Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
poplix vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2006-5662
SQL injection vulnerability in easy notesManager (eNM) 0.0.1 allows remote malicious users to execute arbitrary SQL commands via (1) the username parameter in login.php and (2) a search on the "search page."
Evandor Easy Notesmanager 0.0.1
2 EDB exploits
NA
CVE-2008-6478
Cross-site request forgery (CSRF) vulnerability in the file manager in the VZPP web interface for Parallels Virtuozzo 365.6.swsoft (build 4.0.0-365.6.swsoft) and 25.4.swsoft (build 3.0.0-25.4.swsoft) allows remote malicious users to create and delete arbitrary files as the admini...
Parallels Virtuozzo Containers 4.0.0-365.6.swsoft
Parallels Virtuozzo Containers 3.0.0-25.4.swsoft
1 EDB exploit
NA
CVE-2007-0756
Chicken of the VNC (cotv) 2.0 allows remote malicious users to cause a denial of service (application crash) via a large computer-name size value in a ServerInit packet, which triggers a failed malloc and a resulting NULL dereference.
Chicken Of The Vnc Chicken Of The Vnc 2.0
1 EDB exploit
NA
CVE-2007-1008
Apple iTunes 7.0.2 allows user-assisted remote malicious users to cause a denial of service (application crash) via a crafted XML list of radio stations, which results in memory corruption. NOTE: iTunes retrieves the XML document from a static URL, which requires an malicious use...
Apple Itunes 7.0.2
1 EDB exploit
NA
CVE-2007-6561
Multiple stack-based buffer overflows in PDFLib allow user-assisted remote malicious users to execute arbitrary code via a long filename argument to the PDF_load_image function that results in an overflow in the pdc_fsearch_fopen function, and possibly other vectors.
Pdflib Pdflib 7.0.2
1 EDB exploit
NA
CVE-2007-2580
Unspecified vulnerability in Apple Safari allows local users to obtain sensitive information (saved keychain passwords) via the document.loginform.password.value JavaScript parameter loaded from an AppleScript script.
Apple Safari
1 EDB exploit
NA
CVE-2008-6479
Cross-site request forgery (CSRF) vulnerability in the "change password" feature in the VZPP web interface for Parallels Virtuozzo 25.4.swsoft (build 3.0.0-25.4.swsoft) allows remote malicious users to modify the password via a link or IMG tag to vz/cp/pwd.
Parallels Parallels Virtuozzo 25.4swsoft
1 EDB exploit
NA
CVE-2006-6538
D-LINK DWL-2000AP+ firmware 2.11 allows remote malicious users to cause (1) a denial of service (device reset) via a flood of ARP replies on the wired or wireless (radio) link and (2) a denial of service (device crash) via a flood of ARP requests on the wireless link.
D-link Dwl-2000ap\\+ 2.11
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27322
cross-site request forgery
unauthorized
CVE-2024-33925
reflected XSS
CVE-2023-51580
CVE-2023-51579
CVE-2015-2051
CVE-2023-51609
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started