Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
akastep vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2012-4251
Multiple cross-site scripting (XSS) vulnerabilities in MySQLDumper 1.24.4 allow remote malicious users to inject arbitrary web script or HTML via the (1) page parameter to index.php, (2) phase parameter to install.php, (3) tablename or (4) dbid parameter to sql.php, or (5) filena...
Mysqldumper Mysqldumper 1.24.4
4 EDB exploits
4.3
CVSSv2
CVE-2012-4253
Multiple directory traversal vulnerabilities in MySQLDumper 1.24.4 allow remote malicious users to read arbitrary files via a .. (dot dot) in the (1) language parameter to learn/cubemail/install.php or (2) f parameter learn/cubemail/filemanagement.php, or execute arbitrary local ...
Mysqldumper Mysqldumper 1.24.4
2 EDB exploits
5.1
CVSSv2
CVE-2012-4252
Multiple cross-site request forgery (CSRF) vulnerabilities in MySQLDumper 1.24.4 allow remote malicious users to hijack the authentication of administrators for requests that (1) remove file access restriction via a deletehtaccess action, (2) drop a database via a kill value in a...
Mysqldumper Mysqldumper 1.24.4
1 EDB exploit
4.3
CVSSv2
CVE-2012-4254
MySQLDumper 1.24.4 allows remote malicious users to obtain sensitive information (Notices) via a direct request to (1) learn/cubemail/restore.php or (2) learn/cubemail/dump.php.
Mysqldumper Mysqldumper 1.24.4
1 EDB exploit
4.3
CVSSv2
CVE-2012-2918
Cross-site scripting (XSS) vulnerability in Upload/engine.php in Chevereto 1.91 allows remote malicious users to inject arbitrary web script or HTML via the v parameter.
Chevereto Chevereto 1.91
1 EDB exploit
5
CVSSv2
CVE-2012-2919
Directory traversal vulnerability in Upload/engine.php in Chevereto 1.9.1 allows remote malicious users to determine the existence of arbitrary files via a .. (dot dot) in the v parameter.
Chevereto Chevereto 1.91
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4671
unauthorized
CVE-2024-4776
CVE-2024-3407
CVE-2024-26026
CVE-2024-32888
wireless
CVE-2024-4656
template injection
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started