Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
am!r vulnerabilities and exploits
(subscribe to this query)
435
VMScore
CVE-2012-5903
Cross-site scripting (XSS) vulnerability in Simple Machines Forum (SMF) 2.0.2 allows remote malicious users to inject arbitrary web script or HTML via the scheduled parameter to index.php.
Simple Machines Smf 2.0.2
1 EDB exploit
435
VMScore
CVE-2009-1620
Multiple cross-site scripting (XSS) vulnerabilities in input.php in MataChat allow remote malicious users to inject arbitrary web script or HTML via the (1) nickname and (2) color parameters.
Mata Matachat
1 EDB exploit
435
VMScore
CVE-2011-4926
Cross-site scripting (XSS) vulnerability in adminimize/adminimize_page.php in the Adminimize plugin prior to 1.7.22 for WordPress allows remote malicious users to inject arbitrary web script or HTML via the page parameter.
Bueltge Adminimize
Bueltge Adminimize 0.6.9
Bueltge Adminimize 0.7
Bueltge Adminimize 0.7.1
Bueltge Adminimize 0.7.2
Bueltge Adminimize 0.7.3
Bueltge Adminimize 0.7.5
Bueltge Adminimize 0.7.6
Bueltge Adminimize 0.7.7
Bueltge Adminimize 0.7.8
Bueltge Adminimize 0.7.9
Bueltge Adminimize 0.8
Bueltge Adminimize 0.8.1
Bueltge Adminimize 1.0
Bueltge Adminimize 1.1
Bueltge Adminimize 1.2
Bueltge Adminimize 1.3
Bueltge Adminimize 1.4
Bueltge Adminimize 1.4.1
Bueltge Adminimize 1.4.2
Bueltge Adminimize 1.4.3-6
Bueltge Adminimize 1.4.7
1 EDB exploit
435
VMScore
CVE-2011-5107
Cross-site scripting (XSS) vulnerability in post_alert.php in Alert Before Your Post plugin, possibly 0.1.1 and previous versions, for WordPress allows remote malicious users to inject arbitrary web script or HTML via the name parameter.
Wordpress Alert Before You Post
1 EDB exploit
435
VMScore
CVE-2012-4998
Cross-site scripting (XSS) vulnerability in index.php in starCMS allows remote malicious users to inject arbitrary web script or HTML via the q parameter.
Starcms Starcms -
1 EDB exploit
435
VMScore
CVE-2011-5106
Cross-site scripting (XSS) vulnerability in edit-post.php in the Flexible Custom Post Type plugin prior to 0.1.7 for WordPress allows remote malicious users to inject arbitrary web script or HTML via the id parameter.
Fractalia Flexible Custom Post Type 0.1.3
Fractalia Flexible Custom Post Type 0.1
Fractalia Flexible Custom Post Type 0.1.5
Fractalia Flexible Custom Post Type 0.1.4
1 EDB exploit
435
VMScore
CVE-2008-6164
Cross-site scripting (XSS) vulnerability in index.php in DreamCost HostAdmin 3.1.1 allows remote malicious users to inject arbitrary web script or HTML via the page parameter.
Dreamcost Hostadmin 3.1.1
1 EDB exploit
435
VMScore
CVE-2011-5180
Cross-site scripting (XSS) vulnerability in wp-1pluginjquery.php in the ZooEffect plugin 1.01 for WordPress allows remote malicious users to inject arbitrary web script or HTML via the page parameter. NOTE: some of these details are obtained from third party information. NOTE: th...
Zooeffect Zooeffect
1 EDB exploit
435
VMScore
CVE-2008-3941
Cross-site scripting (XSS) vulnerability in BizDirectory 2.04 and previous versions allows remote malicious users to inject arbitrary web script or HTML via the page parameter in a search action to the default URI.
Bizdirectory Bizdirectory 1.9
Bizdirectory Bizdirectory 2.0
Bizdirectory Bizdirectory
1 EDB exploit
435
VMScore
CVE-2012-6040
Cross-site scripting (XSS) vulnerability in users.php in File King Advanced File Management 1.4 allows remote malicious users to inject arbitrary web script or HTML via the page parameter.
Convergine File King Advanced File Management 1.4
1 EDB exploit
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2006-4304
CVE-2024-4240
arbitrary
CVE-2024-31601
XSS
CVE-2023-20198
CVE-2024-4256
CVE-2024-3342
encryption
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »