Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
knowledge base vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2023-37890
Missing Authorization vulnerability in WPOmnia KB Support – WordPress Help Desk and Knowledge Base allows Accessing Functionality Not Properly Constrained by ACLs. Users with a role as low as a subscriber can view other customers.This issue affects KB Support – WordPr...
Liquidweb Kb Support
668
VMScore
CVE-2021-37558
A SQL injection vulnerability in a MediaWiki script in Centreon prior to 20.04.14, 20.10.8, and 21.04.2 allows remote unauthenticated malicious users to execute arbitrary SQL commands via the host_name and service_description parameters. The vulnerability can be exploited only wh...
Centreon Centreon
685
VMScore
CVE-2008-3555
Directory traversal vulnerability in index.php in (1) WSN Forum 4.1.43 and previous versions, (2) Gallery 4.1.30 and previous versions, (3) Knowledge Base (WSNKB) 4.1.36 and previous versions, (4) Links 4.1.44 and previous versions, and possibly (5) Classifieds prior to 4.1.30 al...
Wsn Links 4.0.14
Wsn Links 4.0.15
Wsn Links 4.0.21
Wsn Links 4.0.22
Wsn Links 4.0.3
Wsn Links 4.0.30
Wsn Links 4.0.37
Wsn Links 4.0.38
Wsn Links 4.0.7
Wsn Links 4.0.8
Wsn Links 4.1.14
Wsn Links 4.1.15
Wsn Links 4.1.21
Wsn Links 4.1.22
Wsn Links 4.1.29
Wsn Links 4.1.3
Wsn Links 4.1.37
Wsn Links 4.1.38
Wsn Links 4.1.44
Wsn Links 4.1.5
Wsn Knowledge Base
Wsn Links 4.0.10
1 EDB exploit
383
VMScore
CVE-2017-12647
XSS exists in Liferay Portal prior to 7.0 CE GA4 via a Knowledge Base article title.
Liferay Liferay Portal
312
VMScore
CVE-2019-17204
TeamPass 2.1.27.36 allows Stored XSS by setting a crafted Knowledge Base label and adding any available item.
Teampass Teampass 2.1.27.36
NA
CVE-2023-5802
Cross-Site Request Forgery (CSRF) vulnerability in Mihai Iova WordPress Knowledge base & Documentation Plugin – WP Knowledgebase plugin <= 1.3.4 versions.
Wpknowledgebase Wp Knowledgebase
NA
CVE-2023-47247
In SysAid On-Premise prior to 23.3.34, there is an edge case in which an end user is able to delete a Knowledge Base article, aka bug 15102.
Sysaid Sysaid
312
VMScore
CVE-2021-46372
Scoold 1.47.2 is a Q&A/knowledge base platform written in Java. When writing a Q&A, the markdown editor is vulnerable to a XSS attack when using uppercase letters.
Erudika Scoold 1.47.2
1000
VMScore
CVE-2006-6568
Directory traversal vulnerability in includes/kb_constants.php in the Knowledge Base (mx_kb) 2.0.2 module for mxBB allows remote malicious users to include arbitrary files via a .. (dot dot) sequence in the phpEx parameter.
Mxbb Kb Mods 2.0.2
1 EDB exploit
755
VMScore
CVE-2008-6525
SQL injection vulnerability in the Admin Panel in Nice PHP FAQ Script (Knowledge base Script) allows remote malicious users to execute arbitrary SQL commands via the Password parameter (aka the pass field).
Nicephpscripts Nice Php Faq Script
1 EDB exploit
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
brute force
CVE-2024-24908
open redirect
CVE-2024-31497
CVE-2023-45866
CVE-2024-4135
CVE-2024-25523
cache poisoning
CVE-2024-4649
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »