Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
liquidworm vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2010-1296
Multiple buffer overflows in Adobe Photoshop CS4 prior to 11.0.2 allow user-assisted remote malicious users to execute arbitrary code via a crafted (1) .ASL, (2) .ABR, or (3) .GRD file.
Adobe Photoshop Cs4
Adobe Photoshop Cs4 11.0
3 EDB exploits
NA
CVE-2011-1062
Multiple cross-site scripting (XSS) vulnerabilities in include/html/header.php in TaskFreak! 0.6.4 allow remote malicious users to inject arbitrary web script or HTML via the (1) sContext, (2) sort, (3) dir, and (4) show parameters in a save action to index.php; the (5) dir and (...
Taskfreak Taskfreak\\! 0.6.4
4 EDB exploits
NA
CVE-2010-5240
Multiple untrusted search path vulnerabilities in Corel PHOTO-PAINT and CorelDRAW X5 15.1.0.588 allow local users to gain privileges via a Trojan horse (1) dwmapi.dll or (2) CrlRib.dll file in the current working directory, as demonstrated by a directory that contains a .cdr, .cp...
Corel Coreldraw X5 15.1.0.588
Corel Photo-paint X3 13.0.0.576
2 EDB exploits
NA
CVE-2012-1049
Multiple cross-site scripting (XSS) vulnerabilities in ManageEngine ADManager Plus 5.2 Build 5210 allow remote malicious users to inject arbitrary web script or HTML via the (1) domainName parameter to jsp/AddDC.jsp or (2) operation parameter to DomainConfig.do.
Manageengine Admanager Plus 5.2
2 EDB exploits
8.8
CVSSv3
CVE-2010-1280
Adobe Shockwave Player prior to 11.5.7.609 allows remote malicious users to execute arbitrary code or cause a denial of service (memory corruption) via a crafted .dir (aka Director) file, related to (1) an erroneous dereference and (2) a certain Shock.dir file.
Adobe Shockwave Player
1 EDB exploit
NA
CVE-2013-7368
Multiple cross-site scripting (XSS) vulnerabilities in Gnew 2013.1 allow remote malicious users to inject arbitrary web script or HTML via the gnew_template parameter to (1) users/profile.php, (2) articles/index.php, or (3) admin/polls.php; (4) category_id parameter to news/submi...
Raoul Proenca Gnew 2013.1
1 EDB exploit
NA
CVE-2015-1424
Cross-site request forgery (CSRF) vulnerability in Gecko CMS 2.2 and 2.3 allows remote malicious users to hijack the authentication of administrators for requests that add an administrator user via a newuser request to admin/index.php.
Jakweb Gecko Cms 2.2
Jakweb Gecko Cms 2.3
1 EDB exploit
NA
CVE-2012-3836
Multiple cross-site scripting (XSS) vulnerabilities in Baby Gekko prior to 1.2.0 allow remote malicious users to inject arbitrary web script or HTML via the (1) groupname parameter in a savecategory in the users module; (2) virtual_filename, (3) branch, (4) contact_person, (5) st...
Babygekko Baby Gekko 1.1.3
Babygekko Baby Gekko 1.1.1
Babygekko Baby Gekko 0.98
Babygekko Baby Gekko 0.90
Babygekko Baby Gekko 1.1.0
Babygekko Baby Gekko 1.0.1
Babygekko Baby Gekko 1.0.0
Babygekko Baby Gekko 0.99
Babygekko Baby Gekko 1.1.4
Babygekko Baby Gekko 1.1.2
Babygekko Baby Gekko 0.91
Babygekko Baby Gekko
1 EDB exploit
NA
CVE-2012-3837
Multiple cross-site scripting (XSS) vulnerabilities in apps/users/registration.template.php in Baby Gekko 1.2.0 and previous versions allow remote malicious users to inject arbitrary web script or HTML via the (1) username, (2) email_address, (3) password, (4) password_verify, (5...
Babygekko Baby Gekko 0.90
Babygekko Baby Gekko 1.1.5
Babygekko Baby Gekko
Babygekko Baby Gekko 1.0.0
Babygekko Baby Gekko 0.98
Babygekko Baby Gekko 1.1.3
Babygekko Baby Gekko 1.1.2
Babygekko Baby Gekko 1.1.1
Babygekko Baby Gekko 1.1.0
Babygekko Baby Gekko 1.1.4
Babygekko Baby Gekko 1.0.1
Babygekko Baby Gekko 0.99
Babygekko Baby Gekko 0.91
1 EDB exploit
7.8
CVSSv3
CVE-2014-8358
Huawei EC156, EC176, and EC177 USB Modem products with software before UTPS-V200R003B015D02SP07C1014 (23.015.02.07.1014) and before V200R003B015D02SP08C1014 (23.015.02.08.1014) use a weak ACL for the "Mobile Partner" directory, which allows remote malicious users to gai...
Huawei Ec156 Firmware V200r003b009d05sp03c1014
Huawei Ec176 Firmware V200r003b009d05sp03c1014
Huawei Ec177 Firmware V200r003b009d05sp03c1014
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-26925
CVE-2023-41826
LFI
CVE-2022-22364
CVE-2024-2887
command injection
remote code execution
CVE-2024-34446
CVE-2022-48699
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
6
NEXT »