Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
lite vulnerabilities and exploits
(subscribe to this query)
7.8
CVSSv2
CVE-2013-0362
Unspecified vulnerability in the Mobile Server component in Oracle Database Mobile/Lite Server (formerly Oracle Database Lite) 10.3.0.3 and 11.1.0.0 allows remote malicious users to affect confidentiality via unknown vectors, a different vulnerability than CVE-2013-0363 and CVE-2...
Oracle Database Mobile\\/lite Server 11.1.0.0
Oracle Database Mobile\\/lite Server 10.3.0.3
7.8
CVSSv2
CVE-2013-0363
Unspecified vulnerability in the Mobile Server component in Oracle Database Mobile/Lite Server (formerly Oracle Database Lite) 10.3.0.3 and 11.1.0.0 allows remote malicious users to affect confidentiality via unknown vectors, a different vulnerability than CVE-2013-0362 and CVE-2...
Oracle Database Mobile\\/lite Server 10.3.0.3
Oracle Database Mobile\\/lite Server 11.1.0.0
10
CVSSv2
CVE-2013-0366
Unspecified vulnerability in the Mobile Server component in Oracle Database Mobile/Lite Server (formerly Oracle Database Lite) 10.3.0.3 and 11.1.0.0 allows remote malicious users to affect confidentiality, integrity, and availability via unknown vectors, a different vulnerability...
Oracle Database Mobile\\/lite Server 11.1.0.0
Oracle Database Mobile\\/lite Server 10.3.0.3
6.8
CVSSv2
CVE-2008-7024
admin.php in Arz Development The Gemini Portal 4.7 and previous versions allows remote malicious users to bypass authentication and gain administrator privileges by setting the user cookie to "admin" and setting the name parameter to "users."
Arzdev Gemini Lite 3.6
Arzdev Gemini Portal 4.7
Arzdev Gemini Lite 3.5
1 EDB exploit
6.5
CVSSv2
CVE-2021-39317
A WordPress plugin and several WordPress themes developed by AccessPress Themes are vulnerable to malicious file uploads via the plugin_offline_installer AJAX action due to a missing capability check in the plugin_offline_installer_callback function found in the /demo-functions.p...
Accesspressthemes Access Demo Importer
Accesspressthemes Eightstore-lite
Accesspressthemes Enlighten
Accesspressthemes Fotography
Accesspressthemes Opstore
Accesspressthemes Parallaxsome
Accesspressthemes Punte
Accesspressthemes Revolve
Accesspressthemes Ripple
Accesspressthemes Sakala
Accesspressthemes Scrollme
Accesspressthemes Storevilla
Accesspressthemes Swing-lite
Accesspressthemes The100
Accesspressthemes Accesspress-lite
Accesspressthemes The-launcher
Accesspressthemes The-monday
Accesspressthemes Ultra-seven
Accesspressthemes Uncode-lite
Accesspressthemes Vmag
Accesspressthemes Vmagazine-lite
Accesspressthemes Vmagazine-news
NA
CVE-2020-36721
The Brilliance <= 1.2.7, Activello <= 1.4.0, and Newspaper X <= 1.3.1 themes for WordPress are vulnerable to Plugin Activation/Deactivation. This is due to the 'activello_activate_plugin' and 'activello_deactivate_plugin' functions in the 'inc/we...
Machothemes Naturemag Lite
Machothemes Antreas
Colorlib Bonkers
Cpothemes Affluent
Cpothemes Transcend
Machothemes Regina Lite
Cpothemes Brilliance
Machothemes Medzone Lite
Colorlib Pixova Lite
Colorlib Newspaper X
Cpothemes Allegiant
Colorlib Illdy
Colorlib Activello
Machothemes Newsmag
Colorlib Shapely
7.5
CVSSv2
CVE-2021-24867
Numerous Plugins and Themes from the AccessPress Themes (aka Access Keys) vendor are backdoored due to their website being compromised. Only plugins and themes downloaded via the vendor website are affected, and those hosted on wordpress.org are not. However, all of them were upd...
Accesspressthemes Accessbuddy 1.0.0
Accesspressthemes Accesspress Anonymous Post 2.8.0
Accesspressthemes Accesspress Basic 3.2.1
Accesspressthemes Accesspress Custom Css 2.0.1
Accesspressthemes Accesspress Custom Post Type 1.0.8
Accesspressthemes Accesspress Ifeeds 4.0.3
Accesspressthemes Accesspress Lite 2.92
Accesspressthemes Accesspress Mag 2.6.5
Accesspressthemes Accesspress Parallax 4.5
Accesspressthemes Accesspress Ray 1.19.5
Accesspressthemes Accesspress Root 2.5
Accesspressthemes Accesspress Social Counter 1.9.1
Accesspressthemes Accesspress Social Icons 1.8.2
Accesspressthemes Accesspress Social Login Lite 3.4.7
Accesspressthemes Accesspress Social Share 4.5.5
Accesspressthemes Accesspress Staple 1.9.1
Accesspressthemes Accesspress Store 2.4.9
Accesspressthemes Agency Lite 1.1.6
Accesspressthemes Ap Companion
Accesspressthemes Ap Contact Form 1.0.6
Accesspressthemes Ap Custom Testimonial 1.4.6
Accesspressthemes Ap Mega Menu 3.0.5
NA
CVE-2020-36708
The following themes for WordPress are vulnerable to Function Injections in versions up to and including Shapely <= 1.2.7, NewsMag <= 2.4.1, Activello <= 1.4.0, Illdy <= 2.1.4, Allegiant <= 1.2.2, Newspaper X <= 1.3.1, Pixova Lite <= 2.0.5, Brilliance <= 1...
Machothemes Naturemag Lite
Colorlib Sparklinkg
Machothemes Antreas
Colorlib Bonkers
Cpothemes Affluent
Cpothemes Transcend
Machothemes Regina Lite
Cpothemes Brilliance
Machothemes Medzone Lite
Colorlib Pixova Lite
Colorlib Newspaper X
Cpothemes Allegiant
Colorlib Illdy
Colorlib Activello
Machothemes Newsmag
Colorlib Shapely
7.5
CVSSv2
CVE-2005-0301
comersus_backoffice_install10.asp in BackOffice Lite 6.0 and 6.01 allows remote malicious users to bypass authentication and gain privileges via a direct request to the program.
Comersus Open Technologies Comersus Backoffice Lite 6.0
Comersus Open Technologies Comersus Backoffice Lite 6.1
7.5
CVSSv2
CVE-2005-0302
SQL injection vulnerability in default.asp in BackOffice Lite 6.0 and 6.01 allows remote malicious users to execute arbitrary SQL commands via the referer field in the HTTP header.
Comersus Open Technologies Comersus Backoffice Lite 6.1
Comersus Open Technologies Comersus Backoffice Lite 6.0
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
authentication bypass
CVE-2024-30043
camera
CVE-2023-40404
CVE-2024-2793
client side
CVE-2024-4469
CVE-2024-3565
CVE-2024-29825
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
3
4
5
6
7
8
9
10
NEXT »