Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
gold_m vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2009-4932
Stack-based buffer overflow in 1by1 1.67 (aka 1.6.7.0) allows remote malicious users to cause a denial of service (application crash) or possibly execute arbitrary code via a long string in a .m3u playlist file.
Mpesch3.de1 1by1 1.67
1 EDB exploit
NA
CVE-2009-4758
Stack-based buffer overflow in dicas Mpegable Player 2.12 allows remote malicious users to cause a denial of service (application crash) or possibly execute arbitrary code via a long string in a .YUV file.
Dicas Mpegable Player 2.12
1 EDB exploit
NA
CVE-2009-4627
Directory traversal vulnerability in sources/_template_parser.php in Moa Gallery 1.2.0 and previous versions allows remote malicious users to read arbitrary files via a .. (dot dot) in the p_filename parameter, a different issue than CVE-2009-4614.
Dan Brown Moa Gallery 1.2.0
1 EDB exploit
NA
CVE-2009-3425
Directory traversal vulnerability in includes/inc.thcms_admin_dirtree.php in MaxCMS 3.11.20b allows remote malicious users to read arbitrary files via directory traversal sequences in the thCMS_root parameter.
Databay Maxcms 3.11.20b
1 EDB exploit
NA
CVE-2009-3426
PHP remote file inclusion vulnerability in includes/file_manager/special.php in MaxCMS 3.11.20b allows remote malicious users to execute arbitrary PHP code via a URL in the fm_includes_special parameter.
Databay Maxcms 3.11.20b
1 EDB exploit
NA
CVE-2009-3151
Directory traversal vulnerability in actions/downloadFile.php in Ultrize TimeSheet 1.2.2 allows remote malicious users to read arbitrary files via a .. (dot dot) in the fileName parameter.
Ultrize Timesheet 1.2.2
1 EDB exploit
NA
CVE-2008-6934
Static code injection vulnerability in Sanus|artificium (aka Sanusart) Free simple guestbook PHP script, when downloaded prior to 20081111, allows remote malicious users to inject arbitrary PHP code into messages.txt via the message parameter to act.php, which is executed when gu...
Sansuart Free Simple Guestbook Php Script
1 EDB exploit
NA
CVE-2009-1644
Stack-based buffer overflow in Sorinara Streaming Audio Player 0.9 allows remote malicious users to execute arbitrary code via a crafted .pla file.
Sorinara Streaming Audio Player 0.9
2 EDB exploits
NA
CVE-2009-1437
Stack-based buffer overflow in PortableApps CoolPlayer Portable (aka CoolPlayer+ Portable) 2.19.6 and previous versions allows remote malicious users to execute arbitrary code via a long string in a malformed playlist (.m3u) file. NOTE: this may overlap CVE-2008-3408.
Coolplayer Coolplayer 2.19.1
3 EDB exploits
NA
CVE-2008-6651
Static code injection vulnerability in edithistory.php in OxYProject OxYBox 0.85 allows remote malicious users to inject arbitrary PHP code into oxyhistory.php via the oxymsg parameter.
Oxyproject Oxybox 0.85
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-29895
blind SQL injection
CVE-2024-5064
CVE-2023-52677
CVE-2023-52682
CVE-2024-30051
CVE-2024-35849
remote attackers
remote
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
6
NEXT »