Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
katywhitton rankem vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2008-5588
SQL injection vulnerability in rankup.asp in Katy Whitton RankEm allows remote malicious users to execute arbitrary SQL commands via the siteID parameter.
Katywhitton Rankem
1 EDB exploit
7.5
CVSSv2
CVE-2008-5589
SQL injection vulnerability in processlogin.asp in Katy Whitton RankEm allows remote malicious users to execute arbitrary SQL commands via the (1) txtusername parameter (aka username field) or the (2) txtpassword parameter (aka password field). NOTE: some of these details are obt...
Katywhitton Rankem
1 EDB exploit
4.3
CVSSv2
CVE-2009-0248
Cross-site scripting (XSS) vulnerability in rankup.asp in Katy Whitton RankEm allows remote malicious users to inject arbitrary web script or HTML via the siteID parameter.
Katywhitton Rankem
1 EDB exploit
5
CVSSv2
CVE-2009-0249
Katy Whitton RankEm stores sensitive information under the web root with insufficient access control, which allows remote malicious users to download a database containing credentials via a direct request for database/topsites.mdb.
Katywhitton Rankem
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2022-48693
CVE-2024-30851
CVE-2024-34460
CVE-2024-2887
local
CVE-2024-27956
remote code execution
CVE-2024-34475
privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started