Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
i vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2014-1597
SQL injection vulnerability in the CMDB web application in synetics i-doit pro prior to 1.2.5 and i-doit open allows remote malicious users to execute arbitrary SQL commands via the objID parameter to the default URI.
I-doit I-doit 1.2.3
I-doit I-doit
I-doit I-doit 1.1.1
I-doit I-doit 1.1.2
I-doit I-doit 1.0.2
I-doit I-doit -
I-doit I-doit 1.0
I-doit I-doit 1.2.1
I-doit I-doit 1.2.2
1 EDB exploit
NA
CVE-2014-2231
Cross-site scripting (XSS) vulnerability in the API in synetics i-doit pro prior to 1.2.5 allows remote malicious users to inject arbitrary web script or HTML via a property title.
I-doit I-doit 1.1.2
I-doit I-doit 1.0
I-doit I-doit 1.1.1
I-doit I-doit 1.0.2
I-doit I-doit 1.2.1
I-doit I-doit 1.2.2
I-doit I-doit 1.2.3
I-doit I-doit
NA
CVE-2014-1237
Cross-site scripting (XSS) vulnerability in synetics i-doit pro prior to 1.2.4 allows remote malicious users to inject arbitrary web script or HTML via the call parameter.
I-doit I-doit 1.2.2
I-doit I-doit 1.2.1
I-doit I-doit
I-doit I-doit 1.1.2
I-doit I-doit 1.1.1
NA
CVE-2009-3452
WebCoreModule.ashx in RADactive I-Load prior to 2008.2.5.0 allows remote malicious users to obtain sensitive information via unspecified requests that trigger responses containing the saved-image folder pathname.
Radactive I-load 2008.2.3.2
Radactive I-load 2008.1.2.1
Radactive I-load 2008.1.2.0
Radactive I-load 1.7.7.6
Radactive I-load 1.7.7.5
Radactive I-load 1.7.6.0
Radactive I-load 1.7.5.2
Radactive I-load 1.7.0.8
Radactive I-load 1.7.0.7
Radactive I-load 1.6.3.3
Radactive I-load 1.6.3.2
Radactive I-load 2008.2.2.0
Radactive I-load 2008.2.1.1
Radactive I-load 2008.1.0.1
Radactive I-load 2008.1.0.0
Radactive I-load 1.7.7.11
Radactive I-load 1.7.7.2
Radactive I-load 1.7.7.1
Radactive I-load 1.7.0.12
Radactive I-load 1.7.0.11
Radactive I-load 1.7.0.4
Radactive I-load 1.7.0.3
NA
CVE-2009-3447
Unrestricted file upload vulnerability in RADactive I-Load prior to 2008.2.5.0 allows remote malicious users to execute arbitrary code by uploading a file with an executable extension, and then sending a request for a predictable filename during a short time window.
Radactive I-load 2008.2.3.1
Radactive I-load 2008.2.3.0
Radactive I-load 2008.1.1.0
Radactive I-load 2008.1.0.2
Radactive I-load 1.7.7.4
Radactive I-load 1.7.7.3
Radactive I-load 1.7.5.1
Radactive I-load 1.7.5.0
Radactive I-load 1.7.0.6
Radactive I-load 1.7.0.5
Radactive I-load 1.6.3.1
Radactive I-load 1.6.3
Radactive I-load 2008.2.1.0
Radactive I-load 2008.1.3.0
Radactive I-load 1.7.7.11
Radactive I-load 1.7.7.9
Radactive I-load 1.7.7.0
Radactive I-load 1.7.6.1
Radactive I-load 1.7.0.10
Radactive I-load 1.7.0.9
Radactive I-load 1.7.0.2
Radactive I-load 1.7.0.1
NA
CVE-2009-3451
Directory traversal vulnerability in WebCoreModule.ashx in RADactive I-Load prior to 2008.2.5.0 allows remote malicious users to read arbitrary files via unspecified vectors.
