Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
high-tech bridge sa vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2010-5048
Cross-site scripting (XSS) vulnerability in admin.jcomments.php in the JoomlaTune JComments (com_jcomments) component 2.1.0.0 for Joomla! allows remote authenticated users to inject arbitrary web script or HTML via the name parameter to index.php.
Joomlatune Com Jcomments 2.1.0.0
1 EDB exploit
NA
CVE-2010-5315
Multiple cross-site request forgery (CSRF) vulnerabilities in BEdita prior to 3.1 allow remote malicious users to hijack the authentication of administrators for requests that (1) create categories via a data array to news/saveCategories or (2) modify credentials via a data array...
Chialab \\& Channelweb Bedita
1 EDB exploit
NA
CVE-2010-2436
SQL injection vulnerability in modules/blog/index.php in AneCMS Blog 1.3 and possibly earlier allows remote malicious users to execute arbitrary SQL commands via the PATH_INFO.
Anecms Anecms Blog
Anecms Anecms Blog 1.0
1 EDB exploit
NA
CVE-2012-0973
Multiple SQL injection vulnerabilities in OSClass prior to 2.3.5 allow remote malicious users to execute arbitrary SQL commands via the sCategory parameter to index.php, which is not properly handled by the (1) osc_search_category_id function in oc-includes/osclass/helpers/hSearc...
Osclass Osclass
1 EDB exploit
NA
CVE-2012-0974
Multiple cross-site scripting (XSS) vulnerabilities in the getParam function in oc-includes/osclass/core/Params.php in OSClass prior to 2.3.5 allow remote malicious users to inject arbitrary web script or HTML via the (1) sCity, (2) sPattern, (3) sPriceMax, and (4) sPriceMin para...
Juan Ramon Osclass 2.0.1
Juan Ramon Osclass 2.0
Juan Ramon Osclass 1.2
Juan Ramon Osclass 2.3
Juan Ramon Osclass 2.2.3
Juan Ramon Osclass 2.2.2
Juan Ramon Osclass 2.2.1
Juan Ramon Osclass 2.2
Juan Ramon Osclass 2.3.3
Juan Ramon Osclass 2.3.1
Juan Ramon Osclass 2.1
Juan Ramon Osclass 2.0.2
Juan Ramon Osclass 1.1
Juan Ramon Osclass
Juan Ramon Osclass 2.3.2
Juan Ramon Osclass 2.1.1
Juan Ramon Osclass 2.0.3
1 EDB exploit
NA
CVE-2012-0988
Multiple cross-site scripting (XSS) vulnerabilities in config/dmsDefaults.php in KnowledgeTree 3.7.0.2 and possibly earlier allow remote malicious users to inject arbitrary web script or HTML via the PATH_INFO to (1) login.php, (2) admin.php, or (3) preferences.php.
Jam Warehouse Knowledgetree Open Source 3.7.0.2
1 EDB exploit
NA
CVE-2012-0989
Cross-site scripting (XSS) vulnerability in OneOrZero AIMS 2.8.0 Trial Edition build231211 and possibly earlier allows remote malicious users to inject arbitrary web script or HTML via the PATH_INFO to index.php.
Oneorzero Action And Information Management System 2.8.0
1 EDB exploit
NA
CVE-2012-0990
Cross-site request forgery (CSRF) vulnerability in admin/settings/update in DClassifieds 0.1 final allows remote malicious users to hijack the authentication of administrators for requests that modify account settings such as the administrator password or email via certain Settin...
Dclassifieds Dclassifieds 0.1
1 EDB exploit
NA
CVE-2012-1506
SQL injection vulnerability in the updateStatus function in lib/models/benefits/Hsp.php in OrangeHRM prior to 2.7 allows remote authenticated users to execute arbitrary SQL commands via the hspSummaryId parameter to plugins/ajaxCalls/haltResumeHsp.php. NOTE: some of these details...
Orangehrm Orangehrm 2.6.11.2
Orangehrm Orangehrm 2.6.11.3
Orangehrm Orangehrm 2.6.6
Orangehrm Orangehrm 2.6.10
Orangehrm Orangehrm 2.6.11
Orangehrm Orangehrm 2.6.4
Orangehrm Orangehrm 2.6.5
Orangehrm Orangehrm 2.6.0.1
Orangehrm Orangehrm 2.6.1
Orangehrm Orangehrm 2.6.2
Orangehrm Orangehrm 2.6.3
Orangehrm Orangehrm 2.6.9
Orangehrm Orangehrm 2.6.7
Orangehrm Orangehrm 2.6
Orangehrm Orangehrm 2.6.0
Orangehrm Orangehrm 2.6.12
Orangehrm Orangehrm
Orangehrm Orangehrm 2.6.8
Orangehrm Orangehrm 2.6.8.1
1 EDB exploit
NA
CVE-2010-2856
Cross-site scripting (XSS) vulnerability in admin/currencies.php in osCSS 1.2.2, and probably earlier versions, allows remote malicious users to inject arbitrary web script or HTML via the page parameter.
Oscss Oscss
Oscss Oscss 1.2.1
Oscss Oscss 1.0.1
Oscss Oscss 1.0
Oscss Oscss 1.2
Oscss Oscss 1.1
Oscss Oscss 1.2.2
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27977
IMAP
local users
CVE-2024-32038
CVE-2023-49963
CVE-2023-22869
CVE-2024-31497
local
CVE-2024-2961
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »