Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
high-tech bridge sa vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2012-0992
interface/fax/fax_dispatch.php in OpenEMR 4.1.0 allows remote authenticated users to execute arbitrary commands via shell metacharacters in the file parameter.
Openemr Openemr 4.1.0
1 EDB exploit
NA
CVE-2011-5072
Multiple SQL injection vulnerabilities in Support Incident Tracker (aka SiT!) prior to 3.65 allow remote malicious users to execute arbitrary SQL commands via the (1) start parameter to portal/kb.php; (2) contractid parameter to contract_add_service.php; (3) id parameter to edit_...
Sitracker Support Incident Tracker 3.50
Sitracker Support Incident Tracker 3.45
Sitracker Support Incident Tracker 3.41
Sitracker Support Incident Tracker 3.40
Sitracker Support Incident Tracker 3.63
Sitracker Support Incident Tracker 3.62
Sitracker Support Incident Tracker 3.30
Sitracker Support Incident Tracker 3.24
Sitracker Support Incident Tracker 3.60
Sitracker Support Incident Tracker 3.51
Sitracker Support Incident Tracker 3.36
Sitracker Support Incident Tracker 3.33
Sitracker Support Incident Tracker 3.31
Sitracker Support Incident Tracker 3.23
Sitracker Support Incident Tracker 3.22
Sitracker Support Incident Tracker 3.35
Sitracker Support Incident Tracker 3.61
Sitracker Support Incident Tracker 3.6
Sitracker Support Incident Tracker 3.32
Sitracker Support Incident Tracker 3.22pl1
Sitracker Support Incident Tracker 3.21
Sitracker Support Incident Tracker
1 EDB exploit
NA
CVE-2011-5074
Multiple cross-site request forgery (CSRF) vulnerabilities in Support Incident Tracker (aka SiT!) prior to 3.65 allow remote malicious users to hijack the authentication of administrators for requests that change administrator email, add a new administrator, or insert arbitrary s...
Sitracker Support Incident Tracker 3.35
Sitracker Support Incident Tracker 3.33
Sitracker Support Incident Tracker 3.32
Sitracker Support Incident Tracker 3.31
Sitracker Support Incident Tracker 3.60
Sitracker Support Incident Tracker 3.6
Sitracker Support Incident Tracker 3.51
Sitracker Support Incident Tracker 3.50
Sitracker Support Incident Tracker 3.22pl1
Sitracker Support Incident Tracker 3.22
Sitracker Support Incident Tracker 3.21
Sitracker Support Incident Tracker 3.63
Sitracker Support Incident Tracker
Sitracker Support Incident Tracker 3.62
Sitracker Support Incident Tracker 3.41
Sitracker Support Incident Tracker 3.36
Sitracker Support Incident Tracker 3.30
Sitracker Support Incident Tracker 3.24
Sitracker Support Incident Tracker 3.23
Sitracker Support Incident Tracker 3.45
Sitracker Support Incident Tracker 3.61
Sitracker Support Incident Tracker 3.40
1 EDB exploit
NA
CVE-2011-1047
Multiple SQL injection vulnerabilities in VastHTML Forum Server (aka ForumPress) plugin 1.6.1 and 1.6.5 for WordPress allow remote malicious users to execute arbitrary SQL commands via the (1) search_max parameter in a search action to index.php, which is not properly handled by ...
Vasthtml Forum Server 1.6.5
Vasthtml Forum Server 1.6.1
1 EDB exploit
NA
CVE-2010-0817
Cross-site scripting (XSS) vulnerability in _layouts/help.aspx in Microsoft SharePoint Server 2007 12.0.0.6421 and possibly earlier, and SharePoint Services 3.0 SP1 and SP2, versions, allows remote malicious users to inject arbitrary web script or HTML via the cid0 parameter.
Microsoft Sharepoint Server 2007
Microsoft Sharepoint Services 3.0
1 EDB exploit
NA
CVE-2010-4851
Multiple SQL injection vulnerabilities in Eclime 1.1.2b allow remote malicious users to execute arbitrary SQL commands via the (1) ref or (2) poll_id parameter to index.php, or the (3) country parameter to create_account.php.
Eclime Eclime 1.1.2b
1 EDB exploit
NA
CVE-2010-4863
Cross-site scripting (XSS) vulnerability in admin/changedata.php in GetSimple CMS 2.01 allows remote malicious users to inject arbitrary web script or HTML via the post-title parameter.
Get-simple Getsimple Cms 2.01
1 EDB exploit
NA
CVE-2010-4870
SQL injection vulnerability in index.php in BloofoxCMS 0.3.5 allows remote malicious users to execute arbitrary SQL commands via the gender parameter.
Bloofox Bloofoxcms 0.3.5
1 EDB exploit
NA
CVE-2010-4882
Cross-site scripting (XSS) vulnerability in autocms.php in Auto CMS 1.6 allows remote malicious users to inject arbitrary web script or HTML via the sitetitle parameter.
Ventics Auto Cms 1.6
1 EDB exploit
NA
CVE-2010-4963
SQL injection vulnerability in folder/list in Hulihan BXR 0.6.8 allows remote malicious users to execute arbitrary SQL commands via the order_by parameter.
Hulihanapplications Hulihan Bxr 0.6.8
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
SSTI
CVE-2024-35863
CVE-2024-35910
man-in-the-middle
CVE-2024-35912
CVE-2024-25742
LFI
CVE-2024-32002
CVE-2024-22120
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
10
NEXT »