Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
diesel diesel vulnerabilities and exploits
(subscribe to this query)
755
VMScore
CVE-2008-6467
SQL injection vulnerability in jobs/jobseekers/job-info.php in Diesel Job Site allows remote malicious users to execute arbitrary SQL commands via the job_id parameter.
Dieselscripts Diesel Job Site
1 EDB exploit
755
VMScore
CVE-2008-6468
SQL injection vulnerability in index.php in Diesel Pay allows remote malicious users to execute arbitrary SQL commands via the area parameter in a browse action.
Dieselscripts Diesel Pay -
1 EDB exploit
755
VMScore
CVE-2008-4150
SQL injection vulnerability in picture_category.php in Diesel Joke Site allows remote malicious users to execute arbitrary SQL commands via the id parameter, a different vector than CVE-2006-3763.
Dieselscripts Diesel Joke Site
1 EDB exploit
755
VMScore
CVE-2006-4357
PHP remote file inclusion vulnerability in clients/index.php in Diesel Smart Traffic allows remote malicious users to execute arbitrary PHP code via a URL in the src parameter.
Dieselscripts Diesel Smart Traffic
1 EDB exploit
755
VMScore
CVE-2006-3763
SQL injection vulnerability in category.php in Diesel Joke Site allows remote malicious users to execute arbitrary SQL commands via the id parameter.
Dieselscripts Diesel Joke Site 2.0
1 EDB exploit
685
VMScore
CVE-2007-4545
Multiple directory traversal vulnerabilities in Unreal Commander 0.92 build 565 and 573 allow user-assisted remote malicious users to create or overwrite arbitrary files via a .. (dot dot) in a filename within a (1) ZIP or (2) RAR archive.
X-diesel Unreal Commander 0.92 Build565
X-diesel Unreal Commander 0.92 Build573
1 EDB exploit
668
VMScore
CVE-2021-28305
An issue exists in the diesel crate prior to 1.4.6 for Rust. There is a use-after-free in the SQLite backend because the semantics of sqlite3_column_name are not followed.
Diesel Diesel
585
VMScore
CVE-2007-4843
Directory traversal vulnerability in X-Diesel Unreal Commander 0.92 build 565 and 573 allows remote FTP servers to create or overwrite arbitrary files via a .. (dot dot) in a filename. NOTE: this can be leveraged for code execution by writing to a Startup folder.
X-diesel Unreal Commander 0.92 Build573
X-diesel Unreal Commander 0.92 Build565
1 EDB exploit
516
VMScore
CVE-2007-4546
Unreal Commander 0.92 build 565 and 573 lists the filenames from the Central Directory of a ZIP archive, but extracts to local filenames corresponding to names in Local File Header fields in this archive, which might allow remote malicious users to trick a user into performing a ...
X-diesel Unreal Commander 0.92 Build573
X-diesel Unreal Commander 0.92 Build565
445
VMScore
CVE-2006-2540
Privacy leak in install.php for Diesel PHP Job Site sends sensitive information such as user credentials to an e-mail address controlled by the product developers.
Dieselscripts Diesel Job Site
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-40673
CVE-2024-36674
CVE-2024-27348
unspecified
CVE-2024-24919
CVE-2024-4870
malicious code
CVE-2024-2019
hard-coded
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »