Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
injection vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2011-4026
SQL injection vulnerability in thanks.php in NexusPHP 1.5 allows remote malicious users to execute arbitrary SQL commands via the id parameter.
Xia Zuojie Nexusphp 1.5
1 EDB exploit
NA
CVE-2009-2178
Cross-site scripting (XSS) vulnerability in website.php in phpDatingClub 3.7 allows remote malicious users to inject arbitrary web script or HTML via the page parameter.
W2b Phpdatingclub 3.7
1 EDB exploit
9.8
CVSSv3
CVE-2018-5979
SQL Injection exists in Wchat Fully Responsive PHP AJAX Chat Script 1.5 via the login.php User field.
Wchat Project Wchat 1.5
1 EDB exploit
NA
CVE-2015-1517
SQL injection vulnerability in Piwigo prior to 2.7.4, when all filters are activated, allows remote authenticated users to execute arbitrary SQL commands via the filter_level parameter in a "Refresh photo set" action in the batch_manager page to admin.php.
Piwigo Piwigo
1 EDB exploit
9.8
CVSSv3
CVE-2018-5978
SQL Injection exists in Facebook Style Php Ajax Chat Zechat 1.5 via the login.php User field.
Zechat Project Zechat 1.5
1 EDB exploit
9.8
CVSSv3
CVE-2018-5984
SQL Injection exists in the Tumder (An Arcade Games Platform) 2.1 component for Joomla! via the PATH_INFO to the category/ URI.
Tumder Project Tumder 2.1
1 EDB exploit
NA
CVE-2013-4789
SQL injection vulnerability in modules/rss/rss.php in Cotonti prior to 0.9.14 allows remote malicious users to execute arbitrary SQL commands via the "c" parameter to index.php.
Cotonti Cotonti Siena 0.9.7
Cotonti Cotonti Siena 0.9.8
Cotonti Cotonti Siena 0.9.9
Cotonti Cotonti Siena 0.9.0
Cotonti Cotonti Siena 0.9.10
Cotonti Cotonti Siena 0.9.3
Cotonti Cotonti Siena 0.9.5
Cotonti Cotonti Siena 0.9.11
Cotonti Cotonti Siena 0.9.12
Cotonti Cotonti Siena
Cotonti Cotonti Siena 0.9.2
Cotonti Cotonti Siena 0.9.1
Cotonti Cotonti Siena 0.9.4
Cotonti Cotonti Siena 0.9.6
1 EDB exploit
NA
CVE-2010-42783
Pandora FMS versions 3.1 and below suffer from authentication bypass, os command injection, remote SQL injection, remote file inclusion and path traversal vulnerabilities.
NA
CVE-2010-42792
Pandora FMS versions 3.1 and below suffer from authentication bypass, os command injection, remote SQL injection, remote file inclusion and path traversal vulnerabilities.
NA
CVE-2010-42804
Pandora FMS versions 3.1 and below suffer from authentication bypass, os command injection, remote SQL injection, remote file inclusion and path traversal vulnerabilities.
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-21991
CVE-2024-32674
path traversal
CVE-2023-21987
denial of service
dos
CVE-2024-4647
CVE-2024-25519
CVE-2024-33612
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »