Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
high-tech bridge sa vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2011-0407
SQL injection vulnerability in the store function in _phenotype/system/class/PhenoTypeDataObject.class.php in Phenotype CMS 3.0 allows remote malicious users to execute arbitrary SQL commands via a crafted URI, as demonstrated by Gallery/gal_id/1/image1,1.html. NOTE: some of thes...
Phenotype-cms Phenotype Cms 3.0
1 EDB exploit
NA
CVE-2011-4162
The (1) AddUser, (2) AddUserEx, (3) RemoveUser, (4) RemoveUserByGuide, (5) RemoveUserEx, and (6) RemoveUserRegardless methods in HP Protect Tools Device Access Manager (PTDAM) prior to 6.1.0.1 allow remote malicious users to execute arbitrary code or cause a denial of service (he...
Hp Protecttools Device Access Manager 6.0.0.9
Hp Protecttools Device Access Manager
Hp Protecttools Device Access Manager 6.0.0.10
1 EDB exploit
NA
CVE-2010-4780
SQL injection vulnerability in the check_banlist function in includes/sessions.php in Enano CMS 1.1.7pl1; 1.0.6pl2; and possibly other versions prior to 1.1.8, 1.0.6pl3, and 1.1.7pl2 allows remote malicious users to execute arbitrary SQL commands via the email parameter to index....
Enanocms Enano Cms 1.1.4
Enanocms Enano Cms 1.1.3
Enanocms Enano Cms 0.8.2
Enanocms Enano Cms 0.8.3
Enanocms Enano Cms 1.0.2b1
Enanocms Enano Cms 1.0.3
Enanocms Enano Cms
Enanocms Enano Cms 1.1.6
Enanocms Enano Cms 1.1.5
Enanocms Enano Cms 1.0.6
Enanocms Enano Cms 0.8.1
Enanocms Enano Cms 1.0
Enanocms Enano Cms 1.0.1
Enanocms Enano Cms 1.0.2
Enanocms Enano Cms 1.1.2
Enanocms Enano Cms 1.1.1
Enanocms Enano Cms 0.8.4
Enanocms Enano Cms 0.9.1
Enanocms Enano Cms 1.0.4
Enanocms Enano Cms 1.0.5
Enanocms Enano Cms 1.1.7
Enanocms Enano Cms 0.9.2
1 EDB exploit
NA
CVE-2010-4781
index.php in Enano CMS 1.1.7pl1, and possibly other versions prior to 1.1.8, 1.0.6pl3, and 1.1.7pl2, allows remote malicious users to obtain sensitive information via a crafted title parameter, which reveals the installation path in an error message.
Enanocms Enano Cms 1.1.4
Enanocms Enano Cms 1.1.3
Enanocms Enano Cms 0.8.2
Enanocms Enano Cms 0.8.3
Enanocms Enano Cms 1.0.2
Enanocms Enano Cms 1.0.2b1
Enanocms Enano Cms
Enanocms Enano Cms 1.1.7
Enanocms Enano Cms 1.0.6
Enanocms Enano Cms 0.9.2
Enanocms Enano Cms 0.9.3
Enanocms Enano Cms 1.0.5
Enanocms Enano Cms 1.1.6
Enanocms Enano Cms 1.1.5
Enanocms Enano Cms 0.8.1
Enanocms Enano Cms 1.0
Enanocms Enano Cms 1.0.1
Enanocms Enano Cms 1.1.2
Enanocms Enano Cms 1.1.1
Enanocms Enano Cms 0.8.4
Enanocms Enano Cms 0.9.1
Enanocms Enano Cms 1.0.3
1 EDB exploit
NA
CVE-2011-1047
Multiple SQL injection vulnerabilities in VastHTML Forum Server (aka ForumPress) plugin 1.6.1 and 1.6.5 for WordPress allow remote malicious users to execute arbitrary SQL commands via the (1) search_max parameter in a search action to index.php, which is not properly handled by ...
Vasthtml Forum Server 1.6.5
Vasthtml Forum Server 1.6.1
1 EDB exploit
NA
CVE-2015-3986
Cross-site request forgery (CSRF) vulnerability in the TheCartPress eCommerce Shopping Cart (aka The Professional WordPress eCommerce Plugin) plugin for WordPress prior to 1.3.9.3 allows remote malicious users to hijack the authentication of administrators for requests that condu...
Thecartpress Thecartpress Ecommerce Shopping Cart
1 EDB exploit
NA
CVE-2012-2274
Cross-site scripting (XSS) vulnerability in pivotx/ajaxhelper.php in PivotX 2.3.2 and previous versions allows remote malicious users to inject arbitrary web script or HTML via the file parameter.
Pivotx Pivotx 2.2.2
Pivotx Pivotx 2.2.1
Pivotx Pivotx 2.1.1
Pivotx Pivotx 2.1.0
Pivotx Pivotx
Pivotx Pivotx 2.2.3
Pivotx Pivotx 2.2.0
Pivotx Pivotx 2.1.2
1 EDB exploit
NA
CVE-2010-2003
Cross-site scripting (XSS) vulnerability in misc/get_admin.php in Advanced Poll 2.08 allows remote malicious users to inject arbitrary web script or HTML via the mysql_host parameter.
Proxy2 Advanced Poll 2.08
1 EDB exploit
NA
CVE-2013-3081
SQL injection vulnerability in the checkEmailFormat function in plugins/jojo_core/classes/Jojo.php in Jojo prior to 1.2.2 allows remote malicious users to execute arbitrary SQL commands via the X-Forwarded-For HTTP header to /articles/test/.
Jojocms Jojo-cms
Jojocms Jojo-cms 1.2
Jojocms Jojo-cms 1.1
1 EDB exploit
NA
CVE-2010-4401
languages.inc.php in DynPG CMS 4.2.0 allows remote malicious users to obtain sensitive information via a direct request, which reveals the installation path in an error message.
Dynpg Dynpg 4.2.0
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-30924
CVE-2024-3400
overflow
CVE-2024-23528
CVE-2024-21338
CVE-2024-3818
CVE-2024-23535
NULL pointer dereference
elevation of privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
8
9
10
NEXT »