Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
aung khant vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2012-1110
Multiple cross-site scripting (XSS) vulnerabilities in Etano 1.22 and previous versions allow remote malicious users to inject arbitrary web script or HTML via the (1) user, (2) email, (3) email2, (4) f17_zip, or (5) agree parameter to join.php; (6) PATH_INFO, (7) st, (8) f17_cit...
Datemill Etano
3 EDB exploits
NA
CVE-2012-0865
Multiple open redirect vulnerabilities in CubeCart 3.0.20 and previous versions allow remote malicious users to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the (1) r parameter to switch.php or (2) goto parameter to admin/login.php.
Cubecart Cubecart
Cubecart Cubecart 3.0.13
Cubecart Cubecart 3.0.12
Cubecart Cubecart 3.0.15
Cubecart Cubecart 3.0.14
Cubecart Cubecart 3.0.7
Cubecart Cubecart 3.0.6
Cubecart Cubecart 3.0.19
Cubecart Cubecart 3.0.18
Cubecart Cubecart 3.0.11
Cubecart Cubecart 3.0.10
Cubecart Cubecart 3.0.2
Cubecart Cubecart 3.0.1
Cubecart Cubecart 3.0.5
Cubecart Cubecart 3.0.4
Cubecart Cubecart 3.0.3
Cubecart Cubecart 3.0.17
Cubecart Cubecart 3.0.16
Cubecart Cubecart 3.0.9
Cubecart Cubecart 3.0.8
Cubecart Cubecart 3.0.0
3 EDB exploits
NA
CVE-2011-4670
Multiple cross-site scripting (XSS) vulnerabilities in vTiger CRM 5.2.1 and previous versions allow remote malicious users to inject arbitrary web script or HTML via the (1) viewname parameter in a CalendarAjax action, (2) activity_mode parameter in a DetailView action, (3) conta...
Vtiger Vtiger Crm
2 EDB exploits
NA
CVE-2010-4647
Multiple cross-site scripting (XSS) vulnerabilities in the Help Contents web application (aka the Help Server) in Eclipse IDE prior to 3.6.2 allow remote malicious users to inject arbitrary web script or HTML via the query string to (1) help/index.jsp or (2) help/advanced/content...
Eclipse Eclipse Ide 3.6
Eclipse Eclipse Ide 3.0
Eclipse Eclipse Ide 3.2
Eclipse Eclipse Ide 2.1.2
Eclipse Eclipse Ide 3.1
Eclipse Eclipse Ide 3.3
Eclipse Eclipse Ide 3.1.2
Eclipse Eclipse Ide 3.4.1
Eclipse Eclipse Ide 2.0
Eclipse Eclipse Ide 2.0.1
Eclipse Eclipse Ide 3.4.2
Eclipse Eclipse Ide 3.3.1
Eclipse Eclipse Ide 3.3.1.1
Eclipse Eclipse Ide 3.5.1
Eclipse Eclipse Ide 2.1.3
Eclipse Eclipse Ide 3.5.2
Eclipse Eclipse Ide 3.0.1
Eclipse Eclipse Ide 2.1
Eclipse Eclipse Ide 2.0.2
Eclipse Eclipse Ide 1.0
Eclipse Eclipse Ide 3.0.2
Eclipse Eclipse Ide 3.2.2
2 EDB exploits
NA
CVE-2010-5096
Multiple SQL injection vulnerabilities in MyBB (aka MyBulletinBoard) prior to 1.6.1 allow remote malicious users to execute arbitrary SQL commands via the keywords parameter in a (1) do_search action to search.php or (2) do_stuff action to private.php. NOTE: the vendor disputes t...
Mybb Mybb 1.2.10
Mybb Mybb 1.4.11
Mybb Mybb 1.2.8
Mybb Mybb 1.4.3
Mybb Mybb 1.4.12
Mybb Mybb 1.0
Mybb Mybb 1.04
Mybb Mybb 1.1.1
Mybb Mybb 1.4.5
Mybb Mybb 1.1.3
Mybb Mybb 1.2.2
Mybb Mybb 1.4.14
Mybb Mybb 1.2.9
Mybb Mybb 1.4.8
Mybb Mybb 1.4.15
Mybb Mybb 1.2.1
Mybb Mybb 1.01
Mybb Mybb 1.1.6
Mybb Mybb 1.2.6
Mybb Mybb 1.4.0
Mybb Mybb 1.2.0
Mybb Mybb 1.4.1
2 EDB exploits
NA
CVE-2012-0873
Multiple cross-site scripting (XSS) vulnerabilities in Boonex Dolphin prior to 7.0.8 allow remote malicious users to inject arbitrary web script or HTML via the (1) explain parameter to explanation.php or the (2) photos_only, (3) online_only, or (4) mode parameters to viewFriends...
Boonex Dolphin 6.1.2
Boonex Dolphin 5.2
Boonex Dolphin 7.0.3
Boonex Dolphin 7.0.4
Boonex Dolphin 7.0.5
Boonex Dolphin 7.0.6
Boonex Dolphin 7.0.0
Boonex Dolphin 7.0.2
Boonex Dolphin 5.1
Boonex Dolphin 7.0.1
Boonex Dolphin
2 EDB exploits
NA
CVE-2010-1586
Open redirect vulnerability in red2301.html in HP System Management Homepage (SMH) 2.x.x.x allows remote malicious users to redirect users to arbitrary web sites and conduct phishing attacks via the RedirectUrl parameter.
Hp System Management Homepage 2.1.0-103
Hp System Management Homepage 2.1.0-103\\(a\\)
Hp System Management Homepage 2.1.12-200
Hp System Management Homepage 2.1.2-127
Hp System Management Homepage 2.1.3
Hp System Management Homepage 2.1.7
Hp System Management Homepage 2.1.7-168
Hp System Management Homepage 2.1.2
Hp System Management Homepage 2.0.0
Hp System Management Homepage 2.0.1
Hp System Management Homepage 2.1.1
Hp System Management Homepage 2.1.10-186
Hp System Management Homepage 2.1.5
Hp System Management Homepage 2.1.5-146
Hp System Management Homepage 2.1.9
Hp System Management Homepage 2.1.9-178
Hp System Management Homepage 2.1.0-109
Hp System Management Homepage 2.1.0-118
Hp System Management Homepage 2.1.3.132
Hp System Management Homepage 2.1.4
Hp System Management Homepage 2.1.8
Hp System Management Homepage 2.1.8-177
1 EDB exploit
NA
CVE-2011-4559
SQL injection vulnerability in the Calendar module in vTiger CRM 5.2.1 and previous versions allows remote malicious users to execute arbitrary SQL commands via the onlyforuser parameter in an index action to index.php.
Vtiger Vtiger Crm 5.0.3
Vtiger Vtiger Crm 5.0.2
Vtiger Vtiger Crm 5.1.0
Vtiger Vtiger Crm 4.2
Vtiger Vtiger Crm 4.0.1
Vtiger Vtiger Crm 2.0
Vtiger Vtiger Crm 1.0
Vtiger Vtiger Crm
Vtiger Vtiger Crm 5.2.0
Vtiger Vtiger Crm 4.2.4
Vtiger Vtiger Crm 2.1
Vtiger Vtiger Crm 2.0.1
Vtiger Vtiger Crm 3.0
Vtiger Vtiger Crm 5.0.4
Vtiger Vtiger Crm 4.0
Vtiger Vtiger Crm 3.2
1 EDB exploit
NA
CVE-2012-4745
Cross-site scripting (XSS) vulnerability in admin/login.asp in Acuity CMS 2.6.2 allows remote malicious users to inject arbitrary web script or HTML via the UserName parameter.
The Collective Acuity Cms 2.6.2
1 EDB exploit
NA
CVE-2011-0535
Cross-site request forgery (CSRF) vulnerability in the Users module in Zikula prior to 1.2.5 allows remote malicious users to hijack the authentication of administrators for requests that change account privileges via an edit access_permissions action to index.php.
Zikula Zikula Application Framework 1.2.1
Zikula Zikula Application Framework 1.1.2
Zikula Zikula Application Framework
Zikula Zikula Application Framework 1.2.3
Zikula Zikula Application Framework 1.2.2
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
remote code execution
CVE-2024-34909
CVE-2024-3317
SSTI
CVE-2024-3400
CVE-2024-30051
wireless
CVE-2024-4622
CVE-2024-4908
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »