Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
sumit vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2007-3913
SQL injection vulnerability in Gforge prior to 3.1 allows remote malicious users to execute arbitrary SQL commands via unspecified vectors.
Gforge Gforge
1 EDB exploit
NA
CVE-2013-0255
PostgreSQL 9.2.x prior to 9.2.3, 9.1.x prior to 9.1.8, 9.0.x prior to 9.0.12, 8.4.x prior to 8.4.16, and 8.3.x prior to 8.3.23 does not properly declare the enum_recv function in backend/utils/adt/enum.c, which causes it to be invoked with incorrect arguments and allows remote au...
Postgresql Postgresql 8.3.16
Postgresql Postgresql 8.3.17
Postgresql Postgresql 8.3.20
Postgresql Postgresql 8.3.8
Postgresql Postgresql 8.3.21
Postgresql Postgresql 8.3.22
Postgresql Postgresql 8.3.2
Postgresql Postgresql 8.3.1
Postgresql Postgresql 8.3.19
Postgresql Postgresql 8.3.18
Postgresql Postgresql 8.3.6
Postgresql Postgresql 8.3.5
Postgresql Postgresql 8.3.12
Postgresql Postgresql 8.3.9
Postgresql Postgresql 8.3.11
Postgresql Postgresql 8.3.14
Postgresql Postgresql 8.3.7
Postgresql Postgresql 8.3.15
Postgresql Postgresql 8.3.4
Postgresql Postgresql 8.3.3
Postgresql Postgresql 8.3.10
Postgresql Postgresql 8.3.13
NA
CVE-2009-2373
Cross-site scripting (XSS) vulnerability in the Forum module in Drupal 6.x prior to 6.13 allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors.
Drupal Drupal 6.3
Drupal Drupal 6.0
Drupal Drupal 5.14
Drupal Drupal 5.16
Drupal Drupal 5.2
Drupal Drupal 5.8
Drupal Drupal 6.8
Drupal Drupal 6.10
Drupal Drupal 6.9
Drupal Drupal 6.12
Drupal Drupal 5.1 Rev1.1
Drupal Drupal 5.13
Drupal Drupal 5.3
Drupal Drupal 5.5.
Drupal Drupal 5.4
Drupal Drupal 5.0
Drupal Drupal 6.6
Drupal Drupal 6.7
Drupal Drupal 6.5
Drupal Drupal 6.4
Drupal Drupal 5.1
Drupal Drupal 5.9
NA
CVE-2009-2372
Drupal 6.x prior to 6.13 does not prevent users from modifying user signatures after the associated comment format has been changed to an administrator-controlled input format, which allows remote authenticated users to inject arbitrary web script, HTML, and possibly PHP code via...
Drupal Drupal
NA
CVE-2009-2374
Drupal 5.x prior to 5.19 and 6.x prior to 6.13 does not properly sanitize failed login attempts for pages that contain a sortable table, which includes the username and password in links that can be read from (1) the HTTP referer header of external web sites that are visited from...
Drupal Drupal
NA
CVE-2007-1897
SQL injection vulnerability in xmlrpc (xmlrpc.php) in WordPress 2.1.2, and probably earlier, allows remote authenticated users to execute arbitrary SQL commands via a string parameter value in an XML RPC mt.setPostCategories method call, related to the post_id variable.
Wordpress Wordpress
Wordpress Wordpress 2.1
Wordpress Wordpress 2.1.1
1 EDB exploit
NA
CVE-2010-0239
The TCP/IP implementation in Microsoft Windows Vista Gold, SP1, and SP2 and Server 2008 Gold and SP2, when IPv6 is enabled, does not properly perform bounds checking on ICMPv6 Router Advertisement packets, which allows remote malicious users to execute arbitrary code via crafted ...
Microsoft Windows Server 2008
Microsoft Windows Server 2008 -
Microsoft Windows Vista
1 EDB exploit
NA
CVE-2007-4966
SQL injection vulnerability in www/people/editprofile.php in GForge 4.6b2 and previous versions allows remote malicious users to execute arbitrary SQL commands via the skill_delete[] parameter.
Gforge Gforge
1 EDB exploit
NA
CVE-2006-5669
PHP remote file inclusion vulnerability in gestion/savebackup.php in Gepi 1.4.0 and previous versions, and possibly other versions prior to 1.4.4, allows remote malicious users to execute arbitrary PHP code via a URL in the filename parameter.
Gepi Gepi 1.4.0
1 EDB exploit
NA
CVE-2011-3390
Multiple cross-site scripting (XSS) vulnerabilities in index.php in IBM OpenAdmin Tool (OAT) prior to 2.72 for Informix allow remote malicious users to inject arbitrary web script or HTML via the (1) informixserver, (2) host, or (3) port parameter in a login action.
Ibm Openadmin Tool 2.23
Ibm Openadmin Tool 2.24
Ibm Openadmin Tool 2.20
Ibm Openadmin Tool 2.27
Ibm Openadmin Tool 2.28
Ibm Openadmin Tool 2.21
Ibm Openadmin Tool 2.22
Ibm Openadmin Tool
Ibm Openadmin Tool 2.25
Ibm Openadmin Tool 2.26
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2022-48693
CVE-2024-30851
CVE-2024-34460
CVE-2024-2887
local
CVE-2024-27956
remote code execution
CVE-2024-34475
privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »