Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
project vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2007-6126
Multiple cross-site scripting (XSS) vulnerabilities in project alumni 1.0.9 and previous versions allow remote malicious users to inject arbitrary web script or HTML via the year parameter to (1) xml/index.php; or (2) the year parameter to view.page.inc.php, which is reachable th...
Project Alumni Project Alumni 1.0.8
Project Alumni Project Alumni
1 EDB exploit
6.5
CVSSv2
CVE-2012-1037
PHP remote file inclusion vulnerability in front/popup.php in GLPI 0.78 up to and including 0.80.61 allows remote authenticated users to execute arbitrary PHP code via a URL in the sub_type parameter.
Glpi-project Glpi 0.80
Glpi-project Glpi 0.80.1
Glpi-project Glpi 0.80.2
Glpi-project Glpi 0.80.3
Glpi-project Glpi 0.78
Glpi-project Glpi 0.78.1
Glpi-project Glpi 0.78.3
Glpi-project Glpi 0.78.5
Glpi-project Glpi 0.80.4
Glpi-project Glpi 0.80.6
Glpi-project Glpi 0.78.2
Glpi-project Glpi 0.78.4
Glpi-project Glpi 0.80.5
Glpi-project Glpi 0.80.61
4
CVSSv2
CVE-2012-3491
src/condor_schedd.V6/schedd.cpp in Condor 7.6.x prior to 7.6.10 and 7.8.x prior to 7.8.4 does not properly check the permissions of jobs, which allows remote authenticated users to remove arbitrary idle jobs via unspecified vectors.
Condor Project Condor 7.6.1
Condor Project Condor 7.6.3
Condor Project Condor 7.6.9
Condor Project Condor 7.6.0
Condor Project Condor 7.6.5
Condor Project Condor 7.6.6
Condor Project Condor 7.8.3
Condor Project Condor 7.8.1
Condor Project Condor 7.6.4
Condor Project Condor 7.8.0
Condor Project Condor 7.6.7
Condor Project Condor 7.6.2
Condor Project Condor 7.6.8
Condor Project Condor 7.8.2
5.8
CVSSv2
CVE-2012-3493
The command_give_request_ad function in condor_startd.V6/command.cpp Condor 7.6.x prior to 7.6.10 and 7.8.x prior to 7.8.4 allows remote malicious users to obtain sensitive information, and possibly control or start arbitrary jobs, via a ClassAd request to the condor_startd port,...
Condor Project Condor 7.6.1
Condor Project Condor 7.6.3
Condor Project Condor 7.6.9
Condor Project Condor 7.6.0
Condor Project Condor 7.6.5
Condor Project Condor 7.6.6
Condor Project Condor 7.8.3
Condor Project Condor 7.8.1
Condor Project Condor 7.6.4
Condor Project Condor 7.8.0
Condor Project Condor 7.6.7
Condor Project Condor 7.6.2
Condor Project Condor 7.6.8
Condor Project Condor 7.8.2
4.3
CVSSv2
CVE-2005-2734
Cross-site scripting (XSS) vulnerability in Gallery 1.5.1-RC2 and previous versions allows remote malicious users to inject arbitrary web script or HTML via EXIF data, such as the Camera Model Tag.
Gallery Project Gallery 1.4
Gallery Project Gallery 1.4.1
Gallery Project Gallery 1.4.4 Pl5
Gallery Project Gallery 1.4 Pl1
Gallery Project Gallery 1.4.2
Gallery Project Gallery 1.4.3 Pl1
Gallery Project Gallery 1.4 Pl2
Gallery Project Gallery 1.5
Gallery Project Gallery 1.4.3 Pl2
Gallery Project Gallery 1.4.4 Pl2
Gallery Project Gallery 1.5.1
Gallery Project Gallery 1.5.1 Rc2
Gallery Project Gallery 1.4.4 Pl3
Gallery Project Gallery 1.4.4 Pl4
6.4
CVSSv2
CVE-2012-3492
The filesystem authentication (condor_io/condor_auth_fs.cpp) in Condor 7.6.x prior to 7.6.10 and 7.8.x prior to 7.8.4 uses authentication directories even when they have weak permissions, which allows remote malicious users to impersonate users by renaming a user's authentic...
Condor Project Condor 7.6.1
Condor Project Condor 7.6.3
Condor Project Condor 7.6.9
Condor Project Condor 7.6.0
Condor Project Condor 7.6.5
Condor Project Condor 7.6.6
Condor Project Condor 7.8.3
Condor Project Condor 7.8.1
Condor Project Condor 7.6.4
Condor Project Condor 7.8.0
Condor Project Condor 7.6.7
Condor Project Condor 7.6.2
Condor Project Condor 7.6.8
Condor Project Condor 7.8.2
10
CVSSv2
CVE-2012-5197
Multiple unspecified vulnerabilities in Condor 7.6.x prior to 7.6.10 and 7.8.x prior to 7.8.4 have unknown impact and attack vectors related to "error checking of system calls."
Condor Project Condor 7.6.2
Condor Project Condor 7.6.5
Condor Project Condor 7.6.1
Condor Project Condor 7.6.6
Condor Project Condor 7.6.8
Condor Project Condor 7.6.0
Condor Project Condor 7.6.3
Condor Project Condor 7.6.9
Condor Project Condor 7.6.4
Condor Project Condor 7.6.7
Condor Project Condor 7.8.1
Condor Project Condor 7.8.3
Condor Project Condor 7.8.2
Condor Project Condor 7.8.0
5
CVSSv2
CVE-2015-3634
The SlideshowPluginSlideshowStylesheet::loadStylesheetByAJAX function in the Slideshow plugin 2.2.8 up to and including 2.2.21 for Wordpress allows remote malicious users to read arbitrary Wordpress option values.
Slideshow Project Slideshow 2.2.15
Slideshow Project Slideshow 2.2.16
Slideshow Project Slideshow 2.2.17
Slideshow Project Slideshow 2.2.18
Slideshow Project Slideshow 2.2.19
Slideshow Project Slideshow 2.2.8
Slideshow Project Slideshow 2.2.9
Slideshow Project Slideshow 2.2.10
Slideshow Project Slideshow 2.2.12
Slideshow Project Slideshow 2.2.14
Slideshow Project Slideshow 2.2.21
Slideshow Project Slideshow 2.2.11
Slideshow Project Slideshow 2.2.13
Slideshow Project Slideshow 2.2.20
10
CVSSv2
CVE-2012-5196
Multiple buffer overflows in Condor 7.6.x prior to 7.6.10 and 7.8.x prior to 7.8.4 have unknown impact and attack vectors.
Condor Project Condor 7.6.1
Condor Project Condor 7.6.0
Condor Project Condor 7.8.3
Condor Project Condor 7.6.9
Condor Project Condor 7.8.1
Condor Project Condor 7.6.5
Condor Project Condor 7.6.4
Condor Project Condor 7.6.7
Condor Project Condor 7.8.2
Condor Project Condor 7.8.0
Condor Project Condor 7.6.6
Condor Project Condor 7.6.8
Condor Project Condor 7.6.3
Condor Project Condor 7.6.2
5
CVSSv2
CVE-2006-1219
Directory traversal vulnerability in Gallery 2.0.3 and previous versions, and 2.1 before RC-2a, allows remote malicious users to include arbitrary PHP files via ".." (dot dot) sequences in the stepOrder parameter to (1) upgrade/index.php or (2) install/index.php.
Gallery Project Gallery 2.0.3
Gallery Project Gallery 2.0 Alpha
Gallery Project Gallery 2.0 Beta3
Gallery Project Gallery 2.1 Rc1
Gallery Project Gallery 2.0
Gallery Project Gallery 2.0 Alpha3
Gallery Project Gallery 2.0 Alpha4
Gallery Project Gallery 2.0 Alpha1
Gallery Project Gallery 2.0 Alpha2
Gallery Project Gallery 2.1 Rc2
Gallery Project Gallery 2.0.1
Gallery Project Gallery 2.0.2
Gallery Project Gallery 2.0 Beta1
Gallery Project Gallery 2.0 Beta2
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
camera
bypass
CVE-2024-3592
CVE-2024-37383
CVE-2024-24919
CVE-2024-27822
CVE-2024-36788
CVE-2024-36789
man-in-the-middle
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
3
4
5
6
7
8
9
10
NEXT »