Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
jbmc software directadmin vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2012-5305
Cross-site scripting (XSS) vulnerability in CMD_DOMAIN in JBMC Software DirectAdmin 1.403 allows remote malicious users to inject arbitrary web script or HTML via the domain parameter.
Directadmin Directadmin 1.403
NA
CVE-2012-3842
Multiple cross-site scripting (XSS) vulnerabilities in CMD_DOMAIN in JBMC Software DirectAdmin 1.403 allow remote authenticated users with certain privileges to inject arbitrary web script or HTML via the (1) select0 or (2) select8 parameters.
Jbmc-software Directadmin 1.403
NA
CVE-2009-2216
Cross-site scripting (XSS) vulnerability in CMD_REDIRECT in DirectAdmin 1.33.6 and previous versions allows remote malicious users to inject arbitrary web script or HTML via the URI in a view=advanced request.
Jbmc-software Directadmin
Jbmc-software Directadmin 1.33.2
Jbmc-software Directadmin 1.33.1
Jbmc-software Directadmin 1.292
Jbmc-software Directadmin 1.33.4
Jbmc-software Directadmin 1.33.3
1 EDB exploit
NA
CVE-2009-1525
CMD_DB in JBMC Software DirectAdmin prior to 1.334 allows remote authenticated users to gain privileges via shell metacharacters in the name parameter during a restore action.
Jbmc-software Directadmin 1.301
Jbmc-software Directadmin 1.266
Jbmc-software Directadmin 1.292
Jbmc-software Directadmin 1.02
Jbmc-software Directadmin 1.03
Jbmc-software Directadmin 1.09
Jbmc-software Directadmin 1.1
Jbmc-software Directadmin 1.302
Jbmc-software Directadmin 1.04
Jbmc-software Directadmin 1.05
Jbmc-software Directadmin 1.11
Jbmc-software Directadmin 1.111
Jbmc-software Directadmin 1.16
Jbmc-software Directadmin 1.161
Jbmc-software Directadmin 1.18
Jbmc-software Directadmin 1.181
Jbmc-software Directadmin 1.2
Jbmc-software Directadmin 1.201
Jbmc-software Directadmin 1.202
Jbmc-software Directadmin 1.211
Jbmc-software Directadmin 1.212
Jbmc-software Directadmin 1.225
NA
CVE-2009-1526
JBMC Software DirectAdmin prior to 1.334 allows local users to create or overwrite any file via a symlink attack on an arbitrary file in a certain temporary directory, related to a request for this temporary file in the PATH_INFO to the CMD_DB script during a backup action.
Jbmc-software Directadmin 1.301
Jbmc-software Directadmin 1.302
Jbmc-software Directadmin 1.331
Jbmc-software Directadmin 0.95
Jbmc-software Directadmin 1.11
Jbmc-software Directadmin 1.04
Jbmc-software Directadmin 1.05
Jbmc-software Directadmin 1.06
Jbmc-software Directadmin 1.07
Jbmc-software Directadmin 1.16
Jbmc-software Directadmin 1.161
Jbmc-software Directadmin 1.17
Jbmc-software Directadmin 1.171
Jbmc-software Directadmin 1.2
Jbmc-software Directadmin 1.201
Jbmc-software Directadmin 1.202
Jbmc-software Directadmin 1.203
Jbmc-software Directadmin 1.225
Jbmc-software Directadmin 1.226
Jbmc-software Directadmin 1.23
Jbmc-software Directadmin 1.231
Jbmc-software Directadmin 1.254
1 EDB exploit
NA
CVE-2007-1926
Cross-site scripting (XSS) vulnerability in JBMC Software DirectAdmin prior to 1.293 does not properly display log files, which allows remote authenticated users to inject arbitrary web script or HTML via (1) http or (2) ftp requests logged in /var/log/directadmin/security.log; (...
Jbmc Software Directadmin
NA
CVE-2007-1508
Cross-site scripting (XSS) vulnerability in CMD_USER_STATS in DirectAdmin allows remote malicious users to inject arbitrary web script or HTML via the RESULT parameter, a different vector than CVE-2006-5983.
Jbmc Software Directadmin 1.293
1 EDB exploit
NA
CVE-2006-5983
Multiple cross-site scripting (XSS) vulnerabilities in JBMC Software DirectAdmin 1.28.1 allow remote authenticated users to inject arbitrary web script or HTML via the (1) user parameter to (a) CMD_SHOW_RESELLER or (b) CMD_SHOW_USER in the Admin level; the (2) TYPE parameter to (...
Jbmc Software Directadmin 1.28.1
8 EDB exploits
NA
CVE-2006-2153
Cross-site scripting (XSS) vulnerability in HTM_PASSWD in DirectAdmin Hosting Management allows remote malicious users to inject arbitrary web script or HTML via the domain parameter.
Jbmc Software Directadmin
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
path traversal
CVE-2024-33545
CVE-2024-35725
CVE-2024-32704
overflow
file upload
CVE-2024-0230
CVE-2024-32705
CVE-2024-23692
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started