Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
high-tech bridge sa vulnerabilities and exploits
(subscribe to this query)
6.5
CVSSv2
CVE-2012-5453
SQL injection vulnerability in user/index_inline_editor_submit.php in ATutor AContent 1.2-1 allows remote authenticated users to execute arbitrary SQL commands via the field parameter. NOTE: this vulnerability exists because of an incomplete fix for CVE-2012-5167.
Atutor Acontent 1.2
1 EDB exploit
2.6
CVSSv2
CVE-2010-4607
Multiple cross-site scripting (XSS) vulnerabilities in Habari 0.6.5, when register_globals is enabled, allow remote malicious users to inject arbitrary web script or HTML via the (1) additem_form parameter to system/admin/dash_additem.php and the (2) status_data[] parameter to sy...
Habariproject Habari 0.6.5
1 EDB exploit
5
CVSSv2
CVE-2010-4608
Habari 0.6.5 allows remote malicious users to obtain sensitive information via a direct request to (1) header.php and (2) comments_items.php in system/admin/, which reveals the installation path in an error message.
Habariproject Habari 0.6.5
1 EDB exploit
7.5
CVSSv2
CVE-2010-4609
SQL injection vulnerability in index.php in Html-edit CMS 3.1.8 allows remote malicious users to execute arbitrary SQL commands via the nuser parameter in a registrate action.
Html-edit Html-edit Cms 3.1.8
1 EDB exploit
4.3
CVSSv2
CVE-2010-4610
Cross-site scripting (XSS) vulnerability in index.php in Html-edit CMS 3.1.8 allows remote malicious users to inject arbitrary web script or HTML via the error parameter.
Html-edit Html-edit Cms 3.1.8
1 EDB exploit
5
CVSSv2
CVE-2010-4611
Html-edit CMS 3.1.8 allows remote malicious users to obtain sensitive information via a direct request to (1) pages.php and (2) menu.php in includes/core_files and (3) extensions/login/frontend/pages/antihacker.php, which reveals the installation path in an error message.
Html-edit Html-edit Cms 3.1.8
1 EDB exploit
6.8
CVSSv2
CVE-2010-4612
Multiple SQL injection vulnerabilities in index.php in Hycus CMS 1.0.3, when magic_quotes_gpc is disabled, allow remote malicious users to execute arbitrary SQL commands via the (1) user_name and (2) usr_email parameters to user/1/hregister.html, (3) usr_email parameter to user/1...
Hycus Hycus Cms 1.0.3
1 EDB exploit
7.5
CVSSv2
CVE-2010-4613
Multiple directory traversal vulnerabilities in Hycus CMS 1.0.3 allow remote malicious users to include and execute arbitrary local files via a .. (dot dot) in the site parameter to (1) index.php and (2) admin.php.
Hycus Hycus Cms 1.0.3
1 EDB exploit
7.5
CVSSv2
CVE-2011-4162
The (1) AddUser, (2) AddUserEx, (3) RemoveUser, (4) RemoveUserByGuide, (5) RemoveUserEx, and (6) RemoveUserRegardless methods in HP Protect Tools Device Access Manager (PTDAM) prior to 6.1.0.1 allow remote malicious users to execute arbitrary code or cause a denial of service (he...
Hp Protecttools Device Access Manager 6.0.0.9
Hp Protecttools Device Access Manager
Hp Protecttools Device Access Manager 6.0.0.10
1 EDB exploit
6.8
CVSSv2
CVE-2011-5074
Multiple cross-site request forgery (CSRF) vulnerabilities in Support Incident Tracker (aka SiT!) prior to 3.65 allow remote malicious users to hijack the authentication of administrators for requests that change administrator email, add a new administrator, or insert arbitrary s...
Sitracker Support Incident Tracker 3.35
Sitracker Support Incident Tracker 3.33
Sitracker Support Incident Tracker 3.32
Sitracker Support Incident Tracker 3.31
Sitracker Support Incident Tracker 3.60
Sitracker Support Incident Tracker 3.6
Sitracker Support Incident Tracker 3.51
Sitracker Support Incident Tracker 3.50
Sitracker Support Incident Tracker 3.22pl1
Sitracker Support Incident Tracker 3.22
Sitracker Support Incident Tracker 3.21
Sitracker Support Incident Tracker 3.63
Sitracker Support Incident Tracker
Sitracker Support Incident Tracker 3.62
Sitracker Support Incident Tracker 3.41
Sitracker Support Incident Tracker 3.36
Sitracker Support Incident Tracker 3.30
Sitracker Support Incident Tracker 3.24
Sitracker Support Incident Tracker 3.23
Sitracker Support Incident Tracker 3.45
Sitracker Support Incident Tracker 3.61
Sitracker Support Incident Tracker 3.40
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-26925
CVE-2023-41826
LFI
CVE-2022-22364
CVE-2024-2887
command injection
remote code execution
CVE-2024-34446
CVE-2022-48699
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
4
5
6
7
8
9
10
NEXT »