Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ahmed vulnerabilities and exploits
(subscribe to this query)
8.8
CVSSv3
CVE-2012-0699
Multiple cross-site request forgery (CSRF) vulnerabilities in Family Connections CMS (aka FCMS) 2.9 and previous versions allow remote malicious users to hijack the authentication of arbitrary users for requests that (1) add news via an add action to familynews.php or (2) add a p...
Haudenschilt Family Connections Cms
2 EDB exploits
5.4
CVSSv3
CVE-2017-9609
Cross-site scripting (XSS) vulnerability in Blackcat CMS 1.2 allows remote authenticated users to inject arbitrary web script or HTML via the map_language parameter to backend/pages/lang_settings.php.
Blackcat-cms Blackcat Cms 1.2
1 Github repository
4.5
CVSSv3
CVE-2017-8382
admidio 3.2.8 has CSRF in adm_program/modules/members/members_function.php with an impact of deleting arbitrary user accounts.
Admidio Admidio 3.2.8
1 EDB exploit
1 Github repository
7.5
CVSSv3
CVE-2016-3237
Kerberos in Microsoft Windows Vista SP2; Windows Server 2008 SP2 and R2 SP1; Windows 7 SP1; Windows 8.1; Windows Server 2012 Gold and R2; Windows RT 8.1; and Windows 10 Gold, 1511, and 1607 allows man-in-the-middle malicious users to bypass authentication via vectors related to a...
Microsoft Windows Server 2012 -
Microsoft Windows Server 2012 R2
Microsoft Windows 8.1 -
Microsoft Windows Server 2008 R2
Microsoft Windows 10 1511
Microsoft Windows Rt 8.1 -
Microsoft Windows Server 2008 -
Microsoft Windows 10 -
Microsoft Windows Rt -
Microsoft Windows 7 -
Microsoft Windows Vista -
1 EDB exploit
8.1
CVSSv3
CVE-2016-3223
Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, and Windows 10 Gold and 1511 mishandle LDAP authentication, which allows man-in-the-middle malicious users to gain privileges by modifying...
Microsoft Windows Server 2012 -
Microsoft Windows 8.1
Microsoft Windows 10 1511
Microsoft Windows 10 -
Microsoft Windows Server 2008
Microsoft Windows Vista
Microsoft Windows Rt 8.1
Microsoft Windows Server 2012 R2
Microsoft Windows 7
Microsoft Windows Server 2008 R2
1 EDB exploit
1 Article
6.2
CVSSv3
CVE-2016-0049
Kerberos in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, and Windows 10 Gold and 1511 does not properly validate password changes, which allows remote malicious users to bypass authentication by depl...
Microsoft Windows Server 2012 -
Microsoft Windows 8.1
Microsoft Windows 10 -
Microsoft Windows Server 2012 R2
Microsoft Windows 10 1511
Microsoft Windows Server 2008 R2
Microsoft Windows Vista
Microsoft Windows 7
Microsoft Windows Server 2008
1 EDB exploit
1 Github repository
NA
CVE-2015-1875
SQL injection vulnerability in a2billing/customer/iridium_threed.php in Elastix 2.5.0 and previous versions allows remote malicious users to execute arbitrary SQL commands via the transactionID parameter.
Palosanto Elastix
1 EDB exploit
NA
CVE-2015-1479
SQL injection vulnerability in reports/CreateReportTable.jsp in ZOHO ManageEngine ServiceDesk Plus (SDP) prior to 9.0 build 9031 allows remote authenticated users to execute arbitrary SQL commands via the site parameter.
Zohocorp Servicedesk Plus
1 EDB exploit
NA
CVE-2014-10033
SQL injection vulnerability in the update_zone function in catalog/admin/geo_zones.php in osCommerce Online Merchant 2.3.3.4 and previous versions allows remote administrators to execute arbitrary SQL commands via the zID parameter in a list action.
Oscommerce Online Merchant
1 EDB exploit
NA
CVE-2014-6665
The Ahmed Bukhatir Nasheeds TV (aka com.wAhmedBukhatirApp) application 1.0 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle malicious users to spoof servers and obtain sensitive information via a crafted certificate.
Quranedu Ahmed Bukhatir Nasheeds Tv 1.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-29895
blind SQL injection
CVE-2024-5064
CVE-2023-52677
CVE-2023-52682
CVE-2024-30051
CVE-2024-35849
remote attackers
remote
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
2
3
4
5
6
7
8
9
NEXT »