Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
sajjad pourali vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2013-5117
SQL injection vulnerability in the RSS page (DNNArticleRSS.aspx) in the ZLDNN DNNArticle module prior to 10.1 for DotNetNuke allows remote malicious users to execute arbitrary SQL commands via the categoryid parameter.
Zldnn Dnnarticle
1 EDB exploit
6.5
CVSSv3
CVE-2020-5188
DNN (formerly DotNetNuke) up to and including 9.4.4 has Insecure Permissions.
Dnnsoftware Dotnetnuke
NA
CVE-2012-0722
Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2013-0722. Reason: This candidate is a duplicate of CVE-2013-0722. A year-transition issue caused the wrong ID to be used. Notes: All CVE users should reference CVE-2013-0722 instead of this candidate. All referen...
1 EDB exploit
5.4
CVSSv3
CVE-2020-5186
DNN (formerly DotNetNuke) up to and including 9.4.4 allows XSS (issue 1 of 2).
Dnnsoftware Dotnetnuke
8.8
CVSSv3
CVE-2020-5187
DNN (formerly DotNetNuke) up to and including 9.4.4 allows Path Traversal (issue 2 of 2).
Dnnsoftware Dotnetnuke
NA
CVE-2013-0722
Stack-based buffer overflow in the scan_load_hosts function in ec_scan.c in Ettercap 0.7.5.1 and previous versions might allow local users to gain privileges via a Trojan horse hosts list containing a long line.
Ettercap-project Ettercap 0.7.3
Ettercap-project Ettercap 0.7.2
Ettercap-project Ettercap 0.7.4.1
Ettercap-project Ettercap 0.7.4
Ettercap-project Ettercap
Ettercap-project Ettercap 0.7.5
Ettercap-project Ettercap 0.6.3.1
1 EDB exploit
NA
CVE-2012-0389
Cross-site scripting (XSS) vulnerability in ForgottenPassword.aspx in MailEnable Professional, Enterprise, and Premium 4.26 and previous versions, 5.x prior to 5.53, and 6.x prior to 6.03 allows remote malicious users to inject arbitrary web script or HTML via the Username parame...
Mailenable Mailenable 3.52
Mailenable Mailenable 3.12
Mailenable Mailenable 3.11
Mailenable Mailenable 3.61
Mailenable Mailenable 1.73
Mailenable Mailenable 3.0
Mailenable Mailenable 3.01
Mailenable Mailenable 4.11
Mailenable Mailenable 1.52
Mailenable Mailenable 1.53
Mailenable Mailenable 1.71
Mailenable Mailenable 1.72
Mailenable Mailenable 4.24
Mailenable Mailenable 4.15
Mailenable Mailenable 1.79
Mailenable Mailenable 3.53
Mailenable Mailenable 1.75
Mailenable Mailenable 1.76
Mailenable Mailenable 3.6
Mailenable Mailenable 1.74
Mailenable Mailenable 4.1
Mailenable Mailenable 4.13
2 EDB exploits
NA
CVE-2013-4649
Cross-site scripting (XSS) vulnerability in DotNetNuke (DNN) prior to 6.2.9 and 7.x prior to 7.1.1 allows remote malicious users to inject arbitrary web script or HTML via the __dnnVariable parameter to the default URI.
Dotnetnuke Dotnetnuke 6.2.0
Dotnetnuke Dotnetnuke 6.2.1
Dotnetnuke Dotnetnuke
Dotnetnuke Dotnetnuke 7.0.0
Dotnetnuke Dotnetnuke 7.0.1
Dotnetnuke Dotnetnuke 6.0.2
Dotnetnuke Dotnetnuke 6.0.1
Dotnetnuke Dotnetnuke 5.06.00
Dotnetnuke Dotnetnuke 5.05.01
Dotnetnuke Dotnetnuke 4.8.2
Dotnetnuke Dotnetnuke 4.8.1
Dotnetnuke Dotnetnuke 4.8.0
Dotnetnuke Dotnetnuke 4.5.2
Dotnetnuke Dotnetnuke 4.4.1
Dotnetnuke Dotnetnuke 6.1.0
Dotnetnuke Dotnetnuke 6.1.1
Dotnetnuke Dotnetnuke 6.2.2
Dotnetnuke Dotnetnuke 6.2.3
Dotnetnuke Dotnetnuke 7.0.2
Dotnetnuke Dotnetnuke 7.0.3
Dotnetnuke Dotnetnuke 6.0.0
Dotnetnuke Dotnetnuke 5.1.4
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2022-48693
CVE-2024-30851
CVE-2024-34460
CVE-2024-2887
local
CVE-2024-27956
remote code execution
CVE-2024-34475
privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started