Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
blackhawk vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2014-9096
Multiple SQL injection vulnerabilities in recover.php in Pligg CMS 2.0.1 and previous versions allow remote malicious users to execute arbitrary SQL commands via the (1) id or (2) n parameter.
Pligg Pligg Cms
1 EDB exploit
NA
CVE-2009-1226
core/admin/delete.php in Podcast Generator 1.1 and previous versions does not properly restrict access to administrative functions, which allows remote malicious users to delete arbitrary files via the file parameter.
Podcast Generator Podcast Generator 1.0
Podcast Generator Podcast Generator 1.0 Beta
Podcast Generator Podcast Generator 0.96
Podcast Generator Podcast Generator 0.8
Podcast Generator Podcast Generator 0.6
Podcast Generator Podcast Generator 1.0 Beta3
Podcast Generator Podcast Generator 1.0 Beta2
Podcast Generator Podcast Generator 0.9
Podcast Generator Podcast Generator 0.81
Podcast Generator Podcast Generator 0.96.2
Podcast Generator Podcast Generator
Podcast Generator Podcast Generator 0.95
Podcast Generator Podcast Generator 0.94
Podcast Generator Podcast Generator 1.0 Beta4a
Podcast Generator Podcast Generator 1.0 Beta4
Podcast Generator Podcast Generator 0.93
Podcast Generator Podcast Generator 0.92
Podcast Generator Podcast Generator 0.91
1 EDB exploit
NA
CVE-2009-1230
Static code injection vulnerability in index.php in Podcast Generator 1.1 and previous versions allows remote authenticated administrators to inject arbitrary PHP code into config.php via the recent parameter in a config change action.
Podcast Generator Podcast Generator 1.0 Beta4
Podcast Generator Podcast Generator 1.0 Beta3
Podcast Generator Podcast Generator 0.92
Podcast Generator Podcast Generator 0.91
Podcast Generator Podcast Generator
Podcast Generator Podcast Generator 1.0 Beta4a
Podcast Generator Podcast Generator 0.94
Podcast Generator Podcast Generator 0.93
Podcast Generator Podcast Generator 1.0
Podcast Generator Podcast Generator 1.0 Beta2
Podcast Generator Podcast Generator 1.0 Beta
Podcast Generator Podcast Generator 0.9
Podcast Generator Podcast Generator 0.81
Podcast Generator Podcast Generator 0.96.2
Podcast Generator Podcast Generator 0.96
Podcast Generator Podcast Generator 0.95
Podcast Generator Podcast Generator 0.8
Podcast Generator Podcast Generator 0.6
1 EDB exploit
NA
CVE-2008-0351
admin/config.php in Evilsentinel 1.0.9 and previous versions allows remote malicious users to bypass the CAPTCHA test by omitting the es_security_captcha parameter and not invoking captcha.php.
Evilsentinel Evilsentinel
1 EDB exploit
NA
CVE-2008-0350
admin/index.php in Evilsentinel 1.0.9 and previous versions sends a redirect to the web browser but does not exit, which allows remote malicious users to gain administrative privileges and make arbitrary configuration changes.
Evilsentinel Evilsentinel
1 EDB exploit
NA
CVE-2007-5374
cp_memberedit.php in LightBlog 8.4.1.1 does not check for administrative credentials when processing an admin action, which allows remote authenticated users to increase the privileges of any account.
Lightblog Lightblog 8.4.1.1
1 EDB exploit
NA
CVE-2007-3586
Multiple direct static code injection vulnerabilities in MyCMS 0.9.8 and previous versions allow remote malicious users to inject arbitrary PHP code into (1) a _score.txt file via the score parameter, or (2) a _setby.txt file via a login cookie, which is then included by games.ph...
Mycms Mycms
1 EDB exploit
NA
CVE-2007-3585
PHP remote file inclusion vulnerability in games.php in MyCMS 0.9.8 and previous versions allows remote malicious users to execute arbitrary PHP code via a URL in the id parameter.
Mycms Mycms
1 EDB exploit
NA
CVE-2007-3587
MyCMS 0.9.8 and previous versions allows remote malicious users to gain privileges via the admin cookie parameter, as demonstrated by a post to admin/settings.php that injects PHP code into settings.inc, which can then be executed via a direct request to index.php.
Mycms Mycms
1 EDB exploit
NA
CVE-2007-3307
SQL injection vulnerability in game_listing.php in Solar Empire 2.9.1.1 and previous versions allows remote malicious users to execute arbitrary SQL commands via the User-Agent HTTP header.
Solar Empire Solar Empire
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-4463
CVE-2024-29895
inject
CVE-2023-52689
CVE-2024-5049
CVE-2024-5051
privilege escalation
physical
CVE-2023-52676
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
NEXT »