Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
am!r vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2012-5903
Cross-site scripting (XSS) vulnerability in Simple Machines Forum (SMF) 2.0.2 allows remote malicious users to inject arbitrary web script or HTML via the scheduled parameter to index.php.
Simple Machines Smf 2.0.2
1 EDB exploit
NA
CVE-2009-1620
Multiple cross-site scripting (XSS) vulnerabilities in input.php in MataChat allow remote malicious users to inject arbitrary web script or HTML via the (1) nickname and (2) color parameters.
Mata Matachat
1 EDB exploit
NA
CVE-2011-4926
Cross-site scripting (XSS) vulnerability in adminimize/adminimize_page.php in the Adminimize plugin prior to 1.7.22 for WordPress allows remote malicious users to inject arbitrary web script or HTML via the page parameter.
Bueltge Adminimize
Bueltge Adminimize 0.6.9
Bueltge Adminimize 0.7
Bueltge Adminimize 0.7.1
Bueltge Adminimize 0.7.2
Bueltge Adminimize 0.7.3
Bueltge Adminimize 0.7.5
Bueltge Adminimize 0.7.6
Bueltge Adminimize 0.7.7
Bueltge Adminimize 0.7.8
Bueltge Adminimize 0.7.9
Bueltge Adminimize 0.8
Bueltge Adminimize 0.8.1
Bueltge Adminimize 1.0
Bueltge Adminimize 1.1
Bueltge Adminimize 1.2
Bueltge Adminimize 1.3
Bueltge Adminimize 1.4
Bueltge Adminimize 1.4.1
Bueltge Adminimize 1.4.2
Bueltge Adminimize 1.4.3-6
Bueltge Adminimize 1.4.7
1 EDB exploit
NA
CVE-2011-5107
Cross-site scripting (XSS) vulnerability in post_alert.php in Alert Before Your Post plugin, possibly 0.1.1 and previous versions, for WordPress allows remote malicious users to inject arbitrary web script or HTML via the name parameter.
Wordpress Alert Before You Post
1 EDB exploit
NA
CVE-2012-4998
Cross-site scripting (XSS) vulnerability in index.php in starCMS allows remote malicious users to inject arbitrary web script or HTML via the q parameter.
Starcms Starcms -
1 EDB exploit
NA
CVE-2011-5106
Cross-site scripting (XSS) vulnerability in edit-post.php in the Flexible Custom Post Type plugin prior to 0.1.7 for WordPress allows remote malicious users to inject arbitrary web script or HTML via the id parameter.
Fractalia Flexible Custom Post Type 0.1.3
Fractalia Flexible Custom Post Type 0.1
Fractalia Flexible Custom Post Type 0.1.5
Fractalia Flexible Custom Post Type 0.1.4
1 EDB exploit
NA
CVE-2008-6164
Cross-site scripting (XSS) vulnerability in index.php in DreamCost HostAdmin 3.1.1 allows remote malicious users to inject arbitrary web script or HTML via the page parameter.
Dreamcost Hostadmin 3.1.1
1 EDB exploit
NA
CVE-2011-5180
Cross-site scripting (XSS) vulnerability in wp-1pluginjquery.php in the ZooEffect plugin 1.01 for WordPress allows remote malicious users to inject arbitrary web script or HTML via the page parameter. NOTE: some of these details are obtained from third party information. NOTE: th...
Zooeffect Zooeffect
1 EDB exploit
NA
CVE-2008-3941
Cross-site scripting (XSS) vulnerability in BizDirectory 2.04 and previous versions allows remote malicious users to inject arbitrary web script or HTML via the page parameter in a search action to the default URI.
Bizdirectory Bizdirectory 1.9
Bizdirectory Bizdirectory 2.0
Bizdirectory Bizdirectory
1 EDB exploit
NA
CVE-2012-6040
Cross-site scripting (XSS) vulnerability in users.php in File King Advanced File Management 1.4 allows remote malicious users to inject arbitrary web script or HTML via the page parameter.
Convergine File King Advanced File Management 1.4
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-21111
CVE-2024-32884
IDOR
CVE-2023-1000
CVE-2024-33260
CVE-2024-3682
reflected XSS
race condition
CVE-2024-3400
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »