Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
linux_drox vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2008-7142
Absolute path traversal vulnerability in the Disk Usage module (frontend/x/diskusage/index.html) in cPanel 11.18.3 allows remote malicious users to list arbitrary directories via the showtree parameter.
Cpanel Cpanel 11.18.3
1 EDB exploit
NA
CVE-2008-1560
Multiple cross-site scripting (XSS) vulnerabilities in Digiappz DigiDomain 2.2 allow remote malicious users to inject arbitrary web script or HTML via the (1) domain parameter to lookup_result.asp, and the (2) word1 and (3) word2 parameters to suggest_result.asp.
Digiappz Digidomain 2.2
2 EDB exploits
NA
CVE-2008-1499
Cross-site scripting (XSS) vulnerability in frontend/x/manpage.html in cPanel 11.18.3 and 11.21.0-BETA allows remote malicious users to inject arbitrary web script or HTML via the query string.
Cpanel Cpanel 11.18.3
Cpanel Cpanel 11.21
1 EDB exploit
NA
CVE-2006-6776
Multiple SQL injection vulnerabilities in Future Internet allow remote malicious users to execute arbitrary SQL commands via the (1) newsId or (2) categoryid parameter in a Portal.Showpage action in index.cfm, or (3) the langId parameter in index.cfm.
Future Internet Future Internet
1 EDB exploit
NA
CVE-2006-6777
Cross