Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
crazy cracker vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2006-3474
Multiple SQL injection vulnerabilities in Belchior Foundry vCard PRO allow remote malicious users to execute arbitrary SQL commands via the (1) cat_id parameter to (a) gbrowse.php, (2) card_id parameter to (b) rating.php and (c) create.php, and the (3) event_id parameter to (d) s...
Belchior Foundry Vcard Pro
4 EDB exploits
NA
CVE-2006-3255
SQL injection vulnerability in showmods.php in Woltlab Burning Board (WBB) 1.2 allows remote malicious users to execute arbitrary SQL commands via the boardid parameter.
Woltlab Burning Board 1.2
1 EDB exploit
NA
CVE-2006-3161
SQL injection vulnerability in misc.php in SaphpLesson 1.1 and previous versions allows remote malicious users to execute arbitrary SQL commands via the action parameter.
Saphp Saphplesson 1.1
1 EDB exploit
NA
CVE-2006-3254
SQL injection vulnerability in newthread.php in Woltlab Burning Board (WBB) 2.0 RC2 allows remote malicious users to execute arbitrary SQL commands via the boardid parameter.
Woltlab Burning Board 2.0 Rc2
1 EDB exploit
NA
CVE-2006-3256
SQL injection vulnerability in report.php in Woltlab Burning Board (WBB) 2.3.1 allows remote malicious users to execute arbitrary SQL commands via the postid parameter.
Woltlab Burning Board 2.3.1
1 EDB exploit
NA
CVE-2006-2973
Multiple SQL injection vulnerabilities in month.php in PHP Lite Calendar Express 2.2 allow remote malicious users to execute arbitrary SQL commands via the (1) catid and (2) cid parameter. NOTE: this might be a duplicate of CVE-2005-4009.c.
Php Lite Calendar Express 2.2
1 EDB exploit
NA
CVE-2008-2110
Unrestricted file upload vulnerability in qtofm.php in QTOFileManager 1.0 allows remote malicious users to execute arbitrary PHP code by uploading a file with an executable extension, then accessing it via a direct request.
Qto Qtofilemanager 1.0
1 EDB exploit
NA
CVE-2006-2037
Cross-site scripting (XSS) vulnerability in index.php in Thwboard 3.0 Beta 2.84 allows remote malicious users to inject arbitrary web script or HTML via the navpath parameter.
Thwboard Thwboard 3.0 Beta 2.84
1 EDB exploit
NA
CVE-2006-3363
PHP remote file inclusion vulnerability in index.php in the Glossaire module 1.7 for Xoops allows remote malicious users to execute arbitrary PHP code via a URL in the pa parameter.
Xoops Xoops Glossaire Module 1.7
1 EDB exploit
NA
CVE-2006-3543
Multiple SQL injection vulnerabilities in Invision Power Board (IPB) 1.x and 2.x allow remote malicious users to execute arbitrary SQL commands via the (1) idcat and (2) code parameters in a ketqua action in index.php; the id parameter in a (3) Attach and (4) ref action in index....
Invision Power Services Invision Power Board 2.0 Pf1
Invision Power Services Invision Power Board 1.0
Invision Power Services Invision Power Board 1.1.2
Invision Power Services Invision Power Board 2.0.4
Invision Power Services Invision Power Board 2.1.6
Invision Power Services Invision Power Board 2.1 Alpha2
Invision Power Services Invision Power Board 2.0 Alpha3
Invision Power Services Invision Power Board 1.1.1
Invision Power Services Invision Power Board 1.0.3
Invision Power Services Invision Power Board 2.0 Pdr3
Invision Power Services Invision Power Board 2.0
Invision Power Services Invision Power Board 1.3 Final
Invision Power Services Invision Power Board 1.2
Invision Power Services Invision Power Board 2.1.5
Invision Power Services Invision Power Board 1.0.1
Invision Power Services Invision Power Board 2.0.3
Invision Power Services Invision Power Board 2.1
Invision Power Services Invision Power Board 2.1.4
Invision Power Services Invision Power Board 1.3.1 Final
Invision Power Services Invision Power Board 2.0 Pf2
Invision Power Services Invision Power Board 2.0.2
Invision Power Services Invision Power Board 2.0.1
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-30310
CVE-2024-21683
CVE-2024-22187
chrome
deserialization
XPath injection
CVE-2024-27842
denial of service
CVE-2024-24851
google
CVE-2024-35400
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started