Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
oliver karow vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2006-4305
Buffer overflow in SAP DB and MaxDB prior to 7.6.00.30 allows remote malicious users to execute arbitrary code via a long database name when connecting via a WebDBM client.
Mysql Maxdb
Sap-db Sap-db
1 EDB exploit
NA
CVE-2006-0254
Multiple cross-site scripting (XSS) vulnerabilities in Apache Geronimo 1.0 allow remote malicious users to inject arbitrary web script or HTML via the (1) time parameter to cal2.jsp and (2) any invalid parameter, which causes an XSS when the log file is viewed by the Web-Access-L...
Apache Geronimo 1.0
2 EDB exploits
NA
CVE-2004-2564
Multiple cross-site scripting (XSS) vulnerabilities in Sambar Server 6.1 Beta 2 on Windows, and possibly other versions on Linux, allow remote malicious users to inject arbitrary web script or HTML via (1) the show parameter in show.asp and (2) the title parameter in showperf.asp...
Sambar Sambar Server 6.1
2 EDB exploits
NA
CVE-2005-1708
templates.admin.users.user_form_processing in Blue Coat Reporter prior to 7.1.2 allows authenticated users to gain administrator privileges via an HTTP POST that sets volatile.user.administrator to true.
Bluecoat Reporter
1 EDB exploit
NA
CVE-2005-1118
Cross-site scripting (XSS) vulnerability in IISWebAgentIF.dll in the RSA Authentication Agent for Web 5.2 allows remote malicious users to inject arbitrary web script or HTML via the postdata parameter.
Rsa Authentication Agent For Web 5.2
1 EDB exploit
NA
CVE-2005-0316
WebWasher Classic 2.2.1 and 3.3, when running in server mode, does not properly drop CONNECT requests to the localhost from external systems, which could allow remote malicious users to bypass intended access restrictions.
Webwasher Webwasher Classic 2.2.1
Webwasher Webwasher Classic 3.3
1 EDB exploit
NA
CVE-2005-1006
Multiple cross-site scripting (XSS) vulnerabilities in SonicWALL SOHO 5.1.7.0 allow remote malicious users to inject arbitrary web script or HTML via (1) the URL or (2) the user login name, which is not filtered when the administrator views the log file.
Sonicwall Soho Firmware 5.1.7.0
1 EDB exploit
NA
CVE-2008-0396
Directory traversal vulnerability in BitDefender Update Server (http.exe), as used in BitDefender products including Security for Fileservers and Enterprise Manager (BDEM), allows remote malicious users to read arbitrary files via .. (dot dot) sequences in an HTTP request.
Bitdefender Update Server
1 EDB exploit
NA
CVE-2004-2748
viewreport.pl in NetIQ WebTrends Reporting Center Enterprise Edition 6.1a allows remote malicious users to determine the installation path via an invalid profileid parameter, which leaks the pathname in an error message.
Webtrends Reporting Center 6.1a
1 EDB exploit
NA
CVE-2003-1151
Cross-site scripting (XSS) vulnerability in Fastream NETFile Server 6.0.3.588 allows remote malicious users to inject arbitrary web script or HTML via the URL, which is displayed on a "404 Not Found" error page.
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
SSTI
CVE-2024-35863
CVE-2024-35910
man-in-the-middle
CVE-2024-35912
CVE-2024-25742
LFI
CVE-2024-32002
CVE-2024-22120
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »