Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
web panel vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2007-6078
Multiple SQL injection vulnerabilities in SkyPortal RC6 allow remote malicious users to execute arbitrary SQL commands via unspecified parameters to (1) nc_top.asp; (2) inc_bookmarks.asp, possibly involving a parameter passed from cp_main.asp; (3) inc_profile_functions.asp; or (4...
Skyportal Skyportal Rc6
1 EDB exploit
7.5
CVSSv2
CVE-2007-4932
admin.php in Shop-Script FREE 2.0 and previous versions sends a redirect to the web browser but does not exit when administrative credentials are missing, which allows remote malicious users to access the admin panel.
Shop-script Shop-script
1 EDB exploit
7.5
CVSSv2
CVE-2006-3805
The Javascript engine in Mozilla Firefox prior to 1.5.0.5, Thunderbird prior to 1.5.0.5, and SeaMonkey prior to 1.0.3 might allow remote malicious users to execute arbitrary code via vectors involving garbage collection that causes deletion of a temporary object that is still bei...
Mozilla Firefox 1.5
Mozilla Seamonkey 1.0.2
Mozilla Seamonkey 1.0
Mozilla Seamonkey 1.0.1
Mozilla Firefox 1.5.0.3
Mozilla Firefox 1.5.0.4
Mozilla Thunderbird 1.5.0.4
Mozilla Firefox 1.5.0.1
Mozilla Firefox 1.5.0.2
Mozilla Thunderbird 1.5
Mozilla Thunderbird 1.5.0.2
7.5
CVSSv2
CVE-2006-3808
Mozilla Firefox prior to 1.5.0.5 and SeaMonkey prior to 1.0.3 allows remote Proxy AutoConfig (PAC) servers to execute code with elevated privileges via a PAC script that sets the FindProxyForURL function to an eval method on a privileged object.
Mozilla Seamonkey 1.0.1
Mozilla Seamonkey 1.0.2
Mozilla Firefox 1.5.0.4
Mozilla Seamonkey 1.0
Mozilla Firefox 1.5.0.2
Mozilla Firefox 1.5.0.3
Mozilla Firefox 1.5
Mozilla Firefox 1.5.0.1
7.5
CVSSv2
CVE-2006-3809
Mozilla Firefox prior to 1.5.0.5, Thunderbird prior to 1.5.0.5, and SeaMonkey prior to 1.0.3 allows scripts with the UniversalBrowserRead privilege to gain UniversalXPConnect privileges and possibly execute code or obtain sensitive data by reading into a privileged context.
Mozilla Seamonkey 1.0
Mozilla Seamonkey 1.0.1
Mozilla Firefox 1.5.0.2
Mozilla Firefox 1.5.0.3
Mozilla Firefox 1.5.0.4
Mozilla Thunderbird 1.5.0.4
Mozilla Firefox 1.5
Mozilla Firefox 1.5.0.1
Mozilla Thunderbird 1.5
Mozilla Thunderbird 1.5.0.2
Mozilla Seamonkey 1.0.2
7.5
CVSSv2
CVE-2006-3806
Multiple integer overflows in the Javascript engine in Mozilla Firefox prior to 1.5.0.5, Thunderbird prior to 1.5.0.5, and SeaMonkey prior to 1.0.3 might allow remote malicious users to execute arbitrary code via vectors involving (1) long strings in the toSource method of the Ob...
Mozilla Seamonkey 1.0.1
Mozilla Seamonkey 1.0.2
Mozilla Firefox 1.5
Mozilla Firefox 1.5.0.1
Mozilla Seamonkey 1.0
Mozilla Thunderbird 1.5
Mozilla Firefox 1.5.0.4
Mozilla Firefox 1.5.0.2
Mozilla Firefox 1.5.0.3
Mozilla Thunderbird 1.5.0.2
Mozilla Thunderbird 1.5.0.4
7.5
CVSSv2
CVE-2006-3807
Mozilla Firefox prior to 1.5.0.5, Thunderbird prior to 1.5.0.5, and SeaMonkey prior to 1.0.3 allows remote malicious users to execute arbitrary code via script that changes the standard Object() constructor to return a reference to a privileged object and calling "named Java...
Mozilla Firefox 1.5.0.2
Mozilla Firefox 1.5.0.3
Mozilla Firefox 1.5.0.4
Mozilla Thunderbird 1.5.0.4
Mozilla Firefox 1.5
Mozilla Firefox 1.5.0.1
Mozilla Thunderbird 1.5
Mozilla Thunderbird 1.5.0.2
Mozilla Seamonkey 1.0.2
Mozilla Seamonkey 1.0
Mozilla Seamonkey 1.0.1
7.2
CVSSv2
CVE-2015-7818
The administration-panel web service in IBM System Networking Switch Center (SNSC) prior to 7.3.1.5 and Lenovo Switch Center prior to 8.1.2.0 allows local users to execute arbitrary JSP code with SYSTEM privileges by using the Apache Axis AdminService deployment method to install...
Ibm System Networking Switch Center
Lenovo Switch Center
7.1
CVSSv2
CVE-2015-7817
Race condition in the administration-panel web service in IBM System Networking Switch Center (SNSC) prior to 7.3.1.5 and Lenovo Switch Center prior to 8.1.2.0 allows remote malicious users to obtain privileged-account access, and consequently provide FileReader.jsp input contain...
Ibm System Networking Switch Center
Lenovo Switch Center
7.1
CVSSv2
CVE-2015-7820
Race condition in the administration-panel web service in IBM System Networking Switch Center (SNSC) prior to 7.3.1.5 and Lenovo Switch Center prior to 8.1.2.0 allows remote malicious users to obtain privileged-account access, and consequently provide ZipDownload.jsp input contai...
Lenovo Switch Center
Ibm System Networking Switch Center
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-23316
SQL injection
type confusion
CVE-2024-20697
CVE-2024-4344
local
CVE-2024-30043
CVE-2024-3821
CVE-2024-5041
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
4
5
6
7
8
9
10
NEXT »