Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
liquidworm vulnerabilities and exploits
(subscribe to this query)
3.5
CVSSv2
CVE-2015-6494
Cross-site scripting (XSS) vulnerability in Infinite Automation Mango Automation 2.5.x and 2.6.x prior to 2.6.0 build 430 allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors.
Infinite Automation Systems Mango Automation 2.5.0
Infinite Automation Systems Mango Automation 2.5.5
Infinite Automation Systems Mango Automation 2.6.0
1 EDB exploit
9.3
CVSSv2
CVE-2009-3811
Stack-based buffer overflow in Music Tag Editor 1.61 build 212 allows remote malicious users to execute arbitrary code via an MP3 file with a long ID3 tag. NOTE: some of these details are obtained from third party information.
Assistanttools Music Tag Editor 1.61
1 EDB exploit
9.3
CVSSv2
CVE-2009-3859
Buffer overflow in eEye Retina WiFi Scanner 1.0.8.68, as used in Retina Network Security Scanner 5.10.14, allows user-assisted remote malicious users to cause a denial of service (application crash) or execute arbitrary code via a .rws file with a long RWS010 entry.
Eeye Retina Wifi Scanner 1.0.8.68
Eeye Retina Network Security Scanner 5.10.14
1 EDB exploit
9.3
CVSSv2
CVE-2014-8358
Huawei EC156, EC176, and EC177 USB Modem products with software before UTPS-V200R003B015D02SP07C1014 (23.015.02.07.1014) and before V200R003B015D02SP08C1014 (23.015.02.08.1014) use a weak ACL for the "Mobile Partner" directory, which allows remote malicious users to gai...
Huawei Ec156 Firmware V200r003b009d05sp03c1014
Huawei Ec176 Firmware V200r003b009d05sp03c1014
Huawei Ec177 Firmware V200r003b009d05sp03c1014
1 EDB exploit
4.3
CVSSv2
CVE-2015-1058
Multiple cross-site scripting (XSS) vulnerabilities in AdaptCMS 3.0.3 allow remote malicious users to inject arbitrary web script or HTML via the (1) data[Category][title] parameter to admin/categories/add, (2) data[Field][title] parameter to admin/fields/ajax_fields/, (3) name p...
Insanevisions Adaptcms 3.0.3
1 EDB exploit
5.8
CVSSv2
CVE-2015-1060
Open redirect vulnerability in lib/Cake/Controller/Controller.php in AdaptCMS 3.0.3 allows remote malicious users to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the HTTP Referer header.
Insanevisions Adaptcms 3.0.3
1 EDB exploit
5
CVSSv2
CVE-2015-7902
Infinite Automation Mango Automation 2.5.x and 2.6.x prior to 2.6.0 build 430 provides different error messages for failed login attempts in unspecified circumstances, which allows remote malicious users to obtain sensitive information via a series of requests.
Infinite Automation Systems Mango Automation 2.5.0
Infinite Automation Systems Mango Automation 2.5.5
Infinite Automation Systems Mango Automation 2.6.0
1 EDB exploit
6.5
CVSSv2
CVE-2015-7903
SQL injection vulnerability in Infinite Automation Mango Automation 2.5.x and 2.6.x prior to 2.6.0 build 430 allows remote authenticated users to execute arbitrary SQL commands via unspecified vectors.
Infinite Automation Systems Mango Automation 2.5.0
Infinite Automation Systems Mango Automation 2.5.5
Infinite Automation Systems Mango Automation 2.6.0
1 EDB exploit
5
CVSSv2
CVE-2012-3838
Gekko prior to 1.2.0 allows remote malicious users to obtain the installation path via a direct request to (1) admin/templates/babygekko/index.php or (2) templates/html5demo/index.php.
Babygekko Baby Gekko 1.0.0
Babygekko Baby Gekko 0.99
Babygekko Baby Gekko 0.98
Babygekko Baby Gekko 0.91
Babygekko Baby Gekko 1.1.1
Babygekko Baby Gekko 1.0.1
Babygekko Baby Gekko 0.90
Babygekko Baby Gekko 1.1.4
Babygekko Baby Gekko 1.1.3
Babygekko Baby Gekko 1.1.2
Babygekko Baby Gekko 1.1.0
Babygekko Baby Gekko
1 EDB exploit
9.3
CVSSv2
CVE-2010-3134
Untrusted search path vulnerability in Google Earth 5.1.3535.3218 allows local users, and possibly remote attackers, to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse quserex.dll that is located in the same folder as a .kmz file.
Google Earth 5.1.3535.3218
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-33572
CVE-2024-24919
CVE-2024-0230
CVE-2024-32714
HTML injection
local file inclusion
CVE-2024-31098
CVE-2024-31244
privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
4
5
6
7
8
9
10
NEXT »