Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
beford vulnerabilities and exploits
(subscribe to this query)
6.1
CVSSv3
CVE-2012-4029
Cross-site scripting (XSS) vulnerability in main/dropbox/index.php in Chamilo LMS prior to 1.8.8.6 allows remote malicious users to inject arbitrary web script or HTML via the category_name parameter in an addsentcategory action.
Chamilo Chamilo
7.8
CVSSv3
CVE-2012-5340
SumatraPDF 2.1.1/MuPDF 1.0 allows remote malicious users to cause an Integer Overflow in the lex_number() function via a corrupt PDF file.
Sumatrapdfreader Sumatrapdf 2.1.1
Artifex Mupdf 1.0
Artifex Mupdf 1.1
1 EDB exploit
7.5
CVSSv3
CVE-2012-4030
Chamilo prior to 1.8.8.6 does not adequately handle user supplied input by the index.php script, which could allow remote malicious users to delete arbitrary files.
Chamilo Chamilo Lms
NA
CVE-2008-6189
SQL injection vulnerability in GForge 4.5.19 allows remote malicious users to execute arbitrary SQL commands via the offset parameter to (1) new/index.php, (2) news/index.php, and (3) top/topusers.php, which is not properly handled in database-pgsql.php.
Gforge Gforge 4.5.19
1 EDB exploit
NA
CVE-2008-6187
SQL injection vulnerability in frs/shownotes.php in Gforge 4.5.19 and previous versions allows remote malicious users to execute arbitrary SQL commands via the release_id parameter.
Gforge Gforge 3.2
Gforge Gforge 3.1
Gforge Gforge 4.5.11
Gforge Gforge 4.5
Gforge Gforge 4.5.16
Gforge Gforge 4.5.14
Gforge Gforge 3.0
Gforge Gforge
Gforge Gforge 3.3
Gforge Gforge 3.21
1 EDB exploit
NA
CVE-2008-6188
SQL injection vulnerability in people/editprofile.php in Gforge 4.6 rc1 and previous versions allows remote malicious users to execute arbitrary SQL commands via the skill_edit[] parameter.
Gforge Gforge 4.6 B2
Gforge Gforge 4.5.16
Gforge Gforge 4.5.19
Gforge Gforge
Gforge Gforge 3.0
Gforge Gforge 3.21
Gforge Gforge 3.3
Gforge Gforge 3.1
Gforge Gforge 3.2
Gforge Gforge 4.5
Gforge Gforge 4.5.11
Gforge Gforge 4.5.14
Gforge Gforge 4.6
1 EDB exploit
NA
CVE-2008-3493
vncviewer.exe in RealVNC Windows Client 4.1.2.0 allows remote VNC servers to cause a denial of service (application crash) via a crafted frame buffer update packet.
Realvnc Realvnc Windows Client 4.1.2.0
1 EDB exploit
NA
CVE-2006-7048
Multiple PHP remote file inclusion vulnerabilities in Claroline 1.7.5 allow remote malicious users to execute arbitrary PHP code via a URL in the (1) clarolineRepositorySys parameter to (a) atutor.inc.php (b) db-generic.inc.php (c) docebo.inc.php (d) dokeos.1.6.inc.php (e) dokeos...
Claroline Claroline 1.7.5
1 EDB exploit
NA
CVE-2006-4210
nu_mail.inc.php in Andreas Kansok phPay 2.02 and 2.02.1, when register_globals is enabled, allows remote malicious users to use the server as an open mail relay via modified mail_text2, user_row[5], nu_mail_1, and shop_mail parameters. NOTE: some of these details are obtained fro...
Andreas Kansok Phpay 2.02
Andreas Kansok Phpay 2.02.1
1 EDB exploit
NA
CVE-2006-4055
Multiple PHP remote file inclusion vulnerabilities in Olaf Noehring The Search Engine Project (TSEP) 0.942 and previous versions allow remote malicious users to execute arbitrary PHP code via a URL in the tsep_config[absPath] parameter to (1) include/colorswitch.php, (2) contenti...
Tsep Tsep
2 EDB exploits
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-22120
CVE-2024-35921
CVE-2024-35874
brute force
CVE-2024-36080
unprivileged
CVE-2024-35917
IDOR
CVE-2024-4947
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
NEXT »