Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
aung khant vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2012-1110
Multiple cross-site scripting (XSS) vulnerabilities in Etano 1.22 and previous versions allow remote malicious users to inject arbitrary web script or HTML via the (1) user, (2) email, (3) email2, (4) f17_zip, or (5) agree parameter to join.php; (6) PATH_INFO, (7) st, (8) f17_cit...
Datemill Etano
3 EDB exploits
NA
CVE-2012-0865
Multiple open redirect vulnerabilities in CubeCart 3.0.20 and previous versions allow remote malicious users to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the (1) r parameter to switch.php or (2) goto parameter to admin/login.php.
Cubecart Cubecart
Cubecart Cubecart 3.0.13
Cubecart Cubecart 3.0.12
Cubecart Cubecart 3.0.15
Cubecart Cubecart 3.0.14
Cubecart Cubecart 3.0.7
Cubecart Cubecart 3.0.6
Cubecart Cubecart 3.0.19
Cubecart Cubecart 3.0.18
Cubecart Cubecart 3.0.11
Cubecart Cubecart 3.0.10
Cubecart Cubecart 3.0.2
Cubecart Cubecart 3.0.1
Cubecart Cubecart 3.0.5
Cubecart Cubecart 3.0.4
Cubecart Cubecart 3.0.3
Cubecart Cubecart 3.0.17
Cubecart Cubecart 3.0.16
Cubecart Cubecart 3.0.9
Cubecart Cubecart 3.0.8
Cubecart Cubecart 3.0.0
3 EDB exploits
NA
CVE-2011-4670
Multiple cross-site scripting (XSS) vulnerabilities in vTiger CRM 5.2.1 and previous versions allow remote malicious users to inject arbitrary web script or HTML via the (1) viewname parameter in a CalendarAjax action, (2) activity_mode parameter in a DetailView action, (3) conta...
Vtiger Vtiger Crm
2 EDB exploits
NA
CVE-2010-5096
Multiple SQL injection vulnerabilities in MyBB (aka MyBulletinBoard) prior to 1.6.1 allow remote malicious users to execute arbitrary SQL commands via the keywords parameter in a (1) do_search action to search.php or (2) do_stuff action to private.php. NOTE: the vendor disputes t...
Mybb Mybb 1.2.10
Mybb Mybb 1.4.11
Mybb Mybb 1.2.8
Mybb Mybb 1.4.3
Mybb Mybb 1.4.12
Mybb Mybb 1.0
Mybb Mybb 1.04
Mybb Mybb 1.1.1
Mybb Mybb 1.4.5
Mybb Mybb 1.1.3
Mybb Mybb 1.2.2
Mybb Mybb 1.4.14
Mybb Mybb 1.2.9
Mybb Mybb 1.4.8
Mybb Mybb 1.4.15
Mybb Mybb 1.2.1
Mybb Mybb 1.01
Mybb Mybb 1.1.6
Mybb Mybb 1.2.6
Mybb Mybb 1.4.0
Mybb Mybb 1.2.0
Mybb Mybb 1.4.1
2 EDB exploits
NA
CVE-2010-4647
Multiple cross-site scripting (XSS) vulnerabilities in the Help Contents web application (aka the Help Server) in Eclipse IDE prior to 3.6.2 allow remote malicious users to inject arbitrary web script or HTML via the query string to (1) help/index.jsp or (2) help/advanced/content...
Eclipse Eclipse Ide 3.6
Eclipse Eclipse Ide 3.0
Eclipse Eclipse Ide 3.2
Eclipse Eclipse Ide 2.1.2
Eclipse Eclipse Ide 3.1
Eclipse Eclipse Ide 3.3
Eclipse Eclipse Ide 3.1.2
Eclipse Eclipse Ide 3.4.1
Eclipse Eclipse Ide 2.0
Eclipse Eclipse Ide 2.0.1
Eclipse Eclipse Ide 3.4.2
Eclipse Eclipse Ide 3.3.1
Eclipse Eclipse Ide 3.3.1.1
Eclipse Eclipse Ide 3.5.1
Eclipse Eclipse Ide 2.1.3
Eclipse Eclipse Ide 3.5.2
Eclipse Eclipse Ide 3.0.1
Eclipse Eclipse Ide 2.1
Eclipse Eclipse Ide 2.0.2
Eclipse Eclipse Ide 1.0
Eclipse Eclipse Ide 3.0.2
Eclipse Eclipse Ide 3.2.2
2 EDB exploits
NA
CVE-2012-0873
Multiple cross-site scripting (XSS) vulnerabilities in Boonex Dolphin prior to 7.0.8 allow remote malicious users to inject arbitrary web script or HTML via the (1) explain parameter to explanation.php or the (2) photos_only, (3) online_only, or (4) mode parameters to viewFriends...
Boonex Dolphin 6.1.2
Boonex Dolphin 5.2
Boonex Dolphin 7.0.3
Boonex Dolphin 7.0.4
Boonex Dolphin 7.0.5
Boonex Dolphin 7.0.6
Boonex Dolphin 7.0.0
Boonex Dolphin 7.0.2
Boonex Dolphin 5.1
Boonex Dolphin 7.0.1
Boonex Dolphin
2 EDB exploits
NA
CVE-2012-4745
Cross-site scripting (XSS) vulnerability in admin/login.asp in Acuity CMS 2.6.2 allows remote malicious users to inject arbitrary web script or HTML via the UserName parameter.
The Collective Acuity Cms 2.6.2
1 EDB exploit
NA
CVE-2010-1586
Open redirect vulnerability in red2301.html in HP System Management Homepage (SMH) 2.x.x.x allows remote malicious users to redirect users to arbitrary web sites and conduct phishing attacks via the RedirectUrl parameter.
Hp System Management Homepage 2.1.0-103
Hp System Management Homepage 2.1.0-103\\(a\\)
Hp System Management Homepage 2.1.12-200
Hp System Management Homepage 2.1.2-127
Hp System Management Homepage 2.1.3
Hp System Management Homepage 2.1.7
Hp System Management Homepage 2.1.7-168
Hp System Management Homepage 2.1.2
Hp System Management Homepage 2.0.0
Hp System Management Homepage 2.0.1
Hp System Management Homepage 2.1.1
Hp System Management Homepage 2.1.10-186
Hp System Management Homepage 2.1.5
Hp System Management Homepage 2.1.5-146
Hp System Management Homepage 2.1.9
Hp System Management Homepage 2.1.9-178
Hp System Management Homepage 2.1.0-109
Hp System Management Homepage 2.1.0-118
Hp System Management Homepage 2.1.3.132
Hp System Management Homepage 2.1.4
Hp System Management Homepage 2.1.8
Hp System Management Homepage 2.1.8-177
1 EDB exploit
NA
CVE-2012-1112
Directory traversal vulnerability in Open-Realty CMS 2.5.8 and previous versions allows remote malicious users to include and execute arbitrary local files via a .. (dot dot) in the select_users_template parameter to index.php.
Open-realty Open-realty 2.3.4
Open-realty Open-realty 2.3.1
Open-realty Open-realty
1 EDB exploit
NA
CVE-2011-0535
Cross-site request forgery (CSRF) vulnerability in the Users module in Zikula prior to 1.2.5 allows remote malicious users to hijack the authentication of administrators for requests that change account privileges via an edit access_permissions action to index.php.
Zikula Zikula Application Framework 1.2.1
Zikula Zikula Application Framework 1.1.2
Zikula Zikula Application Framework
Zikula Zikula Application Framework 1.2.3
Zikula Zikula Application Framework 1.2.2
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
validation
CVE-2012-1823
malicious code
CVE-2024-5770
CVE-2023-45866
CVE-2024-35687
local users
CVE-2024-31246
CVE-2024-35730
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »