Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
alphanix vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2008-6355
The Net Guys ASPired2Protect stores sensitive information under the web root with insufficient access control, which allows remote malicious users to download a database containing the username and password via a direct request to ASPired2Protect.mdb.
Thenetguys Aspired2protect -
1 EDB exploit
NA
CVE-2008-6374
CodefixerSoftware MailingListPro Free Edition stores sensitive information under the web root with insufficient access control, which allows remote malicious users to obtain sensitive information via a direct request to db/MailingList.mdb.
Codefixer Mailinglistpro -
1 EDB exploit
NA
CVE-2008-5892
Multiple SQL injection vulnerabilities in ClickAndEmail allow remote malicious users to execute arbitrary SQL commands via (1) the ID parameter to admin_dblayers.asp in an update action, (2) the adminid parameter to admin_loginCheck.asp (aka the USERNAME field in admin_main.asp),...
Icash Click\\&email Nil
1 EDB exploit
NA
CVE-2008-5972
SQL injection vulnerability in default.asp in Active Business Directory 2 allows remote malicious users to execute arbitrary SQL commands via the catid parameter.
Activewebsoftwares Active Business Directory 2
1 EDB exploit
NA
CVE-2008-6324
SQL injection vulnerability in forummessages.cfm in CF_Forum allows remote malicious users to execute arbitrary SQL commands via the categorynbr parameter.
Cfmsource Cf Forum -
1 EDB exploit
NA
CVE-2008-6153
SQL injection vulnerability in Photo.asp in Jay Patel Pixel8 Web Photo Album 3.0 allows remote malicious users to execute arbitrary SQL commands via the AlbumID parameter.
Jayeshp Pixel8 Web Photo Album 3.0
1 EDB exploit
NA
CVE-2009-0443
Stack-based buffer overflow in Elecard AVC HD PLAYER 5.5.90116 allows remote malicious users to execute arbitrary code via an M3U file containing a long string in a URL.
Elecard Elecard Avc Hd Player 5.5.90116
1 EDB exploit
NA
CVE-2009-1322
ASP Product Catalog 1.0 stores sensitive information under the web root with insufficient access control, which allows remote malicious users to download a database containing user credentials via a direct request for database/aspProductCatalog.mdb.
Humayun Shabbir Bhutta Asp Product Catalog 1.0
1 EDB exploit
NA
CVE-2008-5588
SQL injection vulnerability in rankup.asp in Katy Whitton RankEm allows remote malicious users to execute arbitrary SQL commands via the siteID parameter.
Katywhitton Rankem
1 EDB exploit
NA
CVE-2008-5767
SQL injection vulnerability in authors.asp in gNews Publisher allows remote malicious users to execute arbitrary SQL commands via the authorID parameter.
Gazatem Gnews Publisher Nil
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27322
cross-site request forgery
unauthorized
CVE-2024-33925
reflected XSS
CVE-2023-51580
CVE-2023-51579
CVE-2015-2051
CVE-2023-51609
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
NEXT »