Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
lite vulnerabilities and exploits
(subscribe to this query)
5
CVSSv2
CVE-2001-0086
CGI Script Center Subscribe Me LITE 2.0 and previous versions allows remote malicious users to delete arbitrary mailing list users without authentication by directly calling subscribe.pl with the target address as a parameter.
Cgi Script Center Subscribe Me Lite 1.0
Cgi Script Center Subscribe Me Lite 2.0
7.5
CVSSv2
CVE-2005-0301
comersus_backoffice_install10.asp in BackOffice Lite 6.0 and 6.01 allows remote malicious users to bypass authentication and gain privileges via a direct request to the program.
Comersus Open Technologies Comersus Backoffice Lite 6.0
Comersus Open Technologies Comersus Backoffice Lite 6.1
4.3
CVSSv2
CVE-2005-0303
Multiple cross-site scripting (XSS) vulnerabilities in (1) comersus_supportError.asp or (2) comersus_backofficelite_supportError.asp in BackOffice Lite 6.0 and 6.01 allow remote malicious users to inject arbitrary web script or HTML via the error parameter.
Comersus Open Technologies Comersus Backoffice Lite 6.0
Comersus Open Technologies Comersus Backoffice Lite 6.1
5.1
CVSSv2
CVE-2006-0765
GUI display truncation vulnerability in ICQ Inc. (formerly Mirabilis) ICQ 2003a, 2003b, Lite 4.0, Lite 4.1, and possibly other Windows versions allows user-assisted remote malicious users to hide malicious file extensions, bypass Windows security warnings via a filename that is a...
Mirabilis Icq Lite 4.1
Mirabilis Icq 2003b
Mirabilis Icq Lite 4.0
Mirabilis Icq 2003a
9.3
CVSSv2
CVE-2008-4499
Multiple directory traversal vulnerabilities in PHP Web Explorer 0.99b and previous versions allow remote malicious users to include and execute arbitrary local files via a .. (dot dot) in the (1) refer parameter to main.php and the (2) file parameter to edit.php.
Php Web Explorer Php Web Explorer Lite
Php Web Explorer Php Web Explorer Lite 0.99a
2 EDB exploits
NA
CVE-2023-2844
Authorization Bypass Through User-Controlled Key in GitHub repository cloudexplorer-dev/cloudexplorer-lite prior to v1.1.0.
Fit2cloud Cloudexplorer Lite
3.5
CVSSv2
CVE-2014-9461
Directory traversal vulnerability in models/Cart66.php in the Cart66 Lite plugin prior to 1.5.4 for WordPress allows remote authenticated users to read arbitrary files via a .. (dot dot) in the member_download action to wp-admin/admin-ajax.php.
Reality66 Cart66 Lite
4.3
CVSSv2
CVE-2017-8136
HedEx Earlier than V200R006C00 versions has an arbitrary file download vulnerability. An attacker could exploit it to download arbitrary files on a target device to cause information leak.
Huawei Hedex Lite
4.3
CVSSv2
CVE-2017-8139
HedEx Earlier than V200R006C00 versions have the stored cross-site scripting (XSS) vulnerability. Attackers can exploit the vulnerability to plant malicious scripts into the configuration file to interrupt the services of legitimate users.
Huawei Hedex Lite
NA
CVE-2021-4436
The 3DPrint Lite WordPress plugin prior to 1.9.1.5 does not have any authorisation and does not check the uploaded file in its p3dlite_handle_upload AJAX action , allowing unauthenticated users to upload arbitrary file to the web server. However, there is a .htaccess, preventing ...
Wp3dprinting 3dprint Lite
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-4463
CVE-2024-29895
inject
CVE-2023-52689
CVE-2024-5049
CVE-2024-5051
privilege escalation
physical
CVE-2023-52676
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
4
5
6
7
8
9
10
NEXT »