Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
valentin lobstein vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2024-25228
Vinchin Backup and Recovery 7.2 and previous versions is vulnerable to Authenticated Remote Code Execution (RCE) via the getVerifydiyResult function in ManoeuvreHandler.class.php.
1 Github repository
NA
CVE-2024-25600
This Metasploit module exploits an unauthenticated remote code execution vulnerability in the Bricks Builder Theme versions 1.9.6 and below for WordPress. The vulnerability allows attackers to execute arbitrary PHP code by leveraging a nonce leakage to bypass authentication and e...
7 Github repositories
1 Article
8.8
CVSSv3
CVE-2024-22899
Vinchin Backup & Recovery v7.2 exists to contain an authenticated remote code execution (RCE) vulnerability via the syncNtpTime function.
Vinchin Vinchin Backup And Recovery
1 Github repository
8.8
CVSSv3
CVE-2024-22900
Vinchin Backup & Recovery v7.2 exists to contain an authenticated remote code execution (RCE) vulnerability via the setNetworkCardInfo function.
Vinchin Vinchin Backup And Recovery
9.8
CVSSv3
CVE-2024-22901
Vinchin Backup & Recovery v7.2 exists to use default MYSQL credentials.
Vinchin Vinchin Backup And Recovery
1 Github repository
9.8
CVSSv3
CVE-2024-22902
Vinchin Backup & Recovery v7.2 exists to be configured with default root credentials.
Vinchin Vinchin Backup And Recovery
1 Github repository
8.8
CVSSv3
CVE-2024-22903
Vinchin Backup & Recovery v7.2 exists to contain an authenticated remote code execution (RCE) vulnerability via the deleteUpdateAPK function.
Vinchin Vinchin Backup And Recovery
1 Github repository
9.8
CVSSv3
CVE-2023-50917
MajorDoMo (aka Major Domestic Module) prior to 0662e5e allows command execution via thumb.php shell metacharacters. NOTE: this is unrelated to the Majordomo mailing-list manager.
Mjdm Majordomo
1 Github repository
9.8
CVSSv3
CVE-2023-6553
The Backup Migration plugin for WordPress is vulnerable to Remote Code Execution in all versions up to, and including, 1.3.7 via the /includes/backup-heart.php file. This is due to an attacker being able to control the values passed to an include, and subsequently leverage that t...
Backupbliss Backup Migration
5 Github repositories
8.8
CVSSv3
CVE-2023-46214
In Splunk Enterprise versions below 9.0.7 and 9.1.2, Splunk Enterprise does not safely sanitize extensible stylesheet language transformations (XSLT) that users supply. This means that an attacker can upload malicious XSLT which can result in remote code execution on the Splunk E...
Splunk Cloud
Splunk Splunk
1 Github repository
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
SSTI
CVE-2024-35863
CVE-2024-35910
man-in-the-middle
CVE-2024-35912
CVE-2024-25742
LFI
CVE-2024-32002
CVE-2024-22120
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
NEXT »