Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
zorlu vulnerabilities and exploits
(subscribe to this query)
765
VMScore
CVE-2014-9448
Buffer overflow in Mini-stream RM-MP3 Converter 3.1.2.1.2010.03.30 allows remote malicious users to execute arbitrary code or cause a denial of service (crash) via a long string in a WAX file.
Mini-stream Rm-mp3 Converter 3.1.2.1.2010.03.30
3 EDB exploits
435
VMScore
CVE-2014-9349
Multiple cross-site scripting (XSS) vulnerabilities in admin/robots.lib.php in RobotStats 1.0 allow remote malicious users to inject arbitrary web script or HTML via the (1) nom or (2) user_agent parameter to admin/robots.php.
Robotstats Robotstats 1.0
1 EDB exploit
755
VMScore
CVE-2014-9348
SQL injection vulnerability in the formulaireRobot function in admin/robots.lib.php in RobotStats 1.0 allows remote malicious users to execute arbitrary SQL commands via the robot parameter to admin/robots.php.
Robotstats Robotstats 1.0
1 EDB exploit
505
VMScore
CVE-2014-8995
SQL injection vulnerability in Maarch LetterBox 2.8 allows remote malicious users to execute arbitrary SQL commands via the UserId cookie.
Maarch Letterbox 2.8
1 EDB exploit
685
VMScore
CVE-2014-8953
Multiple cross-site request forgery (CSRF) vulnerabilities in Php Scriptlerim Who's Who script allow remote malicious users to hijack the authentication of administrators or requests that (1) add an admin account via a request to filepath/yonetim/plugin/adminsave.php or have...
Phpscriptlerim Php Scriptlerim Who's Who -
1 EDB exploit
755
VMScore
CVE-2010-4856
SQL injection vulnerability in arsiv.asp in xWeblog 2.2 allows remote malicious users to execute arbitrary SQL commands via the tarih parameter.
Aspindir Xweblog 2.2
1 EDB exploit
760
VMScore
CVE-2009-4808
admin.php in Graugon PHP Article Publisher 1.0 allows remote malicious users to bypass authentication and obtain administrative access by setting the g_admin cookie to 1.
Graugon Php Article Publisher 1.0
2 EDB exploits
505
VMScore
CVE-2009-4760
Winn ASP Guestbook 1.01 Beta stores sensitive information under the web root with insufficient access control, which allows remote malicious users to download a database via a direct request for data/guestbook.mdb.
Winn Asp Guestbook 1.01
1 EDB exploit
760
VMScore
CVE-2009-4724
SQL injection vulnerability in shop.htm in PaymentProcessorScript.net PPScript allows remote malicious users to execute arbitrary SQL commands via the cid parameter.
Paymentprocessorscript Ppscript
2 EDB exploits
505
VMScore
CVE-2009-4545
Logoshows BBS 2.0 stores sensitive information under the web root with insufficient access control, which allows remote malicious users to download a database via a direct request for database/globepersonnel.mdb.
Logoshows Logoshows Bbs 2.0
1 EDB exploit
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-37316
firmware
CVE-2024-30078
CVE-2024-5995
remote code execution
logic flaw
CVE-2024-20693
CVE-2024-37315
CVE-2024-5464
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »