Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
high-tech bridge vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2014-4170
A Privilege Escalation Vulnerability exists in Free Reprintables ArticleFR 11.06.2014 due to insufficient access restrictions in the data.php script, which could let a remote malicious user obtain access or modify or delete database information.
Freereprintables Articlefr
1 EDB exploit
7.5
CVSSv2
CVE-2013-6788
The Bitrix e-Store module prior to 14.0.1 for Bitrix Site Manager uses sequential values for the BITRIX_SM_SALE_UID cookie, which makes it easier for remote malicious users to guess the cookie value and bypass authentication via a brute force attack.
Bitrix Bitrix E-store Module
4.3
CVSSv2
CVE-2015-3421
The eshop_checkout function in checkout.php in the Wordpress Eshop plugin 6.3.11 and previous versions does not validate variables in the "eshopcart" HTTP cookie, which allows remote malicious users to perform cross-site scripting (XSS) attacks, or a path disclosure att...
Eshop Project Eshop
4.3
CVSSv2
CVE-2012-4233
LibreOffice 3.5.x prior to 3.5.7.2 and 3.6.x prior to 3.6.1, and OpenOffice.org (OOo), allows remote malicious users to cause a denial of service (NULL pointer dereference) via a crafted (1) odt file to vcllo.dll, (2) ODG (Drawing document) file to svxcorelo.dll, (3) PolyPolygon ...
Libreoffice Libreoffice 3.5.0
Libreoffice Libreoffice 3.5.3
Libreoffice Libreoffice 3.5.1
Libreoffice Libreoffice 3.5.4
Libreoffice Libreoffice 3.5.
Libreoffice Libreoffice 3.5.6
Libreoffice Libreoffice 3.5.6.1
Libreoffice Libreoffice 3.5.2
Libreoffice Libreoffice 3.5.5
Libreoffice Libreoffice 3.5.5.1
Sun Openoffice.org -
Libreoffice Libreoffice 3.5.6.2
Libreoffice Libreoffice 3.5.6.3
Libreoffice Libreoffice
Libreoffice Libreoffice 3.5
Libreoffice Libreoffice 3.5.5.2
Libreoffice Libreoffice 3.5.5.3
NA
CVE-2013-2649
Hero Framework - '/users/login?Username' Cross-Site Scripting
2 EDB exploits
4.3
CVSSv2
CVE-2013-4624
Multiple cross-site scripting (XSS) vulnerabilities in Jahia xCM 6.6.1.0 before hotfix 7 allow remote malicious users to inject arbitrary web script or HTML via (1) the site parameter to engines/manager.jsp, (2) the searchString parameter to administration/ in a search action, or...
Jahia Jahia Xcm 6.6.1
2 EDB exploits
5
CVSSv2
CVE-2014-1631
Eventum prior to 2.3.5 allows remote malicious users to reinstall the application via direct request to /setup/index.php.
Eventum Project Eventum
2 EDB exploits
4.3
CVSSv2
CVE-2012-1469
Multiple cross-site scripting (XSS) vulnerabilities in Open Journal Systems prior to 2.3.7 allow remote attackers and remote authenticated users to inject arbitrary web script or HTML via the (1) editor or (2) callback parameters to lib/pkp/lib/tinymce/jscripts/tiny_mce/plugins/i...
Pkp Open Journal Systems
2 EDB exploits
10
CVSSv2
CVE-2013-0804
The client in Novell GroupWise 8.0 prior to 8.0.3 HP2 and 2012 before SP1 HP1 allows remote malicious users to execute arbitrary code or cause a denial of service (incorrect pointer dereference) via unspecified vectors.
Novell Groupwise 8.00
Novell Groupwise 8.0
Novell Groupwise 8.01
Novell Groupwise 8.02
Novell Groupwise 8.03
Novell Groupwise 2012
1 EDB exploit
6.8
CVSSv2
CVE-2013-7346
Cross-site request forgery (CSRF) vulnerability in Symphony CMS prior to 2.3.2 allows remote malicious users to hijack the authentication of administrators for requests that conduct SQL injection attacks via the sort parameter to system/authors/, related to CVE-2013-2559.
Getsymphony Symphony
Getsymphony Symphony 2.0.7
Getsymphony Symphony 2.1.1
Getsymphony Symphony 2.0
Getsymphony Symphony 2.0.3
Getsymphony Symphony 2.0.4
Getsymphony Symphony 2.0.5
Getsymphony Symphony 2.3
Getsymphony Symphony 2.0.6
Getsymphony Symphony 2.1.0
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-23316
SQL injection
type confusion
CVE-2024-20697
CVE-2024-4344
local
CVE-2024-30043
CVE-2024-3821
CVE-2024-5041
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »