Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
blog vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2023-39650
Theme Volty CMS Blog up to version v4.0.1 exists to contain a SQL injection vulnerability via the id parameter at /tvcmsblog/single.
Themevolty Theme Volty Cms Blog
9.8
CVSSv3
CVE-2023-3689
A vulnerability classified as critical was found in Bylancer QuickQR 6.3.7. Affected by this vulnerability is an unknown functionality of the file /blog of the component GET Parameter Handler. The manipulation of the argument s leads to sql injection. The attack can be launched r...
Bylancer Quickqr 6.3.7
9.8
CVSSv3
CVE-2023-3690
A vulnerability, which was classified as critical, has been found in Bylancer QuickOrder 6.3.7. Affected by this issue is some unknown functionality of the file /blog of the component GET Parameter Handler. The manipulation of the argument s leads to sql injection. The attack may...
Bylancer Quickorder 6.3.7
9.8
CVSSv3
CVE-2023-3687
A vulnerability was found in Bylancer QuickVCard 2.1. It has been rated as critical. This issue affects some unknown processing of the file /blog of the component GET Parameter Handler. The manipulation of the argument s leads to sql injection. The attack may be initiated remotel...
Bylancer Quickvcard 2.1
9.8
CVSSv3
CVE-2023-3686
A vulnerability was found in Bylancer QuickAI OpenAI 3.8.1. It has been declared as critical. This vulnerability affects unknown code of the file /blog of the component GET Parameter Handler. The manipulation of the argument s leads to sql injection. The attack can be initiated r...
Bylancer Quickai Openai 3.8.1
9.8
CVSSv3
CVE-2023-1650
The AI ChatBot WordPress plugin prior to 4.4.7 unserializes user input from cookies via an AJAX action available to unauthenticated users, which could allow them to perform PHP Object Injection when a suitable gadget is present on the blog
Quantumcloud Ai Chatbot
9.8
CVSSv3
CVE-2023-27034
PrestaShop jmsblog 2.5.5 exists to contain a SQL injection vulnerability.
Joommasters Jms Blog 2.5.5
Joommasters Jms Blog 2.5.6
1 Github repository
9.8
CVSSv3
CVE-2023-20032
On Feb 15, 2023, the following vulnerability in the ClamAV scanning library was disclosed: A vulnerability in the HFS+ partition file parser of ClamAV versions 1.0.0 and previous versions, 0.105.1 and previous versions, and 0.103.7 and previous versions could allow an unauthentic...
Cisco Web Security Appliance
Cisco Secure Endpoint Private Cloud
Cisco Secure Endpoint
Clamav Clamav 1.0.0
Clamav Clamav
Stormshield Stormshield Network Security
2 Github repositories
1 Article
9.8
CVSSv3
CVE-2022-40037
An issue discovered in Rawchen blog-ssm v1.0 allows remote malicious user to escalate privileges and execute arbitrary commands via the component /upFile.
Javaweb Blog Project Javaweb Blog 1.0
9.8
CVSSv3
CVE-2022-3515
A vulnerability was found in the Libksba library due to an integer overflow within the CRL parser. The vulnerability can be exploited remotely for code execution on the target system by passing specially crafted data to the application, for example, a malicious S/MIME attachment.
Gnupg Libksba
Gpg4win Gpg4win
Gnupg Vs-desktop
Gnupg Gnupg
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
NULL pointer dereference
CVE-2023-52689
CVE-2024-23803
client side
CVE-2023-52696
information disclosure
CVE-2024-35843
CVE-2024-27130
CVE-2023-52697
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »