Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
addressbook vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2012-2307
Cross-site request forgery (CSRF) vulnerability in the Addressbook module for Drupal 6.x-4.2 and previous versions allows remote malicious users to hijack the authentication of unspecified victims via unknown vectors.
Plaatsoft Addressbook 6.x-3.4
Plaatsoft Addressbook 5.x-3.3
Plaatsoft Addressbook 5.x-3.5
Plaatsoft Addressbook 6.x-3.6
Plaatsoft Addressbook
Plaatsoft Addressbook 6.x-4.1
Plaatsoft Addressbook 6.x-4.0
Plaatsoft Addressbook 6.x-3.7
Plaatsoft Addressbook 6.x-3.5
NA
CVE-2005-4164
SQL injection vulnerability in view.php in PHP-addressbook 1.2 allows remote malicious users to execute arbitrary SQL commands via the id parameter.
Widgetmonkey Php-addressbook 1.2
NA
CVE-2007-1720
Directory traversal vulnerability in addressbook.php in the Addressbook 1.2 module for PHP-Nuke allows remote malicious users to include and execute arbitrary local files via a .. (dot dot) in the module_name parameter, as demonstrated by injecting PHP sequences into an Apache HT...
Sb-websoft Addressbook 1.2
1 EDB exploit
NA
CVE-2013-0135
Multiple SQL injection vulnerabilities in PHP Address Book 8.2.5 allow remote malicious users to execute arbitrary SQL commands via the id parameter to (1) addressbook/register/delete_user.php, (2) addressbook/register/edit_user.php, or (3) addressbook/register/edit_user_save.php...
Chatelao Php Address Book 8.2.5
11 EDB exploits
3.5
CVSSv3
CVE-2017-0895
Nextcloud Server prior to 10.0.4 and 11.0.2 are vulnerable to disclosure of calendar and addressbook names to other logged-in users. Note that no actual content of the calendar and addressbook has been disclosed.
Nextcloud Nextcloud Server
NA
CVE-2009-4415
Multiple directory traversal vulnerabilities in phpGroupWare 0.9.16.12, and possibly other versions prior to 0.9.16.014, allow remote malicious users to (1) read arbitrary files via the csvfile parameter to addressbook/csv_import.php, or (2) include and execute arbitrary local fi...
Phpgroupware Phpgroupware 0.9.16.12
5.4
CVSSv3
CVE-2017-1000164
Tine 2.0 version 2017.02.4 is vulnerable to XSS in the Addressbook resulting code execution and privilege escalation
Tine20 Tine 2.0 2017.02.4
NA
CVE-2012-2306
SQL injection vulnerability in the Addressbook module for Drupal 6.x-4.2 and previous versions allows remote malicious users to execute arbitrary SQL commands via unspecified vectors.
Drupal Drupal -
NA
CVE-2010-1471
Directory traversal vulnerability in the AddressBook (com_addressbook) component 1.5.0 for Joomla! allows remote malicious users to read arbitrary files via a .. (dot dot) in the controller parameter to index.php.
B-elektro Com Addressbook 1.5.0
1 EDB exploit
NA
CVE-2013-5646
Cross-site scripting (XSS) vulnerability in Roundcube webmail 1.0-git allows remote authenticated users to inject arbitrary web script or HTML via the Name field of an addressbook group.
Roundcube Webmail 1.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4040
privilege escalation
CVE-2024-4112
CVE-2024-32872
man-in-the-middle
CVE-2024-32788
bypass
CVE-2024-3400
CVE-2024-28976
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
NEXT »