Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
w. cashdollar vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2001-0059
patchadd in Solaris allows local users to overwrite arbitrary files via a symlink attack.
Sun Sunos 5.7
1 EDB exploit
NA
CVE-1999-1405
snap command in AIX prior to 4.3.2 creates the /tmp/ibmsupt directory with world-readable permissions and does not remove or clear the directory when snap -a is executed, which could allow local users to access the shadowed password file by creating /tmp/ibmsupt/general/passwd be...
Ibm Aix 4.2
Ibm Aix 4.2.1
Ibm Aix 4.1.4
Ibm Aix 4.1.5
Ibm Aix 3.2.5
Ibm Aix 4.1
Ibm Aix 4.1.2
Ibm Aix 4.1.3
1 EDB exploit
NA
CVE-2014-8606
Directory traversal vulnerability in the XCloner plugin 3.1.1 for WordPress and 3.5.1 for Joomla! allows remote administrators to read arbitrary files via a .. (dot dot) in the file parameter in a json_return action in the xcloner_show page to wp-admin/admin-ajax.php.
Xcloner Xcloner 3.1.1
Xcloner Xcloner 3.5.1
1 EDB exploit
NA
CVE-2013-4203
The self.run_gpg function in lib/rgpg/gpg_helper.rb in the rgpg gem prior to 0.2.3 for Ruby allows remote malicious users to execute arbitrary commands via shell metacharacters in unspecified vectors.
Richard Cook Rgpg
Richard Cook Rgpg 0.2.1
Richard Cook Rgpg 0.2.0
NA
CVE-2003-0497
Caché Database 5.x installs /cachesys/bin/cache with world-writable permissions, which allows local users to gain privileges by modifying cache and executing it via cuxs.
Intersystems Cache Database 5
1 EDB exploit
9.8
CVSSv3
CVE-2016-7489
Teradata Virtual Machine Community Edition v15.10's perl script /opt/teradata/gsctools/bin/t2a.pl creates files in /tmp in an insecure manner, this may lead to elevated code execution.
Teradata Virtual Machine 15.10
NA
CVE-2014-8605
The XCloner plugin 3.1.1 for WordPress and 3.5.1 for Joomla! stores database backup files with predictable names under the web root with insufficient access control, which allows remote malicious users to obtain sensitive information via a direct request to a backup file in admin...
Xcloner Xcloner 3.1.1
Xcloner Xcloner 3.5.1
1 EDB exploit
NA
CVE-2015-4614
Multiple SQL injection vulnerabilities in includes/Function.php in the Easy2Map plugin prior to 1.2.5 for WordPress allow remote malicious users to execute arbitrary SQL commands via the mapName parameter in an e2m_img_save_map_name action to wp-admin/admin-ajax.php and other uns...
Easy2map Project Easy2map
1 EDB exploit
NA
CVE-2015-4616
Directory traversal vulnerability in includes/MapPinImageSave.php in the Easy2Map plugin prior to 1.2.5 for WordPress allows remote malicious users to create arbitrary files via a .. (dot dot) in the map_id parameter.
Easy2map Project Easy2map
1 EDB exploit
7.2
CVSSv3
CVE-2016-1000122
XSS and SQLi in Huge IT Joomla Slider v1.0.9 extension
Huge-it Slider 1.0.9
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
SSTI
CVE-2024-35863
CVE-2024-35910
man-in-the-middle
CVE-2024-35912
CVE-2024-25742
LFI
CVE-2024-32002
CVE-2024-22120
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
NEXT »