Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
jbmc software directadmin vulnerabilities and exploits
(subscribe to this query)
383
VMScore
CVE-2012-5305
Cross-site scripting (XSS) vulnerability in CMD_DOMAIN in JBMC Software DirectAdmin 1.403 allows remote malicious users to inject arbitrary web script or HTML via the domain parameter.
Directadmin Directadmin 1.403
383
VMScore
CVE-2012-3842
Multiple cross-site scripting (XSS) vulnerabilities in CMD_DOMAIN in JBMC Software DirectAdmin 1.403 allow remote authenticated users with certain privileges to inject arbitrary web script or HTML via the (1) select0 or (2) select8 parameters.
Jbmc-software Directadmin 1.403
435
VMScore
CVE-2009-2216
Cross-site scripting (XSS) vulnerability in CMD_REDIRECT in DirectAdmin 1.33.6 and previous versions allows remote malicious users to inject arbitrary web script or HTML via the URI in a view=advanced request.
Jbmc-software Directadmin 1.33.1
Jbmc-software Directadmin 1.33.3
Jbmc-software Directadmin 1.33.4
Jbmc-software Directadmin 1.292
Jbmc-software Directadmin 1.33.2
Jbmc-software Directadmin
1 EDB exploit
695
VMScore
CVE-2009-1526
JBMC Software DirectAdmin prior to 1.334 allows local users to create or overwrite any file via a symlink attack on an arbitrary file in a certain temporary directory, related to a request for this temporary file in the PATH_INFO to the CMD_DB script during a backup action.
Jbmc-software Directadmin 1.16
Jbmc-software Directadmin 1.02
Jbmc-software Directadmin 1.17
Jbmc-software Directadmin 1.282
Jbmc-software Directadmin 1.235
Jbmc-software Directadmin 1.231
Jbmc-software Directadmin 1.05
Jbmc-software Directadmin 1.281
Jbmc-software Directadmin 1.255
Jbmc-software Directadmin 1.205
Jbmc-software Directadmin 1.332
Jbmc-software Directadmin 1.192
Jbmc-software Directadmin 1.221
Jbmc-software Directadmin 1.23
Jbmc-software Directadmin 1.232
Jbmc-software Directadmin 1.12
Jbmc-software Directadmin 1.204
Jbmc-software Directadmin 1.264
Jbmc-software Directadmin 1.291
Jbmc-software Directadmin 1.111
Jbmc-software Directadmin 1.225
Jbmc-software Directadmin 1.28
1 EDB exploit
756
VMScore
CVE-2009-1525
CMD_DB in JBMC Software DirectAdmin prior to 1.334 allows remote authenticated users to gain privileges via shell metacharacters in the name parameter during a restore action.
Jbmc-software Directadmin 1.16
Jbmc-software Directadmin 1.02
Jbmc-software Directadmin 1.17
Jbmc-software Directadmin 1.282
Jbmc-software Directadmin 1.235
Jbmc-software Directadmin 1.231
Jbmc-software Directadmin 1.05
Jbmc-software Directadmin 1.281
Jbmc-software Directadmin 1.255
Jbmc-software Directadmin 1.205
Jbmc-software Directadmin 1.332
Jbmc-software Directadmin 1.192
Jbmc-software Directadmin 1.221
Jbmc-software Directadmin 1.23
Jbmc-software Directadmin 1.232
Jbmc-software Directadmin 1.12
Jbmc-software Directadmin 1.204
Jbmc-software Directadmin 1.264
Jbmc-software Directadmin 1.291
Jbmc-software Directadmin 1.111
Jbmc-software Directadmin 1.225
Jbmc-software Directadmin 1.28
605
VMScore
CVE-2007-1926
Cross-site scripting (XSS) vulnerability in JBMC Software DirectAdmin prior to 1.293 does not properly display log files, which allows remote authenticated users to inject arbitrary web script or HTML via (1) http or (2) ftp requests logged in /var/log/directadmin/security.log; (...
Jbmc Software Directadmin
435
VMScore
CVE-2007-1508
Cross-site scripting (XSS) vulnerability in CMD_USER_STATS in DirectAdmin allows remote malicious users to inject arbitrary web script or HTML via the RESULT parameter, a different vector than CVE-2006-5983.
Jbmc Software Directadmin 1.293
1 EDB exploit
640
VMScore
CVE-2006-5983
Multiple cross-site scripting (XSS) vulnerabilities in JBMC Software DirectAdmin 1.28.1 allow remote authenticated users to inject arbitrary web script or HTML via the (1) user parameter to (a) CMD_SHOW_RESELLER or (b) CMD_SHOW_USER in the Admin level; the (2) TYPE parameter to (...
Jbmc Software Directadmin 1.28.1
8 EDB exploits
383
VMScore
CVE-2006-2153
Cross-site scripting (XSS) vulnerability in HTM_PASSWD in DirectAdmin Hosting Management allows remote malicious users to inject arbitrary web script or HTML via the domain parameter.
Jbmc Software Directadmin
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-23692
malicious code
XML injection
CVE-2024-28020
CVE-2024-35252
CVE-2024-5833
CVE-2024-30066
injection
CVE-2024-23282
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started