Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
dr_insane vulnerabilities and exploits
(subscribe to this query)
460
VMScore
CVE-2004-2447
Cross-site scripting (XSS) vulnerability in 1st Class Mail Server 4.01 allows remote malicious users to inject arbitrary web script or HTML via the Mailbox parameter to (1) viewmail.tagz, (2) the index script under /user/, (3) members.tagz, (4) general.tagz, (5) advanced.tagz, or...
1st Class Internet Solutions 1st Class Mail Server 4.01
6 EDB exploits
515
VMScore
CVE-2005-4202
Multiple directory traversal vulnerabilities in LogiSphere 0.9.9j allow remote malicious users to access arbitrary files via (1) .. (dot dot), (2) "..." (triple dot), and (3) "..//" sequences in the URL, (4) "../" sequences in the source parameter to...
Logisphere Logisphere 0.9.9j
3 EDB exploits
510
VMScore
CVE-2004-2518
Gattaca Server 2003 1.1.10.0 allows remote malicious users to obtain sensitive information via (1) a trailing null byte ("%00") to a URL or (2) an invalid LANGUAGE parameter to web.tmpl, which reveals the full installation path in an error message.
Geeos Team Gattaca Server 2003 1.1.10.0
2 EDB exploits
435
VMScore
CVE-2005-4209
WorldClient webmail in Alt-N MDaemon 8.1.3 allows remote malicious users to prevent arbitrary users from accessing their inboxes via script tags in the Subject header of an e-mail message, which prevents the user from being able to access the Inbox folder, possibly due to a cross...
Alt-n Mdaemon 8.1.3
Alt-n Worldclient 8.1.3
1 EDB exploit
645
VMScore
CVE-2005-1423
Directory traversal vulnerability in the mail program in 602LAN SUITE 2004.0.05.0413 allows remote malicious users to cause a denial of service and determine the presence of arbitrary files via .. sequences in the A parameter.
Software602 602lan Suite 2004.0.05.0413
1 EDB exploit
505
VMScore
CVE-2004-2170
Directory traversal vulnerability in sample_showcode.html in Caravan 2.00/03d and previous versions allows remote malicious users to read arbitrary files via the fname parameter.
Niti Telecom Caravan Business Server 2.00-03d
1 EDB exploit
405
VMScore
CVE-2005-4206
Blackboard Learning and Community Portal System in Academic Suite 6.3.1.424, 6.2.3.23, and other versions prior to 6 allows remote malicious users to redirect users to other URLs and conduct phishing attacks via a modified url parameter to frameset.jsp, which loads the URL into a...
Blackboard Academic Suite 6.2.3.23
Blackboard Academic Suite 6.3.1.424
Blackboard Academic Suite
1 EDB exploit
685
VMScore
CVE-2005-1611
Cross-site scripting (XSS) vulnerability in WebX in Web Crossing 5.x allows remote malicious users to inject arbitrary web script or HTML via a URL with an "@" followed by the desired script.
Web Crossing Inc Web Crossing 5.x
1 EDB exploit
505
VMScore
CVE-2005-4194
Buffer overflow in MediaServerList.exe in Sights 'n Sounds Streaming Media Server 2.0.3.a allows remote malicious users to cause a denial of service (application crash) via a long query string.
Innovateware Sights N Sounds Streaming Media Server
1 EDB exploit
755
VMScore
CVE-2005-4622
Directory traversal vulnerability in eFileGo 3.01 allows remote malicious users to execute arbitrary code, read arbitrary files, and upload arbitrary files via a ... (triple dot) in (1) the URL on port 608 and (2) the argument to upload.exe.
Efilego Efilego 3.0.1
1 EDB exploit
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-29895
blind SQL injection
CVE-2024-5064
CVE-2023-52677
CVE-2023-52682
CVE-2024-30051
CVE-2024-35849
remote attackers
remote
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
NEXT »