Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
accounts vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2007-3345
Multiple SQL injection vulnerabilities in index.php in PHPAccounts 0.5 allow remote malicious users to execute arbitrary SQL commands via the (1) Outgoing_Type_ID, (2) Outgoing_ID, (3) Project_ID, (4) Client_ID, (5) Invoice_ID, or (6) Vendor_ID parameter.
Php Accounts Php Accounts 0.5
NA
CVE-2007-3346
Directory traversal vulnerability in index.php in PHPAccounts 0.5 allows remote malicious users to include arbitrary local files via unspecified manipulations of the page parameter.
Php Accounts Php Accounts 0.5
1 EDB exploit
NA
CVE-2013-0240
Gnome Online Accounts (GOA) 3.4.x, 3.6.x prior to 3.6.3, and 3.7.x prior to 3.7.5, does not properly validate SSL certificates when creating accounts such as Windows Live and Facebook accounts, which allows man-in-the-middle malicious users to obtain sensitive information such as...
Gnome Gnome Online Accounts 3.4.0
Gnome Gnome Online Accounts 3.4.1
Gnome Gnome Online Accounts 3.6.0
Gnome Gnome Online Accounts 3.6.1
Gnome Gnome Online Accounts 3.6.2
Gnome Gnome Online Accounts 3.7.1
Gnome Gnome Online Accounts 3.7.3
Gnome Gnome Online Accounts 3.7.2
Gnome Gnome Online Accounts 3.7.4
Canonical Ubuntu Linux 11.10
Canonical Ubuntu Linux 12.10
Canonical Ubuntu Linux 12.04
NA
CVE-2013-1799
Gnome Online Accounts (GOA) 3.6.x prior to 3.6.3 and 3.7.x prior to 3.7.91, does not properly validate SSL certificates when creating accounts for providers who use the libsoup library, which allows man-in-the-middle malicious users to obtain sensitive information such as credent...
Gnome Gnome Online Accounts 3.6.0
Gnome Gnome Online Accounts 3.6.2
Gnome Gnome Online Accounts 3.6.1
Gnome Gnome Online Accounts 3.7.3
Gnome Gnome Online Accounts 3.7.4
Gnome Gnome Online Accounts 3.7.90
Gnome Gnome Online Accounts 3.7.2
Gnome Gnome Online Accounts 3.7.1
Canonical Ubuntu Linux 11.10
Canonical Ubuntu Linux 12.10
Canonical Ubuntu Linux 12.04
NA
CVE-2005-1316
Cross-site scripting (XSS) vulnerability in Horde Accounts module prior to 2.1.2 allows remote malicious users to inject arbitrary web script or HTML via the parent's frame page title.
Horde Accounts 2.1.1
Horde Accounts 2.1
6.1
CVSSv3
CVE-2023-40519
A cross-site scripting (XSS) vulnerability in the bpk-common/auth/login/index.html login portal in Broadpeak Centralized Accounts Management Auth Agent 01.01.00.19219575_ee9195b0, 01.01.01.30097902_fd999e76, and 00.12.01.9565588_1254b459 allows remote malicious users to inject ar...
Broadpeak Centralized Accounts Management Auth Agent 00.12.01.9565588 1254b459
Broadpeak Centralized Accounts Management Auth Agent 01.01.00.19219575 Ee9195b0
Broadpeak Centralized Accounts Management Auth Agent 01.01.01.30097902 Fd999e76
9.8
CVSSv3
CVE-2023-1480
A vulnerability classified as critical was found in SourceCodester Monitoring of Students Cyber Accounts System 1.0. Affected by this vulnerability is an unknown functionality of the file login.php of the component POST Parameter Handler. The manipulation of the argument un leads...
Monitoring Of Students Cyber Accounts System Project Monitoring Of Students Cyber Accounts System 1.0
6.1
CVSSv3
CVE-2023-1481
A vulnerability, which was classified as problematic, has been found in SourceCodester Monitoring of Students Cyber Accounts System 1.0. Affected by this issue is some unknown functionality of the file modules/balance/index.php?view=balancelist of the component POST Parameter Han...
Monitoring Of Students Cyber Accounts System Project Monitoring Of Students Cyber Accounts System 1.0
6.5
CVSSv3
CVE-2020-13474
In NCH Express Accounts 8.24 and previous versions, an authenticated low-privilege user can enter a crafted URL to access higher-privileged functionalities such as Add/Edit users.
Nchsoftware Express Accounts
5.5
CVSSv3
CVE-2020-13473
NCH Express Accounts 8.24 and previous versions allows local users to discover the cleartext password by reading the configuration file.
Nchsoftware Express Accounts
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
SSTI
CVE-2024-35863
CVE-2024-35910
man-in-the-middle
CVE-2024-35912
CVE-2024-25742
LFI
CVE-2024-32002
CVE-2024-22120
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
6
NEXT »