Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
liquidworm vulnerabilities and exploits
(subscribe to this query)
935
VMScore
CVE-2010-3155
Untrusted search path vulnerability in Adobe ExtendScript Toolkit (ESTK) CS5 3.5.0.52 allows local users, and possibly remote attackers, to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse dwmapi.dll that is located in the same folder as a .jsx file.
Adobe Extendedscript Toolkit Cs5 3.5.0.52
1 EDB exploit
685
VMScore
CVE-2014-4718
Multiple cross-site request forgery (CSRF) vulnerabilities in Lunar CMS prior to 3.3-3 allow remote malicious users to hijack the authentication of administrators for requests that (1) add Super users via a request to admin/user_create.php or conduct cross-site scripting (XSS) at...
Lunarcms Lunar Cms 3.3
Lunarcms Lunar Cms 3.2
Lunarcms Lunar Cms 3.1
Lunarcms Lunar Cms
1 EDB exploit
755
VMScore
CVE-2011-5039
Multiple SQL injection vulnerabilities in Infoproject Biznis Heroj allow remote malicious users to execute arbitrary SQL commands via the (1) username and (2) password parameters to login.php, (3) the filter parameter to widget.dokumenti_lista.php, and (4) the fin_nalog_id parame...
Infoproject Biznis Heroj
1 EDB exploit
435
VMScore
CVE-2011-5040
Multiple cross-site scripting (XSS) vulnerabilities in Infoproject Biznis Heroj allow remote malicious users to inject arbitrary web script or HTML via the config parameter to (1) nalozi_naslov.php and (2) widget.dokumenti_lista.php.
Infoproject Biznis Heroj
1 EDB exploit
725
VMScore
CVE-2011-5044
SopCast 3.4.7.45585 uses weak permissions (Everyone:Full Control) for Diagnose.exe, which allows local users to execute arbitrary code by replacing Diagnose.exe with a Trojan horse program.
Sopcast Sopcast 3.4.7.45585
1 EDB exploit
755
VMScore
CVE-2011-5116
SQL injection vulnerability in setseed-hub in SetSeed CMS 5.8.20, 5.11.2, and previous versions allows remote malicious users to execute arbitrary SQL commands via the loggedInUser cookie.
Setseed Setseed Cms 5.8.20
Setseed Setseed Cms
1 EDB exploit
635
VMScore
CVE-2011-5155
Untrusted search path vulnerability in Help & Manual 5.5.1 Build 1296 allows local users to gain privileges via a Trojan horse ijl15.dll file in the current working directory, as demonstrated by a directory that contains a .hmxz, .hmxp, .hmskin, .hmx, .hm3, .hpj, .hlp, or .ch...
Helpandmanual Help \\& Manual 5.5.1
1 EDB exploit
725
VMScore
CVE-2014-5453
Ubisoft Uplay PC prior to 4.6.1.3217 use weak permissions (Everyone: Full Control) for the program installation directory (%PROGRAMFILES%\Ubisoft Game Launcher), which allows local users to gain privileges via a Trojan horse file.
Ubi Uplay Pc
Ubi Uplay Pc 4.5.2.3010
1 EDB exploit
696
VMScore
CVE-2014-5455
Unquoted Windows search path vulnerability in the ptservice service prior to PrivateTunnel version 3.0 (Windows) and OpenVPN Connect version 3.1 (Windows) allows local users to gain privileges via a crafted program.exe file in the %SYSTEMDRIVE% folder.
Openvpn Openvpn 2.1.28.0
Privatetunnel Privatetunnel 2.3.8
1 EDB exploit
2 Github repositories
755
VMScore
CVE-2014-4334
Stack-based buffer overflow in Ubisoft Rayman Legends prior to 1.3.140380 allows remote malicious users to execute arbitrary code via a long string in the "second connection" to TCP port 1001.
Ubi Rayman Legends 1.0.95278
Ubi Rayman Legends 1.1.100477
Ubi Rayman Legends
1 EDB exploit
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27322
administrator privileges
CVE-2024-1579
hardcoded
CVE-2023-20198
CVE-2024-33587
CVE-2024-33449
CVE-2024-4308
HTML injection
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »