Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
aung khant vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2012-1110
Multiple cross-site scripting (XSS) vulnerabilities in Etano 1.22 and previous versions allow remote malicious users to inject arbitrary web script or HTML via the (1) user, (2) email, (3) email2, (4) f17_zip, or (5) agree parameter to join.php; (6) PATH_INFO, (7) st, (8) f17_cit...
Datemill Etano
3 EDB exploits
5.8
CVSSv2
CVE-2012-0865
Multiple open redirect vulnerabilities in CubeCart 3.0.20 and previous versions allow remote malicious users to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the (1) r parameter to switch.php or (2) goto parameter to admin/login.php.
Cubecart Cubecart
Cubecart Cubecart 3.0.13
Cubecart Cubecart 3.0.12
Cubecart Cubecart 3.0.15
Cubecart Cubecart 3.0.14
Cubecart Cubecart 3.0.7
Cubecart Cubecart 3.0.6
Cubecart Cubecart 3.0.19
Cubecart Cubecart 3.0.18
Cubecart Cubecart 3.0.11
Cubecart Cubecart 3.0.10
Cubecart Cubecart 3.0.2
Cubecart Cubecart 3.0.1
Cubecart Cubecart 3.0.5
Cubecart Cubecart 3.0.4
Cubecart Cubecart 3.0.3
Cubecart Cubecart 3.0.17
Cubecart Cubecart 3.0.16
Cubecart Cubecart 3.0.9
Cubecart Cubecart 3.0.8
Cubecart Cubecart 3.0.0
3 EDB exploits
7.5
CVSSv2
CVE-2010-5096
Multiple SQL injection vulnerabilities in MyBB (aka MyBulletinBoard) prior to 1.6.1 allow remote malicious users to execute arbitrary SQL commands via the keywords parameter in a (1) do_search action to search.php or (2) do_stuff action to private.php. NOTE: the vendor disputes t...
Mybb Mybb 1.2.10
Mybb Mybb 1.4.11
Mybb Mybb 1.2.8
Mybb Mybb 1.4.3
Mybb Mybb 1.4.12
Mybb Mybb 1.0
Mybb Mybb 1.04
Mybb Mybb 1.1.1
Mybb Mybb 1.4.5
Mybb Mybb 1.1.3
Mybb Mybb 1.2.2
Mybb Mybb 1.4.14
Mybb Mybb 1.2.9
Mybb Mybb 1.4.8
Mybb Mybb 1.4.15
Mybb Mybb 1.2.1
Mybb Mybb 1.01
Mybb Mybb 1.1.6
Mybb Mybb 1.2.6
Mybb Mybb 1.4.0
Mybb Mybb 1.2.0
Mybb Mybb 1.4.1
2 EDB exploits
4.3
CVSSv2
CVE-2012-0873
Multiple cross-site scripting (XSS) vulnerabilities in Boonex Dolphin prior to 7.0.8 allow remote malicious users to inject arbitrary web script or HTML via the (1) explain parameter to explanation.php or the (2) photos_only, (3) online_only, or (4) mode parameters to viewFriends...
Boonex Dolphin 6.1.2
Boonex Dolphin 5.2
Boonex Dolphin 7.0.3
Boonex Dolphin 7.0.4
Boonex Dolphin 7.0.5
Boonex Dolphin 7.0.6
Boonex Dolphin 7.0.0
Boonex Dolphin 7.0.2
Boonex Dolphin 5.1
Boonex Dolphin 7.0.1
Boonex Dolphin
2 EDB exploits
4.3
CVSSv2
CVE-2011-4670
Multiple cross-site scripting (XSS) vulnerabilities in vTiger CRM 5.2.1 and previous versions allow remote malicious users to inject arbitrary web script or HTML via the (1) viewname parameter in a CalendarAjax action, (2) activity_mode parameter in a DetailView action, (3) conta...
Vtiger Vtiger Crm
2 EDB exploits
4.3
CVSSv2
CVE-2010-4647
Multiple cross-site scripting (XSS) vulnerabilities in the Help Contents web application (aka the Help Server) in Eclipse IDE prior to 3.6.2 allow remote malicious users to inject arbitrary web script or HTML via the query string to (1) help/index.jsp or (2) help/advanced/content...
Eclipse Eclipse Ide 3.6
Eclipse Eclipse Ide 3.0
Eclipse Eclipse Ide 3.2
Eclipse Eclipse Ide 2.1.2
Eclipse Eclipse Ide 3.1
Eclipse Eclipse Ide 3.3
Eclipse Eclipse Ide 3.1.2
Eclipse Eclipse Ide 3.4.1
Eclipse Eclipse Ide 2.0
Eclipse Eclipse Ide 2.0.1
Eclipse Eclipse Ide 3.4.2
Eclipse Eclipse Ide 3.3.1
Eclipse Eclipse Ide 3.3.1.1
Eclipse Eclipse Ide 3.5.1
Eclipse Eclipse Ide 2.1.3
Eclipse Eclipse Ide 3.5.2
Eclipse Eclipse Ide 3.0.1
Eclipse Eclipse Ide 2.1
Eclipse Eclipse Ide 2.0.2
Eclipse Eclipse Ide 1.0
Eclipse Eclipse Ide 3.0.2
Eclipse Eclipse Ide 3.2.2
2 EDB exploits
7.5
CVSSv2
CVE-2011-4559
SQL injection vulnerability in the Calendar module in vTiger CRM 5.2.1 and previous versions allows remote malicious users to execute arbitrary SQL commands via the onlyforuser parameter in an index action to index.php.
Vtiger Vtiger Crm 5.0.3
Vtiger Vtiger Crm 5.0.2
Vtiger Vtiger Crm 5.1.0
Vtiger Vtiger Crm 4.2
Vtiger Vtiger Crm 4.0.1
Vtiger Vtiger Crm 2.0
Vtiger Vtiger Crm 1.0
Vtiger Vtiger Crm
Vtiger Vtiger Crm 5.2.0
Vtiger Vtiger Crm 4.2.4
Vtiger Vtiger Crm 2.1
Vtiger Vtiger Crm 2.0.1
Vtiger Vtiger Crm 3.0
Vtiger Vtiger Crm 5.0.4
Vtiger Vtiger Crm 4.0
Vtiger Vtiger Crm 3.2
1 EDB exploit
4.3
CVSSv2
CVE-2011-0005
Cross-site scripting (XSS) vulnerability in the com_search module for Joomla! 1.0.x up to and including 1.0.15 allows remote malicious users to inject arbitrary web script or HTML via the ordering parameter to index.php.
Joomla Com Search
1 EDB exploit
4.3
CVSSv2
CVE-2010-1586
Open redirect vulnerability in red2301.html in HP System Management Homepage (SMH) 2.x.x.x allows remote malicious users to redirect users to arbitrary web sites and conduct phishing attacks via the RedirectUrl parameter.
Hp System Management Homepage 2.1.0-103
Hp System Management Homepage 2.1.0-103\\(a\\)
Hp System Management Homepage 2.1.12-200
Hp System Management Homepage 2.1.2-127
Hp System Management Homepage 2.1.3
Hp System Management Homepage 2.1.7
Hp System Management Homepage 2.1.7-168
Hp System Management Homepage 2.1.2
Hp System Management Homepage 2.0.0
Hp System Management Homepage 2.0.1
Hp System Management Homepage 2.1.1
Hp System Management Homepage 2.1.10-186
Hp System Management Homepage 2.1.5
Hp System Management Homepage 2.1.5-146
Hp System Management Homepage 2.1.9
Hp System Management Homepage 2.1.9-178
Hp System Management Homepage 2.1.0-109
Hp System Management Homepage 2.1.0-118
Hp System Management Homepage 2.1.3.132
Hp System Management Homepage 2.1.4
Hp System Management Homepage 2.1.8
Hp System Management Homepage 2.1.8-177
1 EDB exploit
6.8
CVSSv2
CVE-2011-0535
Cross-site request forgery (CSRF) vulnerability in the Users module in Zikula prior to 1.2.5 allows remote malicious users to hijack the authentication of administrators for requests that change account privileges via an edit access_permissions action to index.php.
Zikula Zikula Application Framework 1.2.1
Zikula Zikula Application Framework 1.1.2
Zikula Zikula Application Framework
Zikula Zikula Application Framework 1.2.3
Zikula Zikula Application Framework 1.2.2
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4761
command injection
CVE-2024-3676
IDOR
CVE-2024-30039
CVE-2024-32113
CVE-2024-30049
CVE-2024-4776
SQL injection
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »