Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
aas9 vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2015-1442
SQL injection vulnerability in views/zero_transact_user.php in the administrative backend in ZeroCMS 1.3.3, 1.3.2, and previous versions allows remote authenticated users to execute arbitrary SQL commands via the user_id parameter in a Modify Account action. NOTE: The article_id ...
Aas9 Zerocms
Aas9 Zerocms 1.3.2
7.5
CVSSv2
CVE-2014-4194
SQL injection vulnerability in zero_transact_article.php in ZeroCMS 1.0 allows remote malicious users to execute arbitrary SQL commands via the article_id parameter in a Submit Comment action.
Aas9 Zerocms 1.0
1 EDB exploit
4.3
CVSSv2
CVE-2014-4710
Cross-site scripting (XSS) vulnerability in zero_user_account.php in ZeroCMS 1.0 allows remote malicious users to inject arbitrary web script or HTML via the Full Name field.
Aas9 Zerocms 1.0
1 EDB exploit
4.3
CVSSv2
CVE-2014-4195
Cross-site scripting (XSS) vulnerability in zero_view_article.php in ZeroCMS 1.0 allows remote malicious users to inject arbitrary web script or HTML via the article_id parameter.
Aas9 Zerocms 1.0
7.5
CVSSv2
CVE-2014-4034
SQL injection vulnerability in zero_view_article.php in ZeroCMS 1.0 allows remote malicious users to execute arbitrary SQL commands via the article_id parameter.
Aas9 Zerocms 1.0
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-24955
man-in-the-middle
dos
CVE-2024-2818
CVE-2024-30584
CVE-2024-31134
camera
CVE-2023-45866
CVE-2024-30585
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started