Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
tools vulnerabilities and exploits
(subscribe to this query)
685
VMScore
CVE-2006-7147
PHP remote file inclusion vulnerability in includes/functions_mod_user.php in phpBB Import Tools Mod 0.1.4 and previous versions allows remote malicious users to execute arbitrary PHP code via a URL in the phpbb_root_path parameter.
Phpbb Import Tools 0.1.3
Phpbb Import Tools 0.1.4
1 EDB exploit
605
VMScore
CVE-2020-6070
An exploitable code execution vulnerability exists in the file system checking functionality of fsck.f2fs 1.12.0. A specially crafted f2fs file can cause a logic flaw and out-of-bounds heap operations, resulting in code execution. An attacker can provide a malicious file to trigg...
F2fs-tools Project F2fs-tools 1.12.0
Fedoraproject Fedora 33
668
VMScore
CVE-2006-3752
Multiple SQL injection vulnerabilities in class.php in Professional Home Page Tools Guestbook allow remote malicious users to execute arbitrary SQL commands via the (1) hidemail, (2) name, (3) mail, (4) ip, or (5) text parameters.
Professional Home Page Tools Professional Home Page Tools Guestbook
570
VMScore
CVE-2006-3753
setcookie.php for the administration login in Professional Home Page Tools Guestbook records the hash of the administrator password in a cookie, which allows malicious users to conduct brute force password guessing attacks after obtaining the hash.
Professional Home Page Tools Professional Home Page Tools Guestbook
445
VMScore
CVE-2006-3837
delcookie.php in Professional Home Page Tools Guestbook changes the expiration date of a cookie instead of deleting the cookie's value, which makes it easier for malicious users to steal the cookie and obtain the administrator's password hash after logout.
Professional Home Page Tools Professional Home Page Tools Guestbook
505
VMScore
CVE-2008-2969
Directory traversal vulnerability in download.php in Academic Web Tools (AWT YEKTA) 1.4.3.1, and 1.4.2.8 and previous versions, allows remote malicious users to read arbitrary files via a .. (dot dot) in the dfile parameter.
Yektaweb Academic Web Tools
Yektaweb Academic Web Tools 1.4.3.1
1 EDB exploit
828
VMScore
CVE-2016-10677
google-closure-tools-latest is a Node.js module wrapper for downloading the latest version of the Google Closure tools google-closure-tools-latest downloads binary resources over HTTP, which leaves it vulnerable to MITM attacks. It may be possible to cause remote code execution (...
Google-closure-tools-latest Project Google-closure-tools-latest
755
VMScore
CVE-2006-4051
PHP remote file inclusion vulnerability in global.php in Turnkey Web Tools PHP Live Helper 2.0 and previous versions allows remote malicious users to execute arbitrary PHP code via a URL in the abs_path parameter.
Turnkey Web Tools Php Live Helper
Turnkey Web Tools Php Live Helper 1.8
Turnkey Web Tools Php Live Helper 2.0 Beta
1 EDB exploit
505
VMScore
CVE-2000-0739
Directory traversal vulnerability in strong.exe program in NAI Net Tools PKI server 1.0 before HotFix 3 allows remote malicious users to read arbitrary files via a .. (dot dot) attack in an HTTPS request to the enrollment server.
Network Associates Net Tools Pki Server 1.0hotfix1
Network Associates Net Tools Pki Server 1.0hotfix2
Network Associates Net Tools Pki Server 1.0
1 EDB exploit
505
VMScore
CVE-2000-0740
Buffer overflow in strong.exe program in NAI Net Tools PKI server 1.0 before HotFix 3 allows remote malicious users to execute arbitrary commands via a long URL in the HTTPS port.
Network Associates Net Tools Pki Server 1.0
Network Associates Net Tools Pki Server 1.0hotfix1
Network Associates Net Tools Pki Server 1.0hotfix2
1 EDB exploit
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
SSTI
CVE-2024-35863
CVE-2024-35910
man-in-the-middle
CVE-2024-35912
CVE-2024-25742
LFI
CVE-2024-32002
CVE-2024-22120
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »