Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
liquidworm vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2014-4718
Multiple cross-site request forgery (CSRF) vulnerabilities in Lunar CMS prior to 3.3-3 allow remote malicious users to hijack the authentication of administrators for requests that (1) add Super users via a request to admin/user_create.php or conduct cross-site scripting (XSS) at...
Lunarcms Lunar Cms 3.3
Lunarcms Lunar Cms 3.2
Lunarcms Lunar Cms 3.1
Lunarcms Lunar Cms
1 EDB exploit
9.8
CVSSv3
CVE-2016-1606
Multiple stack-based buffer overflows in COM objects in Micro Focus Rumba 9.4.x prior to 9.4 HF 13960 allow remote malicious users to execute arbitrary code via (1) the NetworkName property value to ObjectXSNAConfig.ObjectXSNAConfig in iconfig.dll, (2) the CPName property value t...
Microfocus Rumba 9.4
1 EDB exploit
NA
CVE-2014-9101
Multiple cross-site request forgery (CSRF) vulnerabilities in Oxwall 1.7.0 (build 7907 and 7906) and SkaDate Lite 2.0 (build 7651) allow remote malicious users to hijack the authentication of administrators for requests that conduct cross-site scripting (XSS) attacks or possibly ...
Skalfa Skadate Lite 2.0
Oxwall Oxwall 1.7.0
1 EDB exploit
NA
CVE-2014-9344
Cross-site request forgery (CSRF) vulnerability in Snowfox CMS prior to 1.0.10 allows remote malicious users to hijack the authentication of administrators for requests that add a new admin account via a submit action in the admin/accounts/create uri to snowfox/.
Globiz Solutions Snowfox Content Management System
1 EDB exploit
NA
CVE-2014-9350
TP-Link TL-WR740N 4 with firmware 3.17.0 Build 140520, 3.16.6 Build 130529, and 3.16.4 Build 130205 allows remote malicious users to cause a denial of service (httpd crash) via vectors involving a "new" value in the isNew parameter to PingIframeRpm.htm.
Tp-link Tl-wr740n Firmware 3.16.6
Tp-link Tl-wr740n Firmware 3.16.4
Tp-link Tl-wr740n Firmware 3.17.0
Tp-link Tl-wr740n 4
1 EDB exploit
NA
CVE-2015-1058
Multiple cross-site scripting (XSS) vulnerabilities in AdaptCMS 3.0.3 allow remote malicious users to inject arbitrary web script or HTML via the (1) data[Category][title] parameter to admin/categories/add, (2) data[Field][title] parameter to admin/fields/ajax_fields/, (3) name p...
Insanevisions Adaptcms 3.0.3
1 EDB exploit
NA
CVE-2012-3836
Multiple cross-site scripting (XSS) vulnerabilities in Baby Gekko prior to 1.2.0 allow remote malicious users to inject arbitrary web script or HTML via the (1) groupname parameter in a savecategory in the users module; (2) virtual_filename, (3) branch, (4) contact_person, (5) st...
Babygekko Baby Gekko 1.1.3
Babygekko Baby Gekko 1.1.1
Babygekko Baby Gekko 0.98
Babygekko Baby Gekko 0.90
Babygekko Baby Gekko 1.1.0
Babygekko Baby Gekko 1.0.1
Babygekko Baby Gekko 1.0.0
Babygekko Baby Gekko 0.99
Babygekko Baby Gekko 1.1.4
Babygekko Baby Gekko 1.1.2
Babygekko Baby Gekko 0.91
Babygekko Baby Gekko
1 EDB exploit
NA
CVE-2012-3837
Multiple cross-site scripting (XSS) vulnerabilities in apps/users/registration.template.php in Baby Gekko 1.2.0 and previous versions allow remote malicious users to inject arbitrary web script or HTML via the (1) username, (2) email_address, (3) password, (4) password_verify, (5...
Babygekko Baby Gekko 0.90
Babygekko Baby Gekko 1.1.5
Babygekko Baby Gekko
Babygekko Baby Gekko 1.0.0
Babygekko Baby Gekko 0.98
Babygekko Baby Gekko 1.1.3
Babygekko Baby Gekko 1.1.2
Babygekko Baby Gekko 1.1.1
Babygekko Baby Gekko 1.1.0
Babygekko Baby Gekko 1.1.4
Babygekko Baby Gekko 1.0.1
Babygekko Baby Gekko 0.99
Babygekko Baby Gekko 0.91
1 EDB exploit
NA
CVE-2012-3838
Gekko prior to 1.2.0 allows remote malicious users to obtain the installation path via a direct request to (1) admin/templates/babygekko/index.php or (2) templates/html5demo/index.php.
Babygekko Baby Gekko 1.0.0
Babygekko Baby Gekko 0.99
Babygekko Baby Gekko 0.98
Babygekko Baby Gekko 0.91
Babygekko Baby Gekko 1.1.1
Babygekko Baby Gekko 1.0.1
Babygekko Baby Gekko 0.90
Babygekko Baby Gekko 1.1.4
Babygekko Baby Gekko 1.1.3
Babygekko Baby Gekko 1.1.2
Babygekko Baby Gekko 1.1.0
Babygekko Baby Gekko
1 EDB exploit
NA
CVE-2014-10008
Multiple cross-site request forgery (CSRF) vulnerabilities in Stark CRM 1.0 allow remote malicious users to hijack the authentication of administrators for requests that add (1) an administrator via a crafted request to the admin page, (2) an agent via a crafted request to the ag...
Iwcn Stark Crm 1.0
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-21111
CVE-2024-32884
IDOR
CVE-2023-1000
CVE-2024-33260
CVE-2024-3682
reflected XSS
race condition
CVE-2024-3400
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
2
3
4
5
6
7
8
9
10
NEXT »