Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
dr_insane vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2004-2447
Cross-site scripting (XSS) vulnerability in 1st Class Mail Server 4.01 allows remote malicious users to inject arbitrary web script or HTML via the Mailbox parameter to (1) viewmail.tagz, (2) the index script under /user/, (3) members.tagz, (4) general.tagz, (5) advanced.tagz, or...
1st Class Internet Solutions 1st Class Mail Server 4.01
6 EDB exploits
NA
CVE-2005-4202
Multiple directory traversal vulnerabilities in LogiSphere 0.9.9j allow remote malicious users to access arbitrary files via (1) .. (dot dot), (2) "..." (triple dot), and (3) "..//" sequences in the URL, (4) "../" sequences in the source parameter to...
Logisphere Logisphere 0.9.9j
3 EDB exploits
NA
CVE-2004-2518
Gattaca Server 2003 1.1.10.0 allows remote malicious users to obtain sensitive information via (1) a trailing null byte ("%00") to a URL or (2) an invalid LANGUAGE parameter to web.tmpl, which reveals the full installation path in an error message.
Geeos Team Gattaca Server 2003 1.1.10.0
2 EDB exploits
NA
CVE-2005-4194
Buffer overflow in MediaServerList.exe in Sights 'n Sounds Streaming Media Server 2.0.3.a allows remote malicious users to cause a denial of service (application crash) via a long query string.
Innovateware Sights N Sounds Streaming Media Server
1 EDB exploit
6.1
CVSSv3
CVE-2005-4206
Blackboard Learning and Community Portal System in Academic Suite 6.3.1.424, 6.2.3.23, and other versions prior to 6 allows remote malicious users to redirect users to other URLs and conduct phishing attacks via a modified url parameter to frameset.jsp, which loads the URL into a...
Blackboard Academic Suite 6.2.3.23
Blackboard Academic Suite 6.3.1.424
Blackboard Academic Suite
1 EDB exploit
NA
CVE-2005-4209
WorldClient webmail in Alt-N MDaemon 8.1.3 allows remote malicious users to prevent arbitrary users from accessing their inboxes via script tags in the Subject header of an e-mail message, which prevents the user from being able to access the Inbox folder, possibly due to a cross...
Alt-n Mdaemon 8.1.3
Alt-n Worldclient 8.1.3
1 EDB exploit
NA
CVE-2004-2170
Directory traversal vulnerability in sample_showcode.html in Caravan 2.00/03d and previous versions allows remote malicious users to read arbitrary files via the fname parameter.
Niti Telecom Caravan Business Server 2.00-03d
1 EDB exploit
NA
CVE-2004-2253
Directory traversal vulnerability in user.cgi in SurgeLDAP 1.0g and previous versions allows remote malicious users to read arbitrary files via a .. in the page parameter of the show command.
Netwin Surgeldap 1.0d
Netwin Surgeldap 1.0e
Netwin Surgeldap 1.0g
1 EDB exploit
NA
CVE-2004-2310
Cross-site scripting (XSS) vulnerability in webadmin.nsf in Lotus Domino R6 6.5.1 allows remote malicious users to inject arbitrary web script or HTML via a Domino command in the Quick Console.
Ibm Lotus Domino 6.5.1
1 EDB exploit
NA
CVE-2004-2311
Directory traversal vulnerability in webadmin.nsf in Lotus Domino R6 6.5.1 allows local users to create folders or determine the existence of files via a .. (dot dot) in the new folder dialog.
Ibm Lotus Domino 6.5.1
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-49223
CVE-2024-0044
information disclosure
CVE-2024-35753
HTML injection
CVE-2024-21306
CVE-2024-35733
SQL injection
CVE-2024-35732
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
NEXT »