Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
liquidworm vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2014-5455
Unquoted Windows search path vulnerability in the ptservice service prior to PrivateTunnel version 3.0 (Windows) and OpenVPN Connect version 3.1 (Windows) allows local users to gain privileges via a crafted program.exe file in the %SYSTEMDRIVE% folder.
Openvpn Openvpn 2.1.28.0
Privatetunnel Privatetunnel 2.3.8
1 EDB exploit
2 Github repositories
NA
CVE-2011-1100
Multiple SQL injection vulnerabilities in admin/index.php in Pixelpost 1.7.3 allow remote authenticated users to execute arbitrary SQL commands via the (1) findfid, (2) id, (3) selectfcat, (4) selectfmon, or (5) selectftag parameter in an images action.
Pixelpost Pixelpost 1.7.3
1 EDB exploit
NA
CVE-2010-4349
admin/upgrade_unattended.php in MantisBT prior to 1.2.4 allows remote malicious users to obtain sensitive information via an invalid db_type parameter, which reveals the installation path in an error message, related to an unsafe call by MantisBT to a function in the ADOdb Librar...
Mantisbt Mantisbt 1.1.6
Mantisbt Mantisbt 1.1.7
Mantisbt Mantisbt 1.0.5
Mantisbt Mantisbt 1.0.3
Mantisbt Mantisbt 0.19.4
Mantisbt Mantisbt 0.18.0
Mantisbt Mantisbt 1.0.0a1
Mantisbt Mantisbt 1.0.0a2
Mantisbt Mantisbt 1.1.8
Mantisbt Mantisbt 1.2.0
Mantisbt Mantisbt 1.0.6
Mantisbt Mantisbt 1.0.7
Mantisbt Mantisbt 1.0.4
Mantisbt Mantisbt
Mantisbt Mantisbt 0.19.3
Mantisbt Mantisbt 0.19.1
Mantisbt Mantisbt 0.19.2
Mantisbt Mantisbt 1.0.0
Mantisbt Mantisbt 0.19.5
Mantisbt Mantisbt 1.1.1
Mantisbt Mantisbt 1.1.4
Mantisbt Mantisbt 1.1.5
1 EDB exploit
NA
CVE-2005-3747
Unspecified vulnerability in Jetty prior to 5.1.6 allows remote malicious users to obtain source code of JSP pages, possibly involving requests for .jsp files with URL-encoded backslash ("%5C") characters. NOTE: this might be the same issue as CVE-2006-2758.
Mortbay Jetty 1.0.1
Mortbay Jetty 1.1
Mortbay Jetty 3.0.a9
Mortbay Jetty 3.0.a4
Mortbay Jetty 3.0.a1
Mortbay Jetty 3.0.0
Mortbay Jetty 2.1.b0
Mortbay Jetty 2.1.1
Mortbay Jetty 2.1.6
Mortbay Jetty 2.2
Mortbay Jetty 1.3.1
Mortbay Jetty 1.3.2
Mortbay Jetty 2.0
Mortbay Jetty 2.0.0
Mortbay Jetty 2.4.1
Mortbay Jetty 2.4.0
Mortbay Jetty 3.0.a92
Mortbay Jetty 3.0.a91
Mortbay Jetty 2.2.0
Mortbay Jetty 2.2.7
Mortbay Jetty 2.2.8
Mortbay Jetty 4.2.21
1 EDB exploit
NA
CVE-2014-10009
Multiple cross-site scripting (XSS) vulnerabilities in Stark CRM 1.0 allow remote malicious users to inject arbitrary web script or HTML via the (1) first_name, (2) last_name, or (3) notes parameter to the client page; (4) insu_name or (5) price parameter to the add_insurance_cat...
Iwcn Stark Crm 1.0
1 EDB exploit
NA
CVE-2014-10035
Multiple cross-site scripting (XSS) vulnerabilities in the admin area in couponPHP prior to 1.2.0 allow remote administrators to inject arbitrary web script or HTML via the (1) sEcho parameter to comments_paginate.php or (2) stores_paginate.php or the (3) affiliate_url, (4) descr...
Couponphp Couponphp
1 EDB exploit
NA
CVE-2015-1423
Multiple SQL injection vulnerabilities in Gecko CMS 2.2 and 2.3 allow remote administrators to execute arbitrary SQL commands via the (1) jak_delete_log[] or (2) ssp parameter to admin/index.php.
Jakweb Gecko Cms 2.2
Jakweb Gecko Cms 2.3
1 EDB exploit
NA
CVE-2015-1576
Multiple SQL injection vulnerabilities in u5CMS prior to 3.9.4 allow remote malicious users to execute arbitrary SQL commands via the name parameter to (1) copy2.php, (2) localize.php, (3) metai.php, (4) nc.php, (5) new2.php, or (6) rename2.php in u5admin/; (7) c parameter to u5a...
Yuba U5cms
1 EDB exploit
NA
CVE-2012-3836
Multiple cross-site scripting (XSS) vulnerabilities in Baby Gekko prior to 1.2.0 allow remote malicious users to inject arbitrary web script or HTML via the (1) groupname parameter in a savecategory in the users module; (2) virtual_filename, (3) branch, (4) contact_person, (5) st...
Babygekko Baby Gekko 1.1.3
Babygekko Baby Gekko 1.1.1
Babygekko Baby Gekko 0.98
Babygekko Baby Gekko 0.90
Babygekko Baby Gekko 1.1.0
Babygekko Baby Gekko 1.0.1
Babygekko Baby Gekko 1.0.0
Babygekko Baby Gekko 0.99
Babygekko Baby Gekko 1.1.4
Babygekko Baby Gekko 1.1.2
Babygekko Baby Gekko 0.91
Babygekko Baby Gekko
1 EDB exploit
NA
CVE-2012-3837
Multiple cross-site scripting (XSS) vulnerabilities in apps/users/registration.template.php in Baby Gekko 1.2.0 and previous versions allow remote malicious users to inject arbitrary web script or HTML via the (1) username, (2) email_address, (3) password, (4) password_verify, (5...
Babygekko Baby Gekko 0.90
Babygekko Baby Gekko 1.1.5
Babygekko Baby Gekko
Babygekko Baby Gekko 1.0.0
Babygekko Baby Gekko 0.98
Babygekko Baby Gekko 1.1.3
Babygekko Baby Gekko 1.1.2
Babygekko Baby Gekko 1.1.1
Babygekko Baby Gekko 1.1.0
Babygekko Baby Gekko 1.1.4
Babygekko Baby Gekko 1.0.1
Babygekko Baby Gekko 0.99
Babygekko Baby Gekko 0.91
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2006-4304
CVE-2024-4240
arbitrary
CVE-2024-31601
XSS
CVE-2023-20198
CVE-2024-4256
CVE-2024-3342
encryption
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
3
4
5
6
7
8
9
10
NEXT »