Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
xlabs security vulnerabilities and exploits
(subscribe to this query)
3.5
CVSSv2
CVE-2015-1028
Multiple cross-site scripting (XSS) vulnerabilities in D-Link DSL-2730B router (rev C1) with firmware GE_1.01 allow remote authenticated users to inject arbitrary web script or HTML via the (1) domainname parameter to dnsProxy.cmd (DNS Proxy Configuration Panel); the (2) brName p...
Dlink Dsl-2730b Firmware Ge 1.01
3 EDB exploits
5
CVSSv2
CVE-2013-3304
Directory traversal vulnerability in Dell EqualLogic PS4000 with firmware 6.0 allows remote malicious users to read arbitrary files via a .. (dot dot) in the default URI.
Dell Equallogic Ps4000 Firmware 6.0
1 EDB exploit
3.5
CVSSv2
CVE-2013-5223
Multiple cross-site scripting (XSS) vulnerabilities in D-Link DSL-2760U Gateway (Rev. E1) allow remote authenticated users to inject arbitrary web script or HTML via the (1) ntpServer1 parameter to sntpcfg.cgi, username parameter to (2) ddnsmngr.cmd or (3) todmngr.tod, (4) TodUrl...
Dlink Dsl-2760u -
2 EDB exploits
5
CVSSv2
CVE-2014-8555
Directory traversal vulnerability in report/reportViewAction.jsp in Progress Software OpenEdge 11.2 allows remote malicious users to read arbitrary files via a .. (dot dot) in the selection parameter.
Progress Openedge 11.2
1 EDB exploit
7.5
CVSSv2
CVE-2014-8596
Multiple SQL injection vulnerabilities in PHP-Fusion 7.02.07 allow remote authenticated users to execute arbitrary SQL commands via the (1) submit_id parameter in a 2 action to files/administration/submissions.php or (2) status parameter to files/administration/members.php.
Php-fusion Php-fusion 7.02.07
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-23316
SQL injection
type confusion
CVE-2024-20697
CVE-2024-4344
local
CVE-2024-30043
CVE-2024-3821
CVE-2024-5041
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started