Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
text vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2008-3754
SQL injection vulnerability in trl.php in YourFreeWorld Stylish Text Ads Script allows remote malicious users to execute arbitrary SQL commands via the id parameter.
Yourfreeworld Stylish Text Ads Script
1 EDB exploit
NA
CVE-2014-5275
Multiple SQL injection vulnerabilities in includes/functions.php in Pro Chat Rooms Text Chat Rooms 8.2.0 allow remote authenticated users to execute arbitrary SQL commands via the (1) password, (2) email, or (3) id parameter.
Prochatrooms Text Chat Rooms 8.2.0
1 EDB exploit
5.4
CVSSv3
CVE-2023-0070
The ResponsiveVoice Text To Speech WordPress plugin prior to 1.7.7 does not validate and escape some of its shortcode attributes before outputting them back in a page/post where the shortcode is embed, which could allow users with the contributor role and above to perform Stored ...
Responsivevoice Responsivevoice Text To Speech
9.8
CVSSv3
CVE-2022-4099
The Joy Of Text Lite WordPress plugin prior to 2.3.1 does not properly sanitise and escape some parameters before using them in SQL statements accessible to unauthenticated users, leading to unauthenticated SQL injection
Getcloudsms Joy Of Text Lite
NA
CVE-2006-6461
tr1.php in Yourfreeworld Stylish Text Ads Script allows remote malicious users to obtain the installation path via an invalid id parameter, which leaks the path in an error message. NOTE: this issue might be resultant from CVE-2006-2508.
Yourfreeworld Stylish Text Ads Script
5.4
CVSSv3
CVE-2023-3387
The Lana Text to Image plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'lana_text_to_image' and 'lana_text_to_img' shortcode in versions up to, and including, 1.0.0 due to insufficient input sanitization and output escaping on user su...
Lanacodes Lana Text To Image
NA
CVE-2009-4206
SQL injection vulnerability in admin.link.modify.php in Million Dollar Text Links 1.0 and previous versions allows remote malicious users to execute arbitrary SQL commands via the id parameter.
Cmsnx Million Dollar Text Links
1 EDB exploit
NA
CVE-2006-2508
SQL injection vulnerability in tr1.php in YourFreeWorld.com Stylish Text Ads Script allows remote malicious users to execute arbitrary SQL commands via the id parameter, possibly involving an attack vector using advertise.php.
Yourfreeworld Stylish Text Ads Script
7.5
CVSSv3
CVE-2020-14040
The x/text package prior to 0.3.3 for Go has a vulnerability in encoding/unicode that could lead to the UTF-16 decoder entering an infinite loop, causing the program to crash or run out of memory. An attacker could provide a single byte to a UTF16 decoder instantiated with UseBOM...
Golang Text
Fedoraproject Fedora 32
3 Github repositories
NA
CVE-2008-4885
SQL injection vulnerability in tr1.php in YourFreeWorld Scrolling Text Ads Script allows remote malicious users to execute arbitrary SQL commands via the id parameter.
Yourfreeworld Scrolling Text Ads Script
2 EDB exploits
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3012
CVE-2024-30200
XXE
CVE-2023-24955
CVE-2023-42931
CVE-2024-29231
remote code execution
cross-site scripting
CVE-2024-0677
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »