Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ghc vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2021-30502
The unofficial vscode-ghc-simple (aka Simple Glasgow Haskell Compiler) extension prior to 0.2.3 for Visual Studio Code allows remote code execution via a crafted workspace configuration with replCommand.
NA
CVE-2005-0368
Multiple SQL injection vulnerabilities in CMScore allow remote malicious users to execute arbitrary SQL commands via the (1) EntryID or (2) searchterm parameter to index.php, or (3) username parameter to authenticate.php.
Chipmunk Scripts Cmscore
1 EDB exploit
NA
CVE-2005-0413
Multiple SQL injection vulnerabilities in MyPHP Forum 1.0 allow remote malicious users to execute arbitrary SQL commands via (1) the fid in forum.php, (2) the member parameter in member.php, (3) the email parameter in forgot.php, or (4) the nbuser or nbpass parameters in include....
Myphp Forum Myphp Forum 3.0
Myphp Forum Myphp Forum 2.0
Myphp Forum Myphp Forum 1.0
1 EDB exploit
NA
CVE-2005-0436
Direct code injection vulnerability in awstats.pl in AWStats 6.3 and 6.4 allows remote malicious users to execute portions of Perl code via the PluginMode parameter.
Awstats Awstats 6.3
Awstats Awstats 6.4
1 EDB exploit
NA
CVE-2005-2383
SQL injection vulnerability in auth.php in PHPNews 1.2.5 allows remote malicious users to execute arbitrary SQL commands via the user parameter in an HTTP POST request.
Phpnews Phpnews 1.2.5
1 EDB exploit
NA
CVE-2005-0435
awstats.pl in AWStats 6.3 and 6.4 allows remote malicious users to read server web logs by setting the loadplugin and pluginmode parameters to rawlog.
Awstats Awstats 6.3
Awstats Awstats 6.4
1 EDB exploit
NA
CVE-2008-0770
SQL injection vulnerability in arcade.php in ibProArcade 3.3.0 and previous versions allows remote malicious users to execute arbitrary SQL commands via the g_display_order cookie parameter.
Ibproarcade Ibproarcade
1 EDB exploit
NA
CVE-2005-0805
SQL injection vulnerability in index.php in Subdreamer Light, when magic_quotes_gpc is enabled, allows remote malicious users to execute arbitrary SQL commands via certain parameters that are used as global variables, as demonstrated using the imageid parameter, which is not prop...
Subdreamer Subdreamer Light 1.0
1 EDB exploit
NA
CVE-2008-0421
SQL injection vulnerability in Invision Gallery 2.0.7 and previous versions allows remote malicious users to execute arbitrary SQL commands via the album parameter in a rate command.
Invision Power Services Invision Gallery
1 EDB exploit
NA
CVE-2008-0461
SQL injection vulnerability in index.php in the Search module in PHP-Nuke 8.0 FINAL and previous versions, when magic_quotes_gpc is disabled, allows remote malicious users to execute arbitrary SQL commands via the sid parameter in a comments action to modules.php. NOTE: some of t...
Francisco Burzi Php-nuke
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
blind SQL injection
SSRF
buffer overflow
CVE-2023-28952
CVE-2023-41822
CVE-2024-27956
CVE-2023-7028
CVE-2024-34447
CVE-2024-34460
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »