Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
coresecurity.com vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2010-1486
Multiple cross-site scripting (XSS) vulnerabilities in _invoice.asp in CactuShop prior to 6.155 allow remote malicious users to inject arbitrary web script or HTML via the (1) billing address or (2) shipping address.
Cactushop Cactushop
Cactushop Cactushop 3
Cactushop Cactushop 4
Cactushop Cactushop 4.1
Cactushop Cactushop 4.5
Cactushop Cactushop 4.6
Cactushop Cactushop 4.7
Cactushop Cactushop 5.0
Cactushop Cactushop 5.1
1 EDB exploit
3.5
CVSSv2
CVE-2009-2898
Cross-site scripting (XSS) vulnerability in the Alerts list feature in the web interface in SpringSource Hyperic HQ 3.2.x prior to 3.2.6.1, 4.0.x prior to 4.0.3.1, 4.1.x prior to 4.1.2.1, and 4.2-beta1; Application Management Suite (AMS) 2.0.0.SR3; and tc Server 6.0.20.B allows r...
Springsource Application Management Suite 2.0.0
Springsource Hyperic Hq 3.2
Springsource Hyperic Hq 3.2.0
Springsource Hyperic Hq 3.2.1
Springsource Hyperic Hq 3.2.2
Springsource Hyperic Hq 3.2.3
Springsource Hyperic Hq 3.2.4
Springsource Hyperic Hq 3.2.5
Springsource Hyperic Hq 3.2.6
Springsource Hyperic Hq 4.0.0
Springsource Hyperic Hq 4.0.1
Springsource Hyperic Hq 4.0.2
1 EDB exploit
7.5
CVSSv2
CVE-2010-1931
SQL injection vulnerability in includes/content/cart.inc.php in CubeCart PHP Shopping cart 4.3.4 up to and including 4.3.9 allows remote malicious users to execute arbitrary SQL commands via the shipKey parameter to index.php.
Cubecart Cubecart 4.3.4
Cubecart Cubecart 4.3.5
Cubecart Cubecart 4.3.6
Cubecart Cubecart 4.3.7
Cubecart Cubecart 4.3.8
Cubecart Cubecart 4.3.9
1 EDB exploit
4.1
CVSSv3
CVE-2016-1490
The Wifi hotspot in Lenovo SHAREit prior to 3.2.0 for Windows allows remote malicious users to obtain sensitive file names via a crafted file request to /list.
Lenovo Shareit
1 Article
8.8
CVSSv3
CVE-2016-1491
The Wifi hotspot in Lenovo SHAREit prior to 3.2.0 for Windows, when configured to receive files, has a hardcoded password of 12345678, which makes it easier for remote malicious users to obtain access by leveraging a position within the WLAN coverage area.
Lenovo Shareit
1 Article
6.1
CVSSv3
CVE-2016-1492
The Wifi hotspot in Lenovo SHAREit prior to 3.5.48_ww for Android, when configured to receive files, does not require a password, which makes it easier for remote malicious users to obtain access by leveraging a position within the WLAN coverage area.
Lenovo Shareit 3.0.18 Ww
1 Article
5
CVSSv2
CVE-2013-1604
Directory traversal vulnerability in MayGion IP Cameras with firmware prior to 2013.04.22 (05.53) allows remote malicious users to read arbitrary files via a .. (dot dot) in the default URI.
Maygion Ip Camera Firmware
Maygion Ip Camera Firmware 05.49
Maygion Ip Camera Firmware 05.53
Maygion Ip Camera Firmware 05.59
Maygion Ip Camera Firmware 05.60
Maygion Ip Camera Firmware 6.0
Maygion Ip Camera Firmware 6.1
Maygion Ip Camera Firmware 6.2
1 EDB exploit
7.5
CVSSv2
CVE-2013-1605
Buffer overflow in MayGion IP Cameras with firmware prior to 2013.04.22 (05.53) allows remote malicious users to execute arbitrary code via a long filename in a GET request.
Maygion Ip Camera Firmware
Maygion Ip Camera Firmware 05.49
Maygion Ip Camera Firmware 05.53
Maygion Ip Camera Firmware 05.59
Maygion Ip Camera Firmware 05.60
Maygion Ip Camera Firmware 6.0
Maygion Ip Camera Firmware 6.1
Maygion Ip Camera Firmware 6.2
1 EDB exploit
NA
CVE-2013-49873
Core Security Technologies Advisory - A security vulnerability was discovered in PineApp Mail-SeCure Suite, allowing a non-privileged attacker to get a root shell by sending a specially crafted command from the Mail-SeCure console. A valid user account is needed to launch the att...
NA
CVE-2013-16063
Core Security Technologies Advisory - The Ubiquiti airCam RTSP service 'ubnt-streamer' has a buffer overflow when parsing the URI of a RTSP request message. This bug allows remote attackers to execute arbitrary code via RTSP request message.
Preferred Score:
CVSSv3
CVSSv2
CVSSv3
CVSSv4
EPSS
VMScore
Recommendations:
XML external entity
remote code execution
CVE-2024-44136
CVE-2025-21321
CVE-2024-41454
CVE-2024-55503
insecure direct object reference
CVE-2025-20088
CVE-2024-44243
Home
/
Search Results
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »