Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
jerzy kramarz vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2014-3448
BSS Continuity CMS 4.2.22640.0 has a Remote Code Execution vulnerability due to unauthenticated file upload
Bss Continuity Cms Project Bss Continuty Cms 4.2.22640.0
9.8
CVSSv3
CVE-2014-3449
BSS Continuity CMS 4.2.22640.0 has an Authentication Bypass vulnerability
Bss Continuity Cms Project Bss Continuty Cms 4.2.22640.0
NA
CVE-2014-3446
SQL injection vulnerability in wcm/system/pages/admin/getnode.aspx in BSS Continuity CMS 4.2.22640.0 allows remote malicious users to execute arbitrary SQL commands via the nodeid parameter.
Bss Continuity Cms 4.2.22640.0
NA
CVE-2014-2046
cgi-bin/rpcBridge in the web interface 1.1 on Broadcom Ltd PIPA C211 rev2 does not properly restrict access, which allows remote malicious users to (1) obtain credentials and other sensitive information via a certain request to the config.getValuesHashExcludePaths method or (2) m...
Broadcom Pipa C211 Web Interface 1.1
Broadcom Pipa C211 -
1 EDB exploit
NA
CVE-2014-7137
Multiple SQL injection vulnerabilities in Dolibarr ERP/CRM prior to 3.6.1 allow remote authenticated users to execute arbitrary SQL commands via the (1) contactid parameter in an addcontact action, (2) ligne parameter in a swapstatut action, or (3) project_ref parameter to projet...
Dolibarr Dolibarr
NA
CVE-2014-1223
Cross-site scripting (XSS) vulnerability in controlpanel/loading.aspx in Telligent Evolution prior to 6.1.19.36103, 7.x prior to 7.1.12.36162, 7.5.x, and 7.6.x prior to 7.6.7.36651 allows remote malicious users to inject arbitrary web script or HTML via the msg parameter. NOTE: s...
Telligent Evolution
NA
CVE-2014-1216
FitNesse Wiki 20131110, 20140201, and previous versions allows remote malicious users to execute arbitrary commands by defining a COMMAND_PATTERN and TEST_RUNNER in the pageContent parameter when editing a page.
Fitnesse Fitnesse Wiki
Fitnesse Fitnesse Wiki 20131110
1 EDB exploit
NA
CVE-2014-7177
XML External Entity vulnerability in Enalean Tuleap 7.2 and previous versions allows remote authenticated users to read arbitrary files via a crafted xml document in a create action to plugins/tracker/.
Enalean Tuleap
1 EDB exploit
NA
CVE-2014-7178
Enalean Tuleap prior to 7.5.99.6 allows remote malicious users to execute arbitrary commands via the User-Agent header, which is provided to the passthru PHP function.
Enalean Tuleap
1 EDB exploit
NA
CVE-2014-5308
Multiple SQL injection vulnerabilities in TestLink 1.9.11 allow remote authenticated users to execute arbitrary SQL commands via the (1) name parameter in a Search action to lib/project/projectView.php or (2) id parameter to lib/events/eventinfo.php.
Testlink Testlink 1.9.11
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
bypass
open redirect
CVE-2024-4358
CVE-2024-24199
CVE-2024-5550
CVE-2024-5305
CVE-2024-30373
CVE-2024-1800
deserialization
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »