Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
aliaksandr hartsuyeu vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2006-0167
SQL injection vulnerability in MyPhPim 01.05 allows remote malicious users to execute arbitrary SQL commands via the (1) cal_id parameter in calendar.php3 and the (2) password field on the login page.
Myphpim Myphpim 01.05
2 EDB exploits
NA
CVE-2006-1569
Multiple SQL injection vulnerabilities in RedCMS 0.1 allow remote malicious users to execute arbitrary SQL commands via the (1) username or (2) password parameters to (a) login.php or (b) register.php; or (3) u parameter to (c) profile.php.
Redcms Redcms 0.1
2 EDB exploits
NA
CVE-2006-1334
Multiple SQL injection vulnerabilities in Maian Weblog 2.0 allow remote malicious users to execute arbitrary SQL commands via the (1) entry and (2) email parameters to (a) print.php and (b) mail.php.
Maian Script World Maian Weblog
2 EDB exploits
NA
CVE-2006-1234
SQL injection vulnerability in index.php in DSCounter 1.2, with magic_quotes_gpc disabled, allows remote malicious users to execute arbitrary SQL commands via the X-Forwarded-For field (HTTP_X_FORWARDED_FOR environment variable) in an HTTP header.
Dsportal Dscounter 1.2
1 EDB exploit
1 Github repository
NA
CVE-2006-1543
Multiple SQL injection vulnerabilities in vscripts (aka Kuba Kunkiewicz) VNews 1.2 allow remote malicious users to execute arbitrary SQL commands via the (1) loginvar parameter in (a) admin/admin.php, and the (2) news and (3) nom parameters in (b) news.php.
Vscripts Vnews 1.2
1 EDB exploit
NA
CVE-2010-4783
Multiple cross-site scripting (XSS) vulnerabilities in index.php in PHP Web Scripts Easy Banner Free 2009.05.18, when magic_quotes_gpc is disabled, allow remote malicious users to inject arbitrary web script or HTML via the (1) siteurl and (2) urlbanner parameters.
Phpwebscripts Easy Banner Free 2009.05.18
1 EDB exploit
NA
CVE-2006-1979
Cross-site scripting (XSS) vulnerability in mwguest.php in Manic Web MWGuest 2.1.0 allows remote malicious users to inject arbitrary web script or HTML via the homepage parameter.
Manic Web Mwguest 2.1.0
1 EDB exploit
NA
CVE-2006-0136
Multiple cross-site scripting (XSS) vulnerabilities in the guestbook module in modules.php in Phanatic Softwares Chimera Web Portal System 0.2 allow remote malicious users to inject arbitrary web script or HTML via the (1) comment_poster, (2) comment_poster_email, (3) comment_pos...
Phanatic Softwares Chimera Web Portal 0.2
1 EDB exploit
NA
CVE-2006-0154
SQL injection vulnerability in showthread.php in 427BB 2.2 and 2.2.1 allows remote malicious users to execute arbitrary SQL commands via the ForumID parameter.
427bb Fourtwosevenbb 2.2
427bb Fourtwosevenbb 2.2.1
1 EDB exploit
NA
CVE-2006-0209
SQL injection vulnerability in general_functions.php in TankLogger 2.4 allows remote malicious users to execute arbitrary SQL commands via the (1) livestock_id parameter to showInfo.php and (2) tank_id parameter, possibly to livestock.php.
Tanklogger Tanklogger 2.4
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-49333
CVE-2024-33901
CVE-2024-36001
CVE-2024-2835
firewall
XPath injection
authentication bypass
CVE-2024-22120
CVE-2024-32002
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
6
NEXT »