Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
saudi vulnerabilities and exploits
(subscribe to this query)
6.5
CVSSv3
CVE-2021-1396
Multiple vulnerabilities in Cisco Application Services Engine could allow an unauthenticated, remote malicious user to gain privileged access to host-level operations or to learn device-specific information, create diagnostic files, and make limited configuration changes. For mor...
Cisco Application Services Engine
Cisco Application Policy Infrastructure Controller 1.1.3
1 Article
9.8
CVSSv3
CVE-2021-1393
Multiple vulnerabilities in Cisco Application Services Engine could allow an unauthenticated, remote malicious user to gain privileged access to host-level operations or to learn device-specific information, create diagnostic files, and make limited configuration changes. For mor...
Cisco Application Services Engine
Cisco Application Policy Infrastructure Controller 1.1.3
1 Article
7.8
CVSSv3
CVE-2019-11931
A stack-based buffer overflow could be triggered in WhatsApp by sending a specially crafted MP4 file to a WhatsApp user. The issue was present in parsing the elementary stream metadata of an MP4 file and could result in a DoS or RCE. This affects Android versions before 2.19.274,...
Whatsapp Whatsapp
Whatsapp Whatsapp Business
Whatsapp Whatsapp Enterprise Client
1 Article
7.8
CVSSv3
CVE-2018-20250
In WinRAR versions prior to and including 5.61, There is path traversal vulnerability when crafting the filename field of the ACE format (in UNACEV2.dll). When the filename field is manipulated with specific patterns, the destination (extraction) folder is ignored, thus treating ...
Rarlab Winrar
2 EDB exploits
20 Github repositories
5 Articles
NA
CVE-2006-0906
SQL injection vulnerability in D3Jeeb Pro 3 allows remote malicious users to execute arbitrary SQL commands via the catid parameter in (1) fastlinks.php and (2) catogary.php.
Top Line D3jeeb Pro 3
2 EDB exploits
NA
CVE-2006-0972
SQL injection vulnerability in news.php in Tony Baird Fantastic News 2.1.1 allows remote malicious users to execute arbitrary SQL commands via the page parameter. NOTE: the category vector is already covered by CVE-2005-3846.
Fscripts Fantastic News 2.1.1
1 EDB exploit
NA
CVE-2006-0413
Multiple SQL injection vulnerabilities in index.php in NewsPHP allow remote malicious users to execute arbitrary SQL commands via the (1) discuss, (2) tim, (3) id, (4) last, and (5) limit parameter.
Newsphp Newsphp
1 EDB exploit
NA
CVE-2004-1828
Vcard 2.9 and possibly other versions does not require authorization to run uninstall.php, which could allow remote malicious users to uninstall Vcard and delete database tables via a direct request to uninstall.php.
Belchior Foundry Vcard 2.8
Belchior Foundry Vcard 2.9
1 EDB exploit
NA
CVE-2006-4236
Multiple PHP remote file inclusion vulnerabilities in POWERGAP allow remote malicious users to execute arbitrary PHP code via a URL in the (1) shopid parameter to (a) s01.php, (b) s02.php, (c) s03.php, and (d) s04.php; and possibly a URL located after "shopid=" or "...
Powergap Powergap Business
Powergap Powergap Lite
1 EDB exploit
NA
CVE-2006-4670
Multiple PHP remote file inclusion vulnerabilities in PhotoKorn Gallery 1.52 and previous versions allow remote malicious users to execute arbitrary PHP code via a URL in the dir_path parameter in (1) includes/cart.inc.php or (2) extras/ext_cats.php.
Gtasoft Photokorn Gallery
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
blind SQL injection
SSRF
buffer overflow
CVE-2023-28952
CVE-2023-41822
CVE-2024-27956
CVE-2023-7028
CVE-2024-34447
CVE-2024-34460
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »