Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
arbitrary code vulnerabilities and exploits
(subscribe to this query)
7.2
CVSSv2
CVE-2019-1414
An elevation of privilege vulnerability exists in Visual Studio Code when it exposes a debug listener to users of a local computer, aka 'Visual Studio Code Elevation of Privilege Vulnerability'.
Microsoft Visual Studio Code
4.3
CVSSv2
CVE-2012-2495
The HostScan downloader implementation in Cisco AnyConnect Secure Mobility Client 3.x prior to 3.0 MR8 and Cisco Secure Desktop prior to 3.6.6020 does not compare the timestamp of offered software to the timestamp of installed software, which allows remote malicious users to forc...
Cisco Anyconnect Secure Mobility Client 3.0
Cisco Secure Desktop 3.1.1.33
Cisco Secure Desktop 3.4
Cisco Secure Desktop 3.3
Cisco Secure Desktop 3.5.2001
Cisco Secure Desktop 3.2.1
Cisco Secure Desktop 3.2
Cisco Secure Desktop 3.1
Cisco Secure Desktop 3.5.841
Cisco Secure Desktop 3.4.2
Cisco Secure Desktop 3.4.1
Cisco Secure Desktop 3.4.2048
Cisco Secure Desktop 3.1.1.45
Cisco Secure Desktop 3.1.1.27
Cisco Secure Desktop 3.1.1
Cisco Secure Desktop 3.5
Cisco Secure Desktop 3.5.1077
Cisco Secure Desktop
NA
CVE-2023-46021
SQL Injection vulnerability in cancel.php in Code-Projects Blood Bank 1.0 allows malicious users to run arbitrary commands via the 'reqid' parameter.
Code-projects Blood Bank 1.0
1 Github repository
NA
CVE-2023-46019
Cross Site Scripting (XSS) vulnerability in abs.php in Code-Projects Blood Bank 1.0 allows malicious users to run arbitrary code via the 'error' parameter.
Code-projects Blood Bank 1.0
1 Github repository
NA
CVE-2023-46580
Cross-Site Scripting (XSS) vulnerability in Inventory Management V1.0 allows malicious users to execute arbitrary code via the pname parameter of the editProduct.php component.
Code-projects Inventory Management 1.0
1 Github repository
5
CVSSv2
CVE-2009-1624
Directory traversal vulnerability in index.php in Dew-NewPHPLinks 2.0 allows remote malicious users to read arbitrary files via a .. (dot dot) in the show parameter.
Dew-code Dew-newphplinks 2.0
1 EDB exploit
NA
CVE-2023-46015
Cross Site Scripting (XSS) vulnerability in index.php in Code-Projects Blood Bank 1.0 allows malicious users to run arbitrary code via 'msg' parameter in application URL.
Code-projects Blood Bank 1.0
2 Github repositories
NA
CVE-2023-46582
SQL injection vulnerability in Inventory Management v.1.0 allows a local malicious user to execute arbitrary SQL commands via the id paramter in the deleteProduct.php component.
Code-projects Inventory Management 1.0
1 Github repository
4.3
CVSSv2
CVE-2009-1623
Cross-site scripting (XSS) vulnerability in index.php in Dew-NewPHPLinks 2.0 allows remote malicious users to inject arbitrary web script or HTML via the PID parameter.
Dew-code Dew-newphplinks 2.0
1 EDB exploit
NA
CVE-2023-46016
Cross Site Scripting (XSS) in abs.php in Code-Projects Blood Bank 1.0 allows malicious users to run arbitrary code via the 'search' parameter in the application URL.
Code-projects Blood Bank 1.0
1 Github repository
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-30924
CVE-2024-3400
overflow
CVE-2024-23528
CVE-2024-21338
CVE-2024-3818
CVE-2024-23535
NULL pointer dereference
elevation of privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »