Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
d3hydr8 vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2007-5620
Directory traversal vulnerability in admin/inc/help.php in ZZ:FlashChat 3.1 and previous versions allows remote malicious users to include and execute arbitrary local files via a .. (dot dot) in the file parameter.
Zehnet Zz Flashchat
1 EDB exploit
5
CVSSv2
CVE-2007-5816
dialog.php in CONTENTCustomizer 3.1mp and previous versions allows remote malicious users to obtain sensitive author credentials by making a request with an editauthor action, then reading the value of the newlocalpassword password input field in the HTML source of the resulting ...
Contentcustomizer Contentcustomizer 3.1mp
1 EDB exploit
4.3
CVSSv2
CVE-2007-4052
Cross-site scripting (XSS) vulnerability in utilities/login.asp in nukedit 4.9.7 and previous versions allows remote malicious users to inject arbitrary web script or HTML via the email parameter. NOTE: the provenance of this information is unknown; the details are obtained solel...
Nukedit Nukedit 4.9.7b
1 EDB exploit
4.3
CVSSv2
CVE-2007-4146
Cross-site scripting (XSS) vulnerability in webevent.cgi in WebEvent 2.61 up to and including 4.03 allows remote malicious users to inject arbitrary web script or HTML via the cmd parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from...
Webevents Webevents 2.61
Webevents Webevents 2.7
Webevents Webevents 2.71
Webevents Webevents 2.72
Webevents Webevents 4.03
1 EDB exploit
4.3
CVSSv2
CVE-2007-5817
dialog.php in CONTENTCustomizer 3.1mp and previous versions allows remote malicious users to perform certain privileged actions via a (1) del, (2) delbackup, (3) res, or (4) ren action. NOTE: this issue can be leveraged to conduct cross-site scripting (XSS) and possibly other att...
Contentcustomizer Contentcustomizer
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-4463
CVE-2024-29895
inject
CVE-2023-52689
CVE-2024-5049
CVE-2024-5051
privilege escalation
physical
CVE-2023-52676
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started