Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
nine:situations:group vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2009-1281
Cross-site scripting (XSS) vulnerability in glFusion prior to 1.1.3 allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors.
Glfusion Glfusion 1.1.1
Glfusion Glfusion 1.0.0
Glfusion Glfusion 1.0.1
Glfusion Glfusion
Glfusion Glfusion 1.1.0
1 EDB exploit
NA
CVE-2009-1283
glFusion prior to 1.1.3 performs authentication with a user-provided password hash instead of a password, which allows remote malicious users to gain privileges by obtaining the hash and using it in the glf_password cookie, aka "User Masquerading." NOTE: this can be lev...
Glfusion Glfusion 1.1.0
Glfusion Glfusion 1.0.0
Glfusion Glfusion 1.0.1
Glfusion Glfusion 1.0.2
Glfusion Glfusion 1.1.1
Glfusion Glfusion
1 EDB exploit
NA
CVE-2009-1516
Stack-based buffer overflow in the IceWarpServer.APIObject ActiveX control in api.dll in IceWarp Merak Mail Server 9.4.1 might allow context-dependent malicious users to execute arbitrary code via a large value in the second argument to the Base64FileEncode method, as possibly de...
Icewarp Merak Mail Server 9.4.1
1 EDB exploit
NA
CVE-2008-2511
Directory traversal vulnerability in the UmxEventCli.CachedAuditDataList.1 (aka UmxEventCliLib) ActiveX control in UmxEventCli.dll in CA Internet Security Suite 2008 allows remote malicious users to create and overwrite arbitrary files via a .. (dot dot) in the argument to the Sa...
Ca Internet Security Suite Plus 2008
1 EDB exploit
NA
CVE-2009-1960
inc/init.php in DokuWiki 2009-02-14, rc2009-02-06, and rc2009-01-30, when register_globals is enabled, allows remote malicious users to include and execute arbitrary local files via the config_cascade[main][default][] parameter to doku.php. NOTE: PHP remote file inclusion is also...
Dokuwiki Dokuwiki Rc2009-02-06
Dokuwiki Dokuwiki 2009-02-14
Dokuwiki Dokuwiki Rc2009-01-30
2 EDB exploits
NA
CVE-2008-6748
Eval injection vulnerability in Megacubo 5.0.7 allows remote malicious users to inject and execute arbitrary PHP code via the play action in a mega:// URI.
Megacubo Megacubo 5.0.7
2 EDB exploits
NA
CVE-2009-2261
PeaZIP 2.6.1, 2.5.1, and previous versions on Windows allows user-assisted remote malicious users to execute arbitrary commands via a .zip archive with a .txt file whose name contains | (pipe) characters and a command.
Giorgio Tani Peazip
Giorgio Tani Peazip 2.4.1
Giorgio Tani Peazip 1.10
Giorgio Tani Peazip 1.9.3
Giorgio Tani Peazip 1.6
Giorgio Tani Peazip 1.5
Giorgio Tani Peazip 2.2
Giorgio Tani Peazip 2.1
Giorgio Tani Peazip 1.8.2
Giorgio Tani Peazip 1.8.1
Giorgio Tani Peazip 1.2
Giorgio Tani Peazip 1.1
Giorgio Tani Peazip 2.4
Giorgio Tani Peazip 2.3a
Giorgio Tani Peazip 1.9.2
Giorgio Tani Peazip 1.9.1
Giorgio Tani Peazip 1.9
Giorgio Tani Peazip 1.4
Giorgio Tani Peazip 1.3
Giorgio Tani Peazip 2.6.1
Giorgio Tani Peazip 2.0
Giorgio Tani Peazip 1.11
2 EDB exploits
NA
CVE-2009-1068
Stack-based buffer overflow in BS.Player (bsplayer) 2.32 Build 975 Free and 2.34 Build 980 PRO and previous versions allows remote malicious users to cause a denial of service (application crash) or execute arbitrary code via a long hostname in a .bsl playlist file.
Bsplayer Bs.player 2.32
Bsplayer Bs.player 2.34
2 EDB exploits
NA
CVE-2008-2551
The DownloaderActiveX Control (DownloaderActiveX.ocx) in Icona SpA C6 Messenger 1.0.0.1 allows remote malicious users to force the download and execution of arbitrary files via a URL in the propDownloadUrl parameter with the propPostDownloadAction parameter set to "run."...
Icona Instant Messenger 1.0.0.1
2 EDB exploits
NA
CVE-2009-2564
NOS Microsystems getPlus Download Manager, as used in Adobe Reader 1.6.2.36 and possibly other versions, Corel getPlus Download Manager prior to 1.5.0.48, and possibly other products, installs NOS\bin\getPlus_HelperSvc.exe with insecure permissions (Everyone:Full Control), which ...
Nos Microsystems Getplus Download Manager 1.6.2.36
Adobe Acrobat Reader 9.1
Adobe Acrobat Reader 9.0
Corel Getplus Download Manager 1.5.0.48
2 EDB exploits
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-4463
CVE-2024-29895
inject
CVE-2023-52689
CVE-2024-5049
CVE-2024-5051
privilege escalation
physical
CVE-2023-52676
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
NEXT »