Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

or4ng.m4n vulnerabilities and exploits

(subscribe to this query)
6.1
CVSSv3
CVE-2011-4095
Jara 1.6 has an XSS vulnerability
Jara Project Jara 1.6
9.8
CVSSv3
CVE-2023-38965
Lost and Found Information System 1.0 allows account takeover via username and password to a /classes/Users.php?f=save URI.
Oretnom23 Lost And Found Information System 1.0
NA
CVE-2012-5315
Multiple cross-site scripting (XSS) vulnerabilities in php ireport 1.0 allow remote malicious users to inject arbitrary web script or HTML via the message parameter to (1) messages_viewer.php, (2) home.php, or (3) history.php.
Php Ireport Project Php Ireport 1.0
NA
CVE-2012-5326
Cross-site request forgery (CSRF) vulnerability in admin/function.php in IDevSpot iSupport 1.x allows remote malicious users to hijack the authentication of administrators for requests that add administrator accounts via an administrators action.
Idevspot Isupport 1.0Idevspot Isupport 1.8Idevspot Isupport 1.02Idevspot Isupport 1.06
NA
CVE-2012-5231
miniCMS 1.0 and 2.0 allows remote malicious users to execute arbitrary PHP code via a crafted (1) pagename or (2) area variable containing an executable extension, which is not properly handled by (a) update.php when writing files to content/, or (b) updatenews.php when writing f...
Jessgramp Minicms 1.0Jessgramp Minicms 2.0
NA
CVE-2012-6500
Directory traversal vulnerability in download.lib.php in Pragyan CMS 3.0 and previous versions allows remote malicious users to read arbitrary files via a .. (dot dot) in the fileget parameter in a profile action to index.php.
Pragyan Cms Project Pragyan Cms 2.6.3Pragyan Cms Project Pragyan Cms 2.6.1Pragyan Cms Project Pragyan CmsPragyan Cms Project Pragyan Cms 2.6.4Pragyan Cms Project Pragyan Cms 2.5.13Pragyan Cms Project Pragyan Cms 2.5.12Pragyan Cms Project Pragyan Cms 2.5.9Pragyan Cms Project Pragyan Cms 2.5.4Pragyan Cms Project Pragyan Cms 2.6.2Pragyan Cms Project Pragyan Cms 2.5.14
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-26925CVE-2023-41826LFICVE-2022-22364CVE-2024-2887command injectionremote code executionCVE-2024-34446CVE-2022-48699
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook