Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
liquidworm vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2010-1296
Multiple buffer overflows in Adobe Photoshop CS4 prior to 11.0.2 allow user-assisted remote malicious users to execute arbitrary code via a crafted (1) .ASL, (2) .ABR, or (3) .GRD file.
Adobe Photoshop Cs4
Adobe Photoshop Cs4 11.0
3 EDB exploits
NA
CVE-2011-1062
Multiple cross-site scripting (XSS) vulnerabilities in include/html/header.php in TaskFreak! 0.6.4 allow remote malicious users to inject arbitrary web script or HTML via the (1) sContext, (2) sort, (3) dir, and (4) show parameters in a save action to index.php; the (5) dir and (...
Taskfreak Taskfreak\\! 0.6.4
4 EDB exploits
8.8
CVSSv3
CVE-2010-1280
Adobe Shockwave Player prior to 11.5.7.609 allows remote malicious users to execute arbitrary code or cause a denial of service (memory corruption) via a crafted .dir (aka Director) file, related to (1) an erroneous dereference and (2) a certain Shock.dir file.
Adobe Shockwave Player
1 EDB exploit
NA
CVE-2012-1049
Multiple cross-site scripting (XSS) vulnerabilities in ManageEngine ADManager Plus 5.2 Build 5210 allow remote malicious users to inject arbitrary web script or HTML via the (1) domainName parameter to jsp/AddDC.jsp or (2) operation parameter to DomainConfig.do.
Manageengine Admanager Plus 5.2
2 EDB exploits
NA
CVE-2010-5240
Multiple untrusted search path vulnerabilities in Corel PHOTO-PAINT and CorelDRAW X5 15.1.0.588 allow local users to gain privileges via a Trojan horse (1) dwmapi.dll or (2) CrlRib.dll file in the current working directory, as demonstrated by a directory that contains a .cdr, .cp...
Corel Coreldraw X5 15.1.0.588
Corel Photo-paint X3 13.0.0.576
2 EDB exploits
NA
CVE-2015-5530
Multiple cross-site request forgery (CSRF) vulnerabilities in Free Reprintables ArticleFR 3.0.6 allow remote malicious users to hijack the authentication of administrators for requests that add an administrator account via a request to dashboard/users/create/.
Freereprintables Articlefr 3.0.6
1 EDB exploit
NA
CVE-2009-2173
The LAN game feature in Carom3D 5.06 allows remote authenticated users to cause a denial of service (application hang) via a crafted HTTP request to TCP port 28012.
Gameis Carom3d 5.06
1 EDB exploit
NA
CVE-2010-4348
Cross-site scripting (XSS) vulnerability in admin/upgrade_unattended.php in MantisBT prior to 1.2.4 allows remote malicious users to inject arbitrary web script or HTML via the db_type parameter, related to an unsafe call by MantisBT to a function in the ADOdb Library for PHP.
Mantisbt Mantisbt 1.1.7
Mantisbt Mantisbt 1.1.4
Mantisbt Mantisbt 1.0.3
Mantisbt Mantisbt 1.0.2
Mantisbt Mantisbt 0.18.0
Mantisbt Mantisbt 0.19.0a1
Mantisbt Mantisbt 1.0.0a2
Mantisbt Mantisbt 1.0.0a3
Mantisbt Mantisbt 1.0.0
Mantisbt Mantisbt 1.2.0
Mantisbt Mantisbt 1.1.6
Mantisbt Mantisbt 1.0.4
Mantisbt Mantisbt 1.0.5
Mantisbt Mantisbt 0.19.3
Mantisbt Mantisbt 0.19.4
Mantisbt Mantisbt 0.19.2
Mantisbt Mantisbt 1.0.0a1
Mantisbt Mantisbt 0.19.5
Mantisbt Mantisbt 1.1.1
Mantisbt Mantisbt 1.1.2
Mantisbt Mantisbt 1.1.5
Mantisbt Mantisbt 1.0.8
1 EDB exploit
NA
CVE-2010-4350
Directory traversal vulnerability in admin/upgrade_unattended.php in MantisBT prior to 1.2.4 allows remote malicious users to include and execute arbitrary local files via a .. (dot dot) in the db_type parameter, related to an unsafe call by MantisBT to a function in the ADOdb Li...
Mantisbt Mantisbt 1.1.7
Mantisbt Mantisbt 1.1.4
Mantisbt Mantisbt 1.0.3
Mantisbt Mantisbt 1.0.2
Mantisbt Mantisbt 0.18.0
Mantisbt Mantisbt 0.19.0a1
Mantisbt Mantisbt 1.0.0a2
Mantisbt Mantisbt 1.0.0a3
Mantisbt Mantisbt 1.0.0
Mantisbt Mantisbt 1.2.0
Mantisbt Mantisbt 1.1.6
Mantisbt Mantisbt 1.0.4
Mantisbt Mantisbt 1.0.5
Mantisbt Mantisbt 0.19.3
Mantisbt Mantisbt 0.19.4
Mantisbt Mantisbt 0.19.2
Mantisbt Mantisbt 1.0.0a1
Mantisbt Mantisbt 0.19.5
Mantisbt Mantisbt 1.1.1
Mantisbt Mantisbt 1.1.2
Mantisbt Mantisbt 1.1.5
Mantisbt Mantisbt 1.0.8
1 EDB exploit
7.8
CVSSv3
CVE-2014-8358
Huawei EC156, EC176, and EC177 USB Modem products with software before UTPS-V200R003B015D02SP07C1014 (23.015.02.07.1014) and before V200R003B015D02SP08C1014 (23.015.02.08.1014) use a weak ACL for the "Mobile Partner" directory, which allows remote malicious users to gai...
Huawei Ec156 Firmware V200r003b009d05sp03c1014
Huawei Ec176 Firmware V200r003b009d05sp03c1014
Huawei Ec177 Firmware V200r003b009d05sp03c1014
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
cross-site scripting
CVE-2024-5158
XML external entity
CVE-2024-4262
CVE-2024-2036
CVE-2024-4985
CVE-2024-21791
remote attackers
CVE-2023-43208
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »