Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
dedi dwianto vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2005-2046
Multiple SQL injection vulnerabilities in DUware DUamazon Pro 3.0 and 3.1 allow remote malicious users to execute arbitrary SQL commands via the (1) iCat parameter to cat.asp, (2) iSub parameter to sub.asp, (3) iSub parameter to detail.asp, (4) iPro parameter to review.asp, iCat ...
Duware Duamazon Pro 3.0
Duware Duamazon Pro 3.1
7 EDB exploits
NA
CVE-2005-1967
Multiple SQL injection vulnerabilities in ProductCart Ecommerce prior to 2.7 allow remote malicious users to execute arbitrary SQL commands via the (1) idcategory parameter to viewPrd.asp, (2) lid parameter to editCategories.asp, (3) icd parameter to modCustomCardPaymentOpt.asp, ...
Early Impact Productcart Ecommerce
4 EDB exploits
NA
CVE-2005-2048
Multiple SQL injection vulnerabilities in DUware DUforum 3.1, and possibly other versions, allow remote malicious users to execute arbitrary SQL commands via the (1) iMsg parameter to messages.asp, iFor parameter to (2) post.asp or (3) forums.asp, or (4) id parameter to userEdit....
Duware Duforum 3.1
4 EDB exploits
NA
CVE-2005-2009
Multiple SQL injection vulnerabilities in Ublog Reload 1.0.5 allow remote malicious users to execute arbitrary SQL commands via the (1) ci, (2) d, or (3) m parameter to index.asp, or the (4) bi parameter to blog_comment.asp.
Ublog Reload 1.0.5
2 EDB exploits
NA
CVE-2005-2049
Multiple SQL injection vulnerabilities in DUware DUclassmate 1.2 allow remote malicious users to execute arbitrary SQL commands via the (1) iState parameter to default.asp or (2) iPro parameter to edit.asp.
Duware Duclassmate 1.2
2 EDB exploits
NA
CVE-2005-2010
Cross-site scripting (XSS) vulnerability in trackback.asp in Ublog Reload 1.0.5 allows remote malicious users to inject arbitrary web script or HTML via the btitle parameter.
Uapplication Ublog Reload 1.0.5
1 EDB exploit
NA
CVE-2006-6365
SQL injection vulnerability in detail.asp in DUware DUpaypal 3.1, and possibly earlier, allows remote malicious users to execute arbitrary SQL commands via the iType parameter. NOTE: the iState parameter is already covered by CVE-2005-3976 and the iPro parameter is already covere...
Duware Dupaypal 3.1
Duware Dupaypal Pro 3.0
Duware Dupaypal 3.0
Duware Dupaypal Pro 3.1
1 EDB exploit
NA
CVE-2006-3931
Buffer overflow in the daemon function in midirecord.cc in Tuomas Airaksinen Midirecord 2.0 allows local users to execute arbitrary code via a long command line argument (filename). NOTE: This may not be a vulnerability if Midirecord is not installed setuid.
Tuomas Airaksinen Midirecord 2.0
1 EDB exploit
NA
CVE-2006-2107
Buffer overflow in BL4 SMTP Server 0.1.4 and previous versions allows remote malicious users to cause a denial of service (crash) or execute arbitrary code via a long argument to the (1) EHLO, (2) MAIL FROM, and (3) RCPT TO commands.
Bl4 Smtp Server
1 EDB exploit
NA
CVE-2005-2199
PHP remote file inclusion vulnerability in inc/functions.inc.php in PPA web photo gallery 0.5.6 allows remote malicious users to execute arbitrary code via the config[ppa_root_path] variable.
Skrypty Ppa Gallery 0.5.6
2 EDB exploits
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
encryption
CVE-2024-4331
CVE-2024-26925
arbitrary code
CVE-2006-4304
CVE-2024-25458
CVE-2024-27077
reflected XSS
CVE-2024-4059
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started