Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
high-tech bridge sa vulnerabilities and exploits
(subscribe to this query)
755
VMScore
CVE-2011-5313
Multiple SQL injection vulnerabilities in includes/password.php in Redaxscript 0.3.2 allow remote malicious users to execute arbitrary SQL commands via the (1) id or (2) password parameter to the password_reset program.
Redaxscript Redaxscript 0.3.2
1 EDB exploit
435
VMScore
CVE-2010-2856
Cross-site scripting (XSS) vulnerability in admin/currencies.php in osCSS 1.2.2, and probably earlier versions, allows remote malicious users to inject arbitrary web script or HTML via the page parameter.
Oscss Oscss
Oscss Oscss 1.2.1
Oscss Oscss 1.0.1
Oscss Oscss 1.0
Oscss Oscss 1.2
Oscss Oscss 1.1
Oscss Oscss 1.2.2
1 EDB exploit
755
VMScore
CVE-2012-0973
Multiple SQL injection vulnerabilities in OSClass prior to 2.3.5 allow remote malicious users to execute arbitrary SQL commands via the sCategory parameter to index.php, which is not properly handled by the (1) osc_search_category_id function in oc-includes/osclass/helpers/hSearc...
Osclass Osclass
1 EDB exploit
435
VMScore
CVE-2012-0974
Multiple cross-site scripting (XSS) vulnerabilities in the getParam function in oc-includes/osclass/core/Params.php in OSClass prior to 2.3.5 allow remote malicious users to inject arbitrary web script or HTML via the (1) sCity, (2) sPattern, (3) sPriceMax, and (4) sPriceMin para...
Juan Ramon Osclass 2.0.1
Juan Ramon Osclass 2.0
Juan Ramon Osclass 1.2
Juan Ramon Osclass 2.3
Juan Ramon Osclass 2.2.3
Juan Ramon Osclass 2.2.2
Juan Ramon Osclass 2.2.1
Juan Ramon Osclass 2.2
Juan Ramon Osclass 2.3.3
Juan Ramon Osclass 2.3.1
Juan Ramon Osclass 2.1
Juan Ramon Osclass 2.0.2
Juan Ramon Osclass 1.1
Juan Ramon Osclass
Juan Ramon Osclass 2.3.2
Juan Ramon Osclass 2.1.1
Juan Ramon Osclass 2.0.3
1 EDB exploit
435
VMScore
CVE-2012-0988
Multiple cross-site scripting (XSS) vulnerabilities in config/dmsDefaults.php in KnowledgeTree 3.7.0.2 and possibly earlier allow remote malicious users to inject arbitrary web script or HTML via the PATH_INFO to (1) login.php, (2) admin.php, or (3) preferences.php.
Jam Warehouse Knowledgetree Open Source 3.7.0.2
1 EDB exploit
435
VMScore
CVE-2012-0989
Cross-site scripting (XSS) vulnerability in OneOrZero AIMS 2.8.0 Trial Edition build231211 and possibly earlier allows remote malicious users to inject arbitrary web script or HTML via the PATH_INFO to index.php.
Oneorzero Action And Information Management System 2.8.0
1 EDB exploit
355
VMScore
CVE-2012-0990
Cross-site request forgery (CSRF) vulnerability in admin/settings/update in DClassifieds 0.1 final allows remote malicious users to hijack the authentication of administrators for requests that modify account settings such as the administrator password or email via certain Settin...
Dclassifieds Dclassifieds 0.1
1 EDB exploit
855
VMScore
CVE-2012-0992
interface/fax/fax_dispatch.php in OpenEMR 4.1.0 allows remote authenticated users to execute arbitrary commands via shell metacharacters in the file parameter.
Openemr Openemr 4.1.0
1 EDB exploit
685
VMScore
CVE-2011-5074
Multiple cross-site request forgery (CSRF) vulnerabilities in Support Incident Tracker (aka SiT!) prior to 3.65 allow remote malicious users to hijack the authentication of administrators for requests that change administrator email, add a new administrator, or insert arbitrary s...
Sitracker Support Incident Tracker 3.35
Sitracker Support Incident Tracker 3.33
Sitracker Support Incident Tracker 3.32
Sitracker Support Incident Tracker 3.31
Sitracker Support Incident Tracker 3.60
Sitracker Support Incident Tracker 3.6
Sitracker Support Incident Tracker 3.51
Sitracker Support Incident Tracker 3.50
Sitracker Support Incident Tracker 3.22pl1
Sitracker Support Incident Tracker 3.22
Sitracker Support Incident Tracker 3.21
Sitracker Support Incident Tracker 3.63
Sitracker Support Incident Tracker
Sitracker Support Incident Tracker 3.62
Sitracker Support Incident Tracker 3.41
Sitracker Support Incident Tracker 3.36
Sitracker Support Incident Tracker 3.30
Sitracker Support Incident Tracker 3.24
Sitracker Support Incident Tracker 3.23
Sitracker Support Incident Tracker 3.45
Sitracker Support Incident Tracker 3.61
Sitracker Support Incident Tracker 3.40
1 EDB exploit
435
VMScore
CVE-2013-3082
Cross-site scripting (XSS) vulnerability in plugins/jojo_core/forgot_password.php in Jojo prior to 1.2.2 allows remote malicious users to inject arbitrary web script or HTML via the search parameter to forgot-password/.
Jojocms Jojo-cms
Jojocms Jojo-cms 1.1
Jojocms Jojo-cms 1.2
1 EDB exploit
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2022-48654
CVE-2024-2757
authentication bypass
CVE-2024-3194
CVE-2024-33640
CVE-2024-21111
dos
insecure direct object reference
CVE-2024-21345
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
2
3
4
5
6
7
8
9
10
NEXT »