Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
code injection vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2003-0495
Cross-site scripting (XSS) vulnerability in LedNews 0.7 allows remote malicious users to insert arbitrary web script via a news item.
Ledscripts.com Lednews 0.7
1 EDB exploit
5
CVSSv2
CVE-2006-4865
Walter Beschmout PhpQuiz allows remote malicious users to obtain sensitive information via a direct request to cfgphpquiz/install.php and other unspecified vectors.
Phpquiz Phpquiz
1 EDB exploit
5
CVSSv2
CVE-2006-4979
Direct static code injection vulnerability in cfgphpquiz/install.php in Walter Beschmout PhpQuiz 1.2 and previous versions allows remote malicious users to inject arbitrary PHP code in config.inc.php via modified configuration settings.
Walter Beschmout Phpquiz
1 EDB exploit
9.3
CVSSv2
CVE-2007-6082
Direct static code injection vulnerability in acp/savenews.php in Sciurus Hosting Panel, possibly 2.0.3, allows remote malicious users to inject arbitrary PHP code via the filecontents parameter, which can be executed by accessing includes/news.php.
Sciurus Sciurus Hosting Panel 2.0.3
1 EDB exploit
7.5
CVSSv2
CVE-2002-1481
savesettings.php in phpGB 1.20 and previous versions does not require authentication, which allows remote malicious users to cause a denial of service or execute arbitrary PHP code by using savesettings.php to modify config.php.
Phpgb Phpgb 1.10
Phpgb Phpgb 1.20
1 EDB exploit
7.5
CVSSv2
CVE-2021-26599
ImpressCMS prior to 1.4.3 allows include/findusers.php groups SQL Injection.
Impresscms Impresscms
9.3
CVSSv2
CVE-2014-1632
htdocs/setup/index.php in Eventum prior to 2.3.5 allows remote malicious users to inject and execute arbitrary PHP code via the hostname parameter.
Eventum Project Eventum
1 EDB exploit
10
CVSSv2
CVE-2021-44734
Embedded web server input sanitization vulnerability in Lexmark devices through 2021-12-07, which can which can lead to remote code execution on the device.
Lexmark B2236 Firmware
Lexmark Mb2236 Firmware
Lexmark Ms431 Firmware
Lexmark Ms331 Firmware
Lexmark M1342 Firmware
Lexmark B3442 Firmware
Lexmark B3340 Firmware
Lexmark Xm1342 Firmware
Lexmark Mx331 Firmware
Lexmark Mx431 Firmware
Lexmark Mb3442 Firmware
Lexmark Ms321 Firmware
Lexmark Ms421 Firmware
Lexmark Ms521 Firmware
Lexmark Ms621 Firmware
Lexmark M1242 Firmware
Lexmark M1246 Firmware
Lexmark B2338 Firmware
Lexmark B2442 Firmware
Lexmark B2546 Firmware
Lexmark B2650 Firmware
Lexmark Ms622 Firmware
7.5
CVSSv2
CVE-2012-1495
install/index.php in WebCalendar prior to 1.2.5 allows remote malicious users to execute arbitrary code via the form_single_user_login parameter.
Webcalendar Project Webcalendar
2 EDB exploits
1 Github repository
8.3
CVSSv2
CVE-2012-3074
An unspecified API on Cisco TelePresence Immersive Endpoint Devices prior to 1.9.1 allows remote malicious users to execute arbitrary commands by leveraging certain adjacency and sending a malformed request on TCP port 61460, aka Bug ID CSCtz38382.
Cisco Telepresence System Software 1.9.0\\(46\\)
Cisco Telepresence System Software 1.7.5\\(42\\)
Cisco Telepresence System Software 1.7.2.1\\(2\\)
Cisco Telepresence System Software 1.7.1\\(4864\\)
Cisco Telepresence System Software 1.6.6\\(4109\\)
Cisco Telepresence System Software 1.6.4\\(4072\\)
Cisco Telepresence System Software 1.5.11\\(3659\\)
Cisco Telepresence System Software 1.5.1\\(2082\\)
Cisco Telepresence System Software 1.8.2\\(11\\)
Cisco Telepresence System Software 1.8.1\\(34\\)
Cisco Telepresence System Software 1.8.0\\(55\\)
Cisco Telepresence System Software 1.7.6\\(4\\)
Cisco Telepresence System Software 1.6.2\\(4023\\)
Cisco Telepresence System Software 1.6.0\\(3954\\)
Cisco Telepresence System Software 1.5.3\\(2115\\)
Cisco Telepresence System Software 1.5.13\\(3717\\)
Cisco Telepresence System Software 1.7.0.2\\(4719\\)
Cisco Telepresence System Software 1.7.0.1\\(4764\\)
Cisco Telepresence System Software 1.6.8\\(4222\\)
Cisco Telepresence System Software 1.6.7\\(4212\\)
Cisco Telepresence System Software 1.4.7\\(2229\\)
Cisco Telepresence System Software 1.3.2\\(1393\\)
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
race condition
CVE-2024-4249
CVE-2024-4244
CVE-2023-20198
TCP
CVE-2022-48648
CVE-2022-48636
CVE-2024-21345
SQL
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
4
5
6
7
8
9
10
NEXT »