Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
knowledge base vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2023-37890
Missing Authorization vulnerability in WPOmnia KB Support – WordPress Help Desk and Knowledge Base allows Accessing Functionality Not Properly Constrained by ACLs. Users with a role as low as a subscriber can view other customers.This issue affects KB Support – WordPr...
Liquidweb Kb Support
7.5
CVSSv2
CVE-2021-37558
A SQL injection vulnerability in a MediaWiki script in Centreon prior to 20.04.14, 20.10.8, and 21.04.2 allows remote unauthenticated malicious users to execute arbitrary SQL commands via the host_name and service_description parameters. The vulnerability can be exploited only wh...
Centreon Centreon
6.8
CVSSv2
CVE-2008-3555
Directory traversal vulnerability in index.php in (1) WSN Forum 4.1.43 and previous versions, (2) Gallery 4.1.30 and previous versions, (3) Knowledge Base (WSNKB) 4.1.36 and previous versions, (4) Links 4.1.44 and previous versions, and possibly (5) Classifieds prior to 4.1.30 al...
Wsn Links 4.0.14
Wsn Links 4.0.15
Wsn Links 4.0.21
Wsn Links 4.0.22
Wsn Links 4.0.3
Wsn Links 4.0.30
Wsn Links 4.0.37
Wsn Links 4.0.38
Wsn Links 4.0.7
Wsn Links 4.0.8
Wsn Links 4.1.14
Wsn Links 4.1.15
Wsn Links 4.1.21
Wsn Links 4.1.22
Wsn Links 4.1.29
Wsn Links 4.1.3
Wsn Links 4.1.37
Wsn Links 4.1.38
Wsn Links 4.1.44
Wsn Links 4.1.5
Wsn Knowledge Base
Wsn Links 4.0.10
1 EDB exploit
4.3
CVSSv2
CVE-2017-12647
XSS exists in Liferay Portal prior to 7.0 CE GA4 via a Knowledge Base article title.
Liferay Liferay Portal
3.5
CVSSv2
CVE-2019-17204
TeamPass 2.1.27.36 allows Stored XSS by setting a crafted Knowledge Base label and adding any available item.
Teampass Teampass 2.1.27.36
NA
CVE-2023-5802
Cross-Site Request Forgery (CSRF) vulnerability in Mihai Iova WordPress Knowledge base & Documentation Plugin – WP Knowledgebase plugin <= 1.3.4 versions.
Wpknowledgebase Wp Knowledgebase
NA
CVE-2023-47247
In SysAid On-Premise prior to 23.3.34, there is an edge case in which an end user is able to delete a Knowledge Base article, aka bug 15102.
Sysaid Sysaid
3.5
CVSSv2
CVE-2021-46372
Scoold 1.47.2 is a Q&A/knowledge base platform written in Java. When writing a Q&A, the markdown editor is vulnerable to a XSS attack when using uppercase letters.
Erudika Scoold 1.47.2
7.5
CVSSv2
CVE-2008-6525
SQL injection vulnerability in the Admin Panel in Nice PHP FAQ Script (Knowledge base Script) allows remote malicious users to execute arbitrary SQL commands via the Password parameter (aka the pass field).
Nicephpscripts Nice Php Faq Script
1 EDB exploit
10
CVSSv2
CVE-2006-6568
Directory traversal vulnerability in includes/kb_constants.php in the Knowledge Base (mx_kb) 2.0.2 module for mxBB allows remote malicious users to include arbitrary files via a .. (dot dot) sequence in the phpEx parameter.
Mxbb Kb Mods 2.0.2
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-32886
insecure direct object reference
CVE-2024-34342
file inclusion
CVE-2024-34562
CVE-2024-34347
CVE-2024-26026
CVE-2024-4647
unprivileged
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »