Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
glafkos charalambous vulnerabilities and exploits
(subscribe to this query)
7.8
CVSSv3
CVE-2015-2291
(1) IQVW32.sys prior to 1.3.1.0 and (2) IQVW64.sys prior to 1.3.1.0 in the Intel Ethernet diagnostics driver for Windows allows local users to cause a denial of service or possibly execute arbitrary code with kernel privileges via a crafted (a) 0x80862013, (b) 0x8086200B, (c) 0x8...
Intel Ethernet Diagnostics Driver Iqvw32.sys 1.03.0.7
Intel Ethernet Diagnostics Driver Iqvw64.sys 1.03.0.7
1 EDB exploit
3 Github repositories
NA
CVE-2010-3136
Untrusted search path vulnerability in Skype 4.2.0.169 and previous versions allows local users, and possibly remote attackers, to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse wab32.dll that is located in the same folder as a .skype file.
Skype Skype 3.0.0.217
Skype Skype 3.0.0.218
Skype Skype 3.0.0.137
Skype Skype 3.0.0.154
Skype Skype 3.0.0.190
Skype Skype 3.0.0.198
Skype Skype 2.6.0.81
Skype Skype 2.6.0.97
Skype Skype 3.2.0.53
Skype Skype 3.1.0.152
Skype Skype 2.0.0.81
Skype Skype 2.0.0.90
Skype Skype 1.3.0.60
Skype Skype 1.3.0.66
Skype Skype 2.6.0.74
Skype Skype 3.0.0.214
Skype Skype 3.0.0.216
Skype Skype 3.0.0.106
Skype Skype 3.0.0.123
Skype Skype 3.2.0.158
Skype Skype 3.2.0.152
Skype Skype 3.2.0.148
1 EDB exploit
NA
CVE-2015-0624
The web framework in Cisco AsyncOS on Email Security Appliance (ESA), Content Security Management Appliance (SMA), and Web Security Appliance (WSA) devices allows remote malicious users to trigger redirects via a crafted HTTP header, aka Bug IDs CSCur44412, CSCur44415, CSCur89630...
Cisco Email Security Appliance Firmware -
Cisco Content Security Management Appliance -
Cisco Web Security Appliance -
NA
CVE-2007-2991
Cross-site scripting (XSS) vulnerability in includes/send.inc.php in Evenzia CMS allows remote malicious users to inject arbitrary web script or HTML via the PATH_INFO.
Evenzia Evenzia Cms
1 EDB exploit
NA
CVE-2008-3754
SQL injection vulnerability in trl.php in YourFreeWorld Stylish Text Ads Script allows remote malicious users to execute arbitrary SQL commands via the id parameter.
Yourfreeworld Stylish Text Ads Script
1 EDB exploit
NA
CVE-2014-5507
iBackup 10.0.0.32 and previous versions uses weak permissions (Everyone: Full Control) for ib_service.exe, which allows local users to gain privileges via a Trojan horse file.
Pro Softnet Corporation Ibackup
1 EDB exploit
NA
CVE-2010-3152
Untrusted search path vulnerability in Adobe Illustrator CS4 14.0.0, CS5 15.0.1 and previous versions, and possibly other versions allows local users, and possibly remote attackers, to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse dwmapi.dll or aires...
Adobe Illustrator 15.0.1
Adobe Illustrator 14.0
1 EDB exploit
NA
CVE-2008-6278
Multiple cross-site scripting (XSS) vulnerabilities in product.php in RakhiSoftware Price Comparison Script (aka Shopping Cart) allow remote malicious users to inject arbitrary web script or HTML via the (1) category_id and (2) subcategory_id parameters.
Rakhisoftware Rakhisoftware Shopping Cart -
1 EDB exploit
NA
CVE-2008-6279
RakhiSoftware Price Comparison Script (aka Shopping Cart) allows remote malicious users to obtain sensitive information via an invalid PHPSESSID cookie, which reveals the installation path in an error message.
Rakhisoftware Rakhisoftware Shopping Cart -
1 EDB exploit
NA
CVE-2007-3070
Cross-site scripting (XSS) vulnerability in index.php in BDigital Web Solutions WebStudio allows remote malicious users to inject arbitrary web script or HTML via the pageid parameter.
Bdigital Web Solutions Webstudio Cms
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
validation
CVE-2012-1823
malicious code
CVE-2024-5770
CVE-2023-45866
CVE-2024-35687
local users
CVE-2024-31246
CVE-2024-35730
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
NEXT »