Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
high-tech bridge vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2014-1908
The error-handling feature in (1) bp.php, (2) videowhisper_streaming.php, and (3) ls/rtmp.inc.php in the VideoWhisper Live Streaming Integration plugin prior to 4.29.5 for WordPress allows remote malicious users to obtain sensitive information via a direct request, which reveals ...
Videowhisper Videowhisper Live Streaming Integration
1 EDB exploit
NA
CVE-2014-1945
SQL injection vulnerability in ajax_udf.php in OpenDocMan prior to 1.2.7.2 allows remote malicious users to execute arbitrary SQL commands via the add_value parameter.
Opendocman Opendocman 1.2.6.3
Opendocman Opendocman 1.2.6.2
Opendocman Opendocman 1.2.6.7
Opendocman Opendocman 1.2.6.6
Opendocman Opendocman
Opendocman Opendocman 1.2.7
Opendocman Opendocman 1.2.6.8
Opendocman Opendocman 1.2.6.5
1 EDB exploit
NA
CVE-2013-0807
Cross-site scripting (XSS) vulnerability in the NewSectionPrompt function in include/tool/editing_page.php in gpEasy CMS 3.5.2 and previous versions allows remote malicious users to inject arbitrary web script or HTML via the section parameter in a new_section action to index.php...
Gpeasy Gpeasy Cms 1.5
Gpeasy Gpeasy Cms 1.6.1
Gpeasy Gpeasy Cms 1.6.2
Gpeasy Gpeasy Cms 2.3.2
Gpeasy Gpeasy Cms 2.3.3
Gpeasy Gpeasy Cms 2.4
Gpeasy Gpeasy Cms 3.5
Gpeasy Gpeasy Cms 3.5.1
Gpeasy Gpeasy Cms 1.6
Gpeasy Gpeasy Cms 2.3
Gpeasy Gpeasy Cms 2.3.1
Gpeasy Gpeasy Cms 3.0.4
Gpeasy Gpeasy Cms 3.0.5
Gpeasy Gpeasy Cms 1.6.3
Gpeasy Gpeasy Cms 2.0.1
Gpeasy Gpeasy Cms 3.0
Gpeasy Gpeasy Cms 3.0.1
Gpeasy Gpeasy Cms
Gpeasy Gpeasy Cms 2.1
Gpeasy Gpeasy Cms 2.2
Gpeasy Gpeasy Cms 3.0.2
Gpeasy Gpeasy Cms 3.0.3
1 EDB exploit
NA
CVE-2013-3515
Multiple cross-site scripting (XSS) vulnerabilities in OpenX Source 2.8.10 and previous versions allow remote malicious users to inject arbitrary web script or HTML via the (1) package parameter to www/admin/plugin-index.php or the (2) group parameter to www/admin/plugin-settings...
Openx Openx
Openx Openx 2.8
Openx Openx 2.4.9
Openx Openx 2.4.8
Openx Openx 2.6.4
Openx Openx 2.7.29
Openx Openx 2.6.3
Openx Openx 2.4.4
Openx Openx 2.6.1
Openx Openx 2.6.2
Openx Openx 2.8.2
Openx Openx 2.8.3
Openx Openx 2.8.1
Openx Openx 2.4
Openx Openx 2.4.11
Openx Openx 2.4.10
Openx Openx 2.8.4
Openx Openx 2.8.5
Openx Openx 2.4.5
Openx Openx 2.4.6
Openx Openx 2.4.7
Openx Openx 2.6.0
1 EDB exploit
NA
CVE-2013-4789
SQL injection vulnerability in modules/rss/rss.php in Cotonti prior to 0.9.14 allows remote malicious users to execute arbitrary SQL commands via the "c" parameter to index.php.
Cotonti Cotonti Siena 0.9.7
Cotonti Cotonti Siena 0.9.8
Cotonti Cotonti Siena 0.9.9
Cotonti Cotonti Siena 0.9.0
Cotonti Cotonti Siena 0.9.10
Cotonti Cotonti Siena 0.9.3
Cotonti Cotonti Siena 0.9.5
Cotonti Cotonti Siena 0.9.11
Cotonti Cotonti Siena 0.9.12
Cotonti Cotonti Siena
Cotonti Cotonti Siena 0.9.2
Cotonti Cotonti Siena 0.9.1
Cotonti Cotonti Siena 0.9.4
Cotonti Cotonti Siena 0.9.6
1 EDB exploit
NA
CVE-2012-1934
SQL injection vulnerability in admin/country/edit.php in Newscoop prior to 3.5.5 and 4.x prior to 4 RC4 allows remote malicious users to execute arbitrary SQL commands via the f_country_code parameter.
Sourcefabric Newscoop 3.5.2
Sourcefabric Newscoop 3.5.4
Sourcefabric Newscoop 4
Sourcefabric Newscoop 3.5.0
Sourcefabric Newscoop 3.5.3
Sourcefabric Newscoop 3.5.1
1 EDB exploit
NA
CVE-2012-2227
Directory traversal vulnerability in update/index.php in PluXml prior to 5.1.6 allows remote malicious users to include and execute arbitrary local files via a ..%2F (encoded dot dot slash) in the default_lang parameter.
Pluxml Pluxml
1 EDB exploit
7.5
CVSSv3
CVE-2015-8770
Directory traversal vulnerability in the set_skin function in program/include/rcmail_output_html.php in Roundcube prior to 1.0.8 and 1.1.x prior to 1.1.4 allows remote authenticated users with certain permissions to read arbitrary files or possibly execute arbitrary code via a .....
Roundcube Roundcube Webmail 1.1.2
Roundcube Roundcube Webmail 1.1.1
Roundcube Roundcube Webmail 1.1.0
Roundcube Roundcube Webmail
Roundcube Roundcube Webmail 1.1.3
1 EDB exploit
NA
CVE-2012-3952
Cross-site scripting (XSS) vulnerability in admin/index.php in phpList prior to 2.10.19 allows remote malicious users to inject arbitrary web script or HTML via the unconfirmed parameter to the user page.
Phplist Phplist
Phplist Phplist 2.10.10
Phplist Phplist 2.10.9
Phplist Phplist 2.10.1
Phplist Phplist 2.8.12
Phplist Phplist 2.10.17
Phplist Phplist 2.10.16
Phplist Phplist 2.10.8
Phplist Phplist 2.10.7
Phplist Phplist 2.8.7
Phplist Phplist 2.8.2
Phplist Phplist 2.10.12
Phplist Phplist 2.10.11
Phplist Phplist 2.10.3
Phplist Phplist 2.10.2
Phplist Phplist 2.6.5
Phplist Phplist 2.10.15
Phplist Phplist 2.10.14
Phplist Phplist 2.10.13
Phplist Phplist 2.10.5
Phplist Phplist 2.10.4
Phplist Phplist 2.7.2
1 EDB exploit
NA
CVE-2013-6787
SQL injection vulnerability in the check_user_password function in main/auth/profile.php in Chamilo LMS 1.9.6 and previous versions, when using the non-encrypted passwords mode set at installation, allows remote authenticated users to execute arbitrary SQL commands via the "...
Chamilo Chamilo Lms 1.8.8.4
Chamilo Chamilo Lms 1.8.8.2
Chamilo Chamilo Lms 1.8.7.1
Chamilo Chamilo Lms 1.8.7
Chamilo Chamilo Lms
Chamilo Chamilo Lms 1.9.4
Chamilo Chamilo Lms 1.9.0
Chamilo Chamilo Lms 1.9.2
Chamilo Chamilo Lms 1.8.8.6
Chamilo Chamilo Lms 1.8.6.2
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-23316
SQL injection
type confusion
CVE-2024-20697
CVE-2024-4344
local
CVE-2024-30043
CVE-2024-3821
CVE-2024-5041
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
4
5
6
7
8
9
10
NEXT »