Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
saudi vulnerabilities and exploits
(subscribe to this query)
6.4
CVSSv2
CVE-2021-1396
Multiple vulnerabilities in Cisco Application Services Engine could allow an unauthenticated, remote malicious user to gain privileged access to host-level operations or to learn device-specific information, create diagnostic files, and make limited configuration changes. For mor...
Cisco Application Services Engine
Cisco Application Policy Infrastructure Controller 1.1.3
1 Article
10
CVSSv2
CVE-2021-1393
Multiple vulnerabilities in Cisco Application Services Engine could allow an unauthenticated, remote malicious user to gain privileged access to host-level operations or to learn device-specific information, create diagnostic files, and make limited configuration changes. For mor...
Cisco Application Services Engine
Cisco Application Policy Infrastructure Controller 1.1.3
1 Article
6.8
CVSSv2
CVE-2019-11931
A stack-based buffer overflow could be triggered in WhatsApp by sending a specially crafted MP4 file to a WhatsApp user. The issue was present in parsing the elementary stream metadata of an MP4 file and could result in a DoS or RCE. This affects Android versions before 2.19.274,...
Whatsapp Whatsapp
Whatsapp Whatsapp Business
Whatsapp Whatsapp Enterprise Client
1 Article
6.8
CVSSv2
CVE-2018-20250
In WinRAR versions prior to and including 5.61, There is path traversal vulnerability when crafting the filename field of the ACE format (in UNACEV2.dll). When the filename field is manipulated with specific patterns, the destination (extraction) folder is ignored, thus treating ...
Rarlab Winrar
2 EDB exploits
21 Github repositories
5 Articles
7.5
CVSSv2
CVE-2006-0906
SQL injection vulnerability in D3Jeeb Pro 3 allows remote malicious users to execute arbitrary SQL commands via the catid parameter in (1) fastlinks.php and (2) catogary.php.
Top Line D3jeeb Pro 3
2 EDB exploits
5
CVSSv2
CVE-2006-0972
SQL injection vulnerability in news.php in Tony Baird Fantastic News 2.1.1 allows remote malicious users to execute arbitrary SQL commands via the page parameter. NOTE: the category vector is already covered by CVE-2005-3846.
Fscripts Fantastic News 2.1.1
1 EDB exploit
7.5
CVSSv2
CVE-2006-0413
Multiple SQL injection vulnerabilities in index.php in NewsPHP allow remote malicious users to execute arbitrary SQL commands via the (1) discuss, (2) tim, (3) id, (4) last, and (5) limit parameter.
Newsphp Newsphp
1 EDB exploit
7.5
CVSSv2
CVE-2006-4670
Multiple PHP remote file inclusion vulnerabilities in PhotoKorn Gallery 1.52 and previous versions allow remote malicious users to execute arbitrary PHP code via a URL in the dir_path parameter in (1) includes/cart.inc.php or (2) extras/ext_cats.php.
Gtasoft Photokorn Gallery
1 EDB exploit
7.5
CVSSv2
CVE-2006-4823
PHP remote file inclusion vulnerability in scripts/news_page.php in Reamday Enterprises Magic News Pro 1.0.3 and previous versions allows remote malicious users to execute arbitrary PHP code via a URL in the script_path parameter.
Reamday Enterprises Magic News Pro
1 EDB exploit
7.5
CVSSv2
CVE-2006-4828
PHP remote file inclusion vulnerability in zipndownload.php in PhotoPost 4.0 up to and including 4.6 allows remote malicious users to execute arbitrary PHP code via a URL in the PP_PATH parameter.
Photopost Photopost Php Pro 4.0
Photopost Photopost Php Pro 4.1
Photopost Photopost Php Pro 4.2
Photopost Photopost Php Pro 4.3
Photopost Photopost Php Pro 4.6
Photopost Photopost Php Pro 4.4
Photopost Photopost Php Pro 4.5
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-29895
blind SQL injection
CVE-2024-5064
CVE-2023-52677
CVE-2023-52682
CVE-2024-30051
CVE-2024-35849
remote attackers
remote
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »