Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
sureshbabu narvaneni vulnerabilities and exploits
(subscribe to this query)
8.8
CVSSv3
CVE-2018-8811
Cross-site request forgery (CSRF) vulnerability in system/workplace/admin/accounts/user_role.jsp in OpenCMS 10.5.3 allows remote malicious users to hijack the authentication of administrative users for requests that perform privilege escalation. Note: It is argued that OpenCMS al...
Alkacon Opencms 10.5.3
1 EDB exploit
4.6
CVSSv3
CVE-2018-8815
Cross-site scripting (XSS) vulnerability in the gallery function in Alkacon OpenCMS 10.5.3 allows remote malicious users to inject arbitrary web script or HTML via a malicious SVG image.
Alkacon Opencms 10.5.3
1 EDB exploit
8.8
CVSSv3
CVE-2018-9107
CSV Injection (aka Excel Macro Injection or Formula Injection) exists in the export feature in the Acyba AcyMailing extension prior to 5.9.6 for Joomla! via a value that is mishandled in a CSV export.
Acyba Acymailing
1 EDB exploit
6.8
CVSSv3
CVE-2018-9137
Open-AudIT prior to 2.2 has CSV Injection.
Open-audit Open-audit
1 EDB exploit
8.8
CVSSv3
CVE-2018-9106
CSV Injection (aka Excel Macro Injection or Formula Injection) exists in the export feature in the Acyba AcySMS extension prior to 3.5.1 for Joomla! via a value that is mishandled in a CSV export.
Acyba Acysms
1 EDB exploit
6.1
CVSSv3
CVE-2018-9173
Cross-site scripting (XSS) vulnerability in admin/template/js/uploadify/uploadify.swf in GetSimple CMS 3.3.13 allows remote malicious users to inject arbitrary web script or HTML, as demonstrated by the movieName parameter.
Get-simple Getsimple Cms 3.3.13
1 EDB exploit
5.4
CVSSv3
CVE-2018-9183
The Joom Sky JS Jobs extension prior to 1.2.1 for Joomla! has XSS.
Joomsky Js Jobs
1 EDB exploit
6.1
CVSSv3
CVE-2018-10068
The jDownloads extension prior to 3.2.59 for Joomla! has XSS.
Jdownloads Jdownloads
1 EDB exploit
4.8
CVSSv3
CVE-2018-8813
Open redirect vulnerability in the login[redirect] parameter login functionality in WolfCMS 0.8.3.1 allows remote malicious users to redirect users to arbitrary web sites and conduct phishing attacks via a malformed URL.
Wolfcms Wolf Cms 0.8.3.1
1 EDB exploit
6.5
CVSSv3
CVE-2018-8814
Cross-site request forgery (CSRF) vulnerability in WolfCMS 0.8.3.1 allows remote malicious users to hijack the authentication of users for requests that modify plugin/[pluginname]/settings by crafting a malicious request.
Wolfcms Wolf Cms 0.8.3.1
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
blind SQL injection
SSRF
buffer overflow
CVE-2023-28952
CVE-2023-41822
CVE-2024-27956
CVE-2023-7028
CVE-2024-34447
CVE-2024-34460
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started