Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
local vulnerabilities and exploits
(subscribe to this query)
670
VMScore
CVE-2021-3278
Local Service Search Engine Management System 1.0 has a vulnerability through authentication bypass using SQL injection . Using this vulnerability, an attacker can bypass the login page.
Local Services Search Engine Management System Project Local Services Search Engine Management System 1.0
NA
CVE-2023-3005
A vulnerability, which was classified as problematic, was found in SourceCodester Local Service Search Engine Management System 1.0. This affects an unknown part of the file /admin/ajax.php?action=save_area of the component POST Parameter Handler. The manipulation of the argument...
Local Service Search Engine Management System Project Local Service Search Engine Management System 1.0
312
VMScore
CVE-2021-28000
A persistent cross-site scripting vulnerability exists in Local Services Search Engine Management System Project 1.0 which allows remote malicious users to execute arbitrary code via crafted payloads entered into the Name and Address fields.
Local Services Search Engine Management System Project Local Services Search Engine Management System 1.0
356
VMScore
CVE-2021-27999
A SQL injection vulnerability exists in the editid parameter in Local Services Search Engine Management System Project 1.0. This vulnerability gives admin users the ability to dump all data from the database.
Local Services Search Engine Management System Project Local Services Search Engine Management System 1.0
755
VMScore
CVE-2008-6302
TurnkeyForms Local Classifieds allows remote malicious users to bypass authentication and gain administrative access via a direct request to Site_Admin/admin.php.
Turnkeyforms Local Classifieds
1 EDB exploit
755
VMScore
CVE-2008-6350
SQL injection vulnerability in listtest.php in TurnkeyForms Local Classifieds allows remote malicious users to execute arbitrary SQL commands via the r parameter.
Turnkeyforms Local Classifieds -
1 EDB exploit
435
VMScore
CVE-2008-6351
Cross-site scripting (XSS) vulnerability in listtest.php in TurnkeyForms Local Classifieds allows remote malicious users to inject arbitrary web script or HTML via the r parameter.
Turnkeyforms Local Classifieds -
1 EDB exploit
383
VMScore
CVE-2008-0200
Multiple cross-site scripting (XSS) vulnerabilities in account/index.html in RotaBanner Local 3 and previous versions allow remote malicious users to inject arbitrary web script or HTML via the (1) user or (2) drop parameter.
Medialand Rotabanner Local
445
VMScore
CVE-2018-17539
The BGP daemon (bgpd) in all IP Infusion ZebOS versions to 7.10.6 and all OcNOS versions to 1.3.3.145 allow remote malicious users to cause a denial of service attack via an autonomous system (AS) path containing 8 or more autonomous system number (ASN) elements.
F5 Big-ip Local Traffic Manager
F5 Big-ip Local Traffic Manager 14.0.0
Ipinfusion Ocnos
Ipinfusion Zebos
NA
CVE-2023-47650
Cross-Site Request Forgery (CSRF) vulnerability in Peter Sterling Add Local Avatar.This issue affects Add Local Avatar: from n/a up to and including 12.1.
Petersterling Add Local Avatar
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-3675
CVE-2024-3400
CVE-2024-23557
mass assignment
CVE-2023-1389
local file inclusion
CVE-2024-32596
file upload
CVE-2024-32593
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »