Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

linux_drox vulnerabilities and exploits

(subscribe to this query)
NA
CVE-2008-7142
Absolute path traversal vulnerability in the Disk Usage module (frontend/x/diskusage/index.html) in cPanel 11.18.3 allows remote malicious users to list arbitrary directories via the showtree parameter.
Cpanel Cpanel 11.18.3
NA
CVE-2008-1560
Multiple cross-site scripting (XSS) vulnerabilities in Digiappz DigiDomain 2.2 allow remote malicious users to inject arbitrary web script or HTML via the (1) domain parameter to lookup_result.asp, and the (2) word1 and (3) word2 parameters to suggest_result.asp.
Digiappz Digidomain 2.2
NA
CVE-2008-1499
Cross-site scripting (XSS) vulnerability in frontend/x/manpage.html in cPanel 11.18.3 and 11.21.0-BETA allows remote malicious users to inject arbitrary web script or HTML via the query string.
Cpanel Cpanel 11.18.3Cpanel Cpanel 11.21
NA
CVE-2006-6776
Multiple SQL injection vulnerabilities in Future Internet allow remote malicious users to execute arbitrary SQL commands via the (1) newsId or (2) categoryid parameter in a Portal.Showpage action in index.cfm, or (3) the langId parameter in index.cfm.
Future Internet Future Internet
NA
CVE-2006-6777
Cross-site scripting (XSS) vulnerability in index.cfm in Future Internet allows remote malicious users to inject arbitrary web script or HTML via the categoryId parameter in a Portal.ShowPage action.
Future Internet Future Internet
NA
CVE-2006-6734
Cross-site scripting (XSS) vulnerability in modules/viewcategory.php in Minh Nguyen Duong Obie Website Mini Web Shop 2.1.c allows remote malicious users to inject arbitrary web script or HTML via the catname parameter.
Obie Website Mini Web Shop 2.1.c
NA
CVE-2006-1659
Multiple SQL injection vulnerabilities in Softbiz Image Gallery allow remote malicious users to execute arbitrary SQL commands via the (1) id parameter in image_desc.php, (2) provided parameter in template.php, (3) cid parameter in suggest_image.php, (4) img_id parameter in inser...
Softbiz Image Gallery
NA
CVE-2006-1556
Multiple cross-site scripting (XSS) vulnerabilities in view_caricatier.php in AL-Caricatier 2.5 allow remote malicious users to inject arbitrary web script or HTML via the (1) CatName, (2) CaricatierID, or (3) CatID parameter.
Al-caricatier Al-caricatier 2.5
NA
CVE-2006-1420
SQL injection vulnerability in print.php in SaphpLesson 2.0 allows remote malicious users to execute arbitrary SQL commands via the lessid parameter.
Arabless Saphplesson 2.0
NA
CVE-2006-1349
Multiple cross-site scripting (XSS) vulnerabilities in Musicbox 2.3 Beta 2 allow remote malicious users to inject arbitrary web script or HTML via the (1) id and (2) type and (3) show parameters in a top action in (a) index.php; and the (4) message1 parameter in (b) cart.php.
Musicbox Musicbox 2.3 Beta 2
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
SSTICVE-2024-35863CVE-2024-35910man-in-the-middleCVE-2024-35912CVE-2024-25742LFICVE-2024-32002CVE-2024-22120
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook