allows remote malicious users to inject arbitrary HTML or web script via the image argument in a show action.
Geeklog Geeklog 1.3.5
Geeklog Geeklog 1.3.10 Rc3
Geeklog Geeklog 1.4.0 Sr1
Geeklog Geeklog 1.3.8
Geeklog Geeklog 1.3.9 Sr2
Geeklog Geeklog 1.3.10 Rc2
Geeklog Geeklog 1.3.6
Geeklog Geeklog 1.4.0 Beta1
Geeklog Geeklog 1.3.9 Sr4
Geeklog Geeklog 1.3.11 Sr3
Geeklog Geeklog 1.3.9 Rc3
Geeklog Geeklog 1.3.7 Sr2
Geeklog Geeklog 1.3.11 Sr2
Geeklog Geeklog 1.3.7 Sr5
Geeklog Geeklog 1.3.8 1 Sr5
Geeklog Geeklog 1.3.7
Geeklog Geeklog 1.35
Geeklog Geeklog 1.3.9 Rc1
Geeklog Geeklog 1.3.10
Geeklog Geeklog 1.3.8 1 Sr2
Geeklog Geeklog 1.3.8 1 Sr6
Geeklog Geeklog 1.3.8 1 Sr1
1 EDB exploit
7.5
CVSSv2
CVE-2005-4622
Directory traversal vulnerability in eFileGo 3.01 allows remote malicious users to execute arbitrary code, read arbitrary files, and upload arbitrary files via a ... (triple dot) in (1) the URL on port 608 and (2) the argument to upload.exe.
Efilego Efilego 3.0.1
1 EDB exploit
4.3
CVSSv2
CVE-2009-3803
Multiple cross-site scripting (XSS) vulnerabilities in Amiro.CMS 5.4.0.0 and previous versions allow remote malicious users to inject arbitrary web script or HTML via the status_message parameter to (1) /news, (2) /comment, (3) /forum, (4) /blog, and (5) /tags; the status_message...
Amirocms Amiro.cms
Amirocms Amiro.cms 4.2.4
Amirocms Amiro.cms 5.2
Amirocms Amiro.cms 4.2.0.5
Amirocms Amiro.cms 5.0.7
Amirocms Amiro.cms 5.2.3
Amirocms Amiro.cms 4.2.1.0
Amirocms Amiro.cms 5.2.2
Amirocms Amiro.cms 4.0.8.0
Amirocms Amiro.cms 4.2.5
Amirocms Amiro.cms 4.2.3.0
Amirocms Amiro.cms 4.2.2.0
1 EDB exploit
7.5
CVSSv2
CVE-2006-2067
SQL injection vulnerability in vb_board_functions.php in MKPortal 1.1, as used with vBulletin 3.5.4 and previous versions, allows remote malicious users to execute arbitrary SQL commands via the userid parameter.
Mkportal Mkportal 1.1
1 EDB exploit
4.3
CVSSv2
CVE-2006-0479
pmwiki.php in PmWiki 2.1 beta 20, with register_globals enabled, allows remote malicious users to bypass protection mechanisms that deregister global variables by setting both a GPC variable and a GLOBALS[] variable with the same name, which causes PmWiki to unset the GLOBALS[] v...
Pmwiki Pmwiki 2.1 Beta 20
1 EDB exploit
NA
CVE-2023-22955
An issue exists on AudioCodes VoIP desk phones up to and including 3.4.4.1000. The validation of firmware images only consists of simple checksum checks for different firmware components. Thus, by knowing how to calculate and where to store the required checksums for the flasher ...
Audiocodes C470hd Firmware
Audiocodes C455hd Firmware
Audiocodes C435hd Firmware
Audiocodes 445hd Firmware
Audiocodes 405hd Firmware
Audiocodes C450hd Firmware
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
SSRF
server-side request forgery
CVE-2024-30067
CVE-2024-5553
CVE-2024-30095
IDOR
CVE-2024-35252
CVE-2024-23692
CVE-2024-27801
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
2
3
4
5
6
7
8
9
10
NEXT »