Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
validation vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2006-0135
SQL injection vulnerability in login.php in TheWebForum (twf) 1.2.1 allows remote malicious users to execute arbitrary SQL commands and bypass login authentication via the username parameter (aka the u variable).
Thewebforum Thewebforum
1 EDB exploit
NA
CVE-2006-0110
Cross-site scripting (XSS) vulnerability in escribir.php in Foro Domus 2.10 allows remote malicious users to inject arbitrary web script via the email parameter.
Javier Suarez Sanz Foro Domus 2.10
1 EDB exploit
NA
CVE-2000-0177
DNSTools CGI applications allow remote malicious users to execute arbitrary commands via shell metacharacters.
Dnstools Software Dnstools
1 EDB exploit
NA
CVE-2004-0894
LSASS (Local Security Authority Subsystem Service) of Windows 2000 Server and Windows Server 2003 does not properly validate connection information, which allows local users to gain privileges via a specially-designed program.
Microsoft Windows 2000
Microsoft Windows 2003 Server Enterprise 64-bit
Microsoft Windows 2003 Server Enterprise
Microsoft Windows 2003 Server Standard
Microsoft Windows 2003 Server Web
Microsoft Windows Xp
Microsoft Windows 2003 Server R2
Microsoft Windows 2003 Server Datacenter 64-bit
1 EDB exploit
NA
CVE-2008-0173
SQL injection vulnerability in Gforge 4.6.99 and previous versions allows remote malicious users to execute arbitrary SQL commands via unspecified parameters, related to RSS exports.
Gforge Gforge
NA
CVE-2004-1601
Directory traversal vulnerability in index.php in CoolPHP 1.0-stable allows remote malicious users to access arbitrary files and execute local PHP scripts via a .. (dot dot) in the op parameter.
Coolphp Coolphp Web Portal 1.0 Stable
1 EDB exploit
7.4
CVSSv3
CVE-2018-0434
A vulnerability in the Zero Touch Provisioning feature of the Cisco SD-WAN Solution could allow an unauthenticated, remote malicious user to gain unauthorized access to sensitive data by using an invalid certificate. The vulnerability is due to insufficient certificate validation...
Cisco Vedge 100 Firmware
Cisco Vedge 1000 Firmware
Cisco Vedge 2000 Firmware
Cisco Vedge 5000 Firmware
Cisco Vmanage Network Management System -
7.4
CVSSv3
CVE-2022-20860
A vulnerability in the SSL/TLS implementation of Cisco Nexus Dashboard could allow an unauthenticated, remote malicious user to alter communications with associated controllers or view sensitive information. This vulnerability exists because SSL server certificates are not valida...
Cisco Nexus Dashboard
8.8
CVSSv3
CVE-2022-27644
This vulnerability allows network-adjacent malicious users to compromise the integrity of downloaded information on affected installations of NETGEAR R6700v3 1.0.4.120_10.0.91 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within t...
Netgear R6400 Firmware
Netgear R6700 Firmware
Netgear R6900p Firmware
Netgear R7000 Firmware
Netgear R7000p Firmware
Netgear R7850 Firmware
Netgear R7960p Firmware
Netgear R8000 Firmware
Netgear R8000p Firmware
Netgear Rax200 Firmware
Netgear Rax75 Firmware
Netgear Rax80 Firmware
Netgear Rs400 Firmware
Netgear Cbr40 Firmware
Netgear Lbr1020 Firmware
Netgear Lbr20 Firmware
Netgear Rbr10 Firmware
Netgear Rbr20 Firmware
Netgear Rbr40 Firmware
Netgear Rbr50 Firmware
Netgear Rbs10 Firmware
Netgear Rbs20 Firmware
5.4
CVSSv3
CVE-2023-3187
A vulnerability, which was classified as critical, has been found in PHPGurukul Teachers Record Management System 1.0. Affected by this issue is some unknown functionality of the file /changeimage.php of the component Profile Picture Handler. The manipulation of the argument newp...
Teachers Record Management System Project Teachers Record Management System 1.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-30924
CVE-2024-3400
overflow
CVE-2024-23528
CVE-2024-21338
CVE-2024-3818
CVE-2024-23535
NULL pointer dereference
elevation of privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
4
5
6
7
8
9
10
NEXT »