Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
swsoft vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2006-5028
Directory traversal vulnerability in filemanager/filemanager.php in SWsoft Plesk 7.5 Reload and Plesk 7.6 for Microsoft Windows allows remote malicious users to list arbitrary directories via a ../ (dot dot slash) in the file parameter in a chdir action.
Swsoft Plesk Reload 7.5
Swsoft Plesk 7.6
1 EDB exploit
NA
CVE-2008-6478
Cross-site request forgery (CSRF) vulnerability in the file manager in the VZPP web interface for Parallels Virtuozzo 365.6.swsoft (build 4.0.0-365.6.swsoft) and 25.4.swsoft (build 3.0.0-25.4.swsoft) allows remote malicious users to create and delete arbitrary files as the admini...
Parallels Virtuozzo Containers 4.0.0-365.6.swsoft
Parallels Virtuozzo Containers 3.0.0-25.4.swsoft
1 EDB exploit
NA
CVE-2006-3179
Cross-site scripting (XSS) vulnerability in tools_ftp_pwaendern.php in Confixx Pro 3.0 and previous versions allows remote malicious users to inject arbitrary web script or HTML via the account parameter.
Swsoft Confixx
NA
CVE-2006-1759
Cross-site scripting (XSS) vulnerability in allgemein_transfer.php in SWSoft Confixx 3.1.2 allows remote malicious users to inject arbitrary web script or HTML via the jahr parameter.
Swsoft Confixx 3.1.2
1 EDB exploit
NA
CVE-2006-3180
Cross-site scripting (XSS) vulnerability in ftp_index.php in Confixx Pro 3.0 allows remote malicious users to inject arbitrary web script or HTML via the path parameter.
Swsoft Confixx Pro 3
NA
CVE-2006-3737
Cross-site scripting (XSS) vulnerability in filemanager/filemanager.php in the control panel in SWsoft Plesk 8.0 and previous versions allows remote authenticated users to inject arbitrary web script or HTML via the file parameter.
Swsoft Plesk Control Panel
NA
CVE-2007-6042
PHP remote file inclusion vulnerability in fehler.inc.php in SWSoft Confixx Professional 3.2.1 allows remote malicious users to execute arbitrary PHP code via a URL in an unspecified parameter. NOTE: the provenance of this information is unknown; the details are obtained solely f...
Swsoft Confixx Professional 3.2.1
NA
CVE-2008-6479
Cross-site request forgery (CSRF) vulnerability in the "change password" feature in the VZPP web interface for Parallels Virtuozzo 25.4.swsoft (build 3.0.0-25.4.swsoft) allows remote malicious users to modify the password via a link or IMG tag to vz/cp/pwd.
Parallels Parallels Virtuozzo 25.4swsoft
1 EDB exploit
NA
CVE-2007-4009
PHP remote file inclusion vulnerability in admin/business_inc/saveserver.php in SWSoft Confixx Pro 2.0.12 up to and including 3.3.1 allows remote malicious users to execute arbitrary PHP code via a URL in the thisdir parameter.
Parallels Confixx 3.3.1
Parallels Confixx 2.0.12
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
SSTI
CVE-2024-35863
CVE-2024-35910
man-in-the-middle
CVE-2024-35912
CVE-2024-25742
LFI
CVE-2024-32002
CVE-2024-22120
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2