Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
web blog vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2005-3473
Multiple cross-site scripting (XSS) vulnerabilities in Simple PHP Blog 0.4.5 and previous versions allow remote malicious users to inject arbitrary web script or HTML via the (1) entry, (2) blog_subject, and (3) blog_text parameters (involving the temp_subject variable) in (a) pr...
Alexander Palmo Simple Php Blog 0.4.5
3 EDB exploits
7.8
CVSSv2
CVE-2007-4093
Minb Is Not a Blog (minb) stores sensitive information under the web root with insufficient access control, which allows remote malicious users to download a database containing usernames and encrypted passwords via a direct request for db/users.db.
Minb Minb Is Not A Blog 0.1.0
4.3
CVSSv2
CVE-2006-0661
Cross-site scripting (XSS) vulnerability in Scriptme SmE GB Host 1.21 and SmE Blog Host allows remote malicious users to inject arbitrary web script or HTML via the BBcode url tag.
Scriptme Sme Blog Host
Scriptme Sme Gb Host 1.21
6.8
CVSSv2
CVE-2008-6250
SQL injection vulnerability in Comdev Web Blogger 4.1.3 and previous versions allows remote malicious users to execute arbitrary SQL commands via the arcmonth parameter to a blog page.
Comdev Comdev Web Blogger 4.1
Comdev Comdev Web Blogger
1 EDB exploit
4.3
CVSSv2
CVE-2012-1005
Multiple cross-site scripting (XSS) vulnerabilities in Sphinx Software Mobile Web Server 3.1.2.47 allow remote malicious users to inject arbitrary web script or HTML via the comment parameter to a blog, as demonstrated using (1) Blog/MyFirstBlog.txt or (2) Blog/AboutSomething.txt...
Sphinx-soft Mobile Web Server 3.1.2.47
1 EDB exploit
7.8
CVSSv2
CVE-2015-8281
Web Viewer 1.0.0.193 on Samsung SRN-1670D devices allows malicious users to bypass filesystem encryption via XOR calculations.
Samsung Web Viewer
5
CVSSv2
CVE-2015-8280
Web Viewer 1.0.0.193 on Samsung SRN-1670D devices allows remote malicious users to discover credentials by reading detailed error messages.
Samsung Web Viewer
5
CVSSv2
CVE-2015-8279
Web Viewer 1.0.0.193 on Samsung SRN-1670D devices allows remote malicious users to read arbitrary files via a request to an unspecified PHP script.
Samsung Web Viewer
2 Metasploit modules
1 Github repository
9.3
CVSSv2
CVE-2009-1136
The Microsoft Office Web Components Spreadsheet ActiveX control (aka OWC10 or OWC11), as distributed in Office XP SP3 and Office 2003 SP3, Office XP Web Components SP3, Office 2003 Web Components SP3, Office 2003 Web Components SP1 for the 2007 Microsoft Office System, Internet S...
Microsoft Office 2003
Microsoft Isa Server 2004
Microsoft Office Web Components Xp
Microsoft Isa Server 2006
Microsoft Office Web Components 2003
Microsoft Office Xp Sp3
2 EDB exploits
4.3
CVSSv2
CVE-2008-3186
Multiple cross-site scripting (XSS) vulnerabilities in Chipmunk Blog (Blogger) allow remote malicious users to inject arbitrary web script or HTML via the membername parameter to (1) members.php, (2) comments.php, (3) photos.php, (4) archive.php, or (5) cat.php. NOTE: the provena...
Chipmunk Scripts Chipmunk Blogger
5 EDB exploits
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
camera
bypass
CVE-2024-3592
CVE-2024-37383
CVE-2024-24919
CVE-2024-27822
CVE-2024-36788
CVE-2024-36789
man-in-the-middle
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
3
4
5
6
7
8
9
10
NEXT »