Radactive I-load 2008.2.3.0
Radactive I-load 2008.2.2.0
Radactive I-load 2008.1.3.0
Radactive I-load 2008.1.2.1
Radactive I-load 1.7.7.8
Radactive I-load 1.7.7.6
Radactive I-load 2008.2.1.1
Radactive I-load 2008.2.1.0
Radactive I-load 2008.1.0.0
Radactive I-load 1.7.7.11
Radactive I-load 1.7.7.9
Radactive I-load 1.7.7.1
Radactive I-load 1.7.7.0
Radactive I-load 1.7.0.11
Radactive I-load 1.7.0.10
Radactive I-load 1.7.0.2
Radactive I-load 1.7.0.1
Radactive I-load 2008.2.3.2
Radactive I-load 2008.2.3.1
Radactive I-load 2008.1.2.0
Radactive I-load 2008.1.1.0
Radactive I-load 1.7.7.5
NA
CVE-2013-1413
Multiple cross-site scripting (XSS) vulnerabilities in synetics i-doit open 0.9.9-7, i-doit pro 1.0 and previous versions, and i-doit pro 1.0.2 when the 'sanitize user input' flag is not enabled, allow remote malicious users to inject arbitrary web script or HTML via un...
I-doit I-doit
I-doit I-doit 1.0.2
I-doit I-doit 0.9.9
NA
CVE-2009-3450
Multiple cross-site scripting (XSS) vulnerabilities in WebCoreModule.ashx in RADactive I-Load prior to 2008.2.5.0 allow remote malicious users to inject arbitrary web script or HTML via parameters with names beginning with __ (underscore underscore) sequences, which are incompati...
Radactive I-load
Radactive I-load 2008.1.0.2
Radactive I-load 2008.1.0.1
Radactive I-load 2008.2.2.0
Radactive I-load 1.7.5.0
Radactive I-load 1.7.5.1
Radactive I-load 1.7.7.3
Radactive I-load 1.7.7.4
Radactive I-load 1.6.3.2
Radactive I-load 1.6.3.1
Radactive I-load 1.7.0.4
Radactive I-load 1.7.0.3
Radactive I-load 2008.1.3.0
Radactive I-load 2008.1.2.1
Radactive I-load 2008.2.4.0
Radactive I-load 2008.2.1.1
Radactive I-load 1.7.6.1
Radactive I-load 1.7.7.0
Radactive I-load 1.7.7.8
Radactive I-load 1.7.7.9
Radactive I-load 1.7.0.1
Radactive I-load 1.7.0.0
NA
CVE-2008-6423
Directory traversal vulnerability in passwiki.php in PassWiki 0.9.16 RC3 and previous versions allows remote malicious users to read arbitrary local files via a .. (dot dot) in the site_id parameter.
I-apps Passwiki 0.9.16
I-apps Passwiki 0.9.14
I-apps Passwiki 0.9.13
I-apps Passwiki 0.9.6
I-apps Passwiki 0.9.5
I-apps Passwiki 0.9.15
I-apps Passwiki 0.9.10
I-apps Passwiki 0.9.9
I-apps Passwiki 0.9.12
I-apps Passwiki 0.9.11
I-apps Passwiki 0.9.3
I-apps Passwiki
I-apps Passwiki 0.9.8
I-apps Passwiki 0.9.7
1 EDB exploit
5.3
CVSSv3
CVE-2017-1000234
I, Librarian version <=4.6 & 4.7 is vulnerable to Directory Enumeration in the jqueryFileTree.php resulting in attacker enumerating directories simply by navigating through the "dir" parameter
I-librarian I Librarian 4.7
I-librarian I Librarian
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
blind SQL injection
firmware
CVE-2006-4304
CVE-2024-32878
CVE-2024-31502
XSS
CVE-2024-3059
CVE-2024-33692
CVE-2024-3400
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »