Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
glafkos charalambous vulnerabilities and exploits
(subscribe to this query)
7.8
CVSSv3
CVE-2015-2291
(1) IQVW32.sys prior to 1.3.1.0 and (2) IQVW64.sys prior to 1.3.1.0 in the Intel Ethernet diagnostics driver for Windows allows local users to cause a denial of service or possibly execute arbitrary code with kernel privileges via a crafted (a) 0x80862013, (b) 0x8086200B, (c) 0x8...
Intel Ethernet Diagnostics Driver Iqvw32.sys 1.03.0.7
Intel Ethernet Diagnostics Driver Iqvw64.sys 1.03.0.7
1 EDB exploit
3 Github repositories
NA
CVE-2008-3754
SQL injection vulnerability in trl.php in YourFreeWorld Stylish Text Ads Script allows remote malicious users to execute arbitrary SQL commands via the id parameter.
Yourfreeworld Stylish Text Ads Script
1 EDB exploit
NA
CVE-2015-0624
The web framework in Cisco AsyncOS on Email Security Appliance (ESA), Content Security Management Appliance (SMA), and Web Security Appliance (WSA) devices allows remote malicious users to trigger redirects via a crafted HTTP header, aka Bug IDs CSCur44412, CSCur44415, CSCur89630...
Cisco Email Security Appliance Firmware -
Cisco Content Security Management Appliance -
Cisco Web Security Appliance -
NA
CVE-2014-5507
iBackup 10.0.0.32 and previous versions uses weak permissions (Everyone: Full Control) for ib_service.exe, which allows local users to gain privileges via a Trojan horse file.
Pro Softnet Corporation Ibackup
1 EDB exploit
NA
CVE-2013-5321
Multiple SQL injection vulnerabilities in AlienVault Open Source Security Information Management (OSSIM) 4.1 allow remote malicious users to execute arbitrary SQL commands via the (1) sensor parameter in a Query action to forensics/base_qry_main.php; the (2) tcp_flags[] or (3) tc...
Alienvault Open Source Security Information Management 4.1
1 EDB exploit
NA
CVE-2010-3152
Untrusted search path vulnerability in Adobe Illustrator CS4 14.0.0, CS5 15.0.1 and previous versions, and possibly other versions allows local users, and possibly remote attackers, to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse dwmapi.dll or aires...
Adobe Illustrator 15.0.1
Adobe Illustrator 14.0
1 EDB exploit
NA
CVE-2010-3153
Untrusted search path vulnerability in Adobe InDesign CS4 6.0, InDesign CS5 7.0.2 and previous versions, Adobe InDesign Server CS5 7.0.2 and previous versions, and Adobe InCopy CS5 7.0.2 and previous versions allows local users, and possibly remote attackers, to execute arbitrary...
Adobe Indesign Cs4 6.0
1 EDB exploit
NA
CVE-2007-2991
Cross-site scripting (XSS) vulnerability in includes/send.inc.php in Evenzia CMS allows remote malicious users to inject arbitrary web script or HTML via the PATH_INFO.
Evenzia Evenzia Cms
1 EDB exploit
NA
CVE-2008-6278
Multiple cross-site scripting (XSS) vulnerabilities in product.php in RakhiSoftware Price Comparison Script (aka Shopping Cart) allow remote malicious users to inject arbitrary web script or HTML via the (1) category_id and (2) subcategory_id parameters.
Rakhisoftware Rakhisoftware Shopping Cart -
1 EDB exploit
NA
CVE-2008-6279
RakhiSoftware Price Comparison Script (aka Shopping Cart) allows remote malicious users to obtain sensitive information via an invalid PHPSESSID cookie, which reveals the installation path in an error message.
Rakhisoftware Rakhisoftware Shopping Cart -
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
blind SQL injection
SSRF
buffer overflow
CVE-2023-28952
CVE-2023-41822
CVE-2024-27956
CVE-2023-7028
CVE-2024-34447
CVE-2024-34460
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
NEXT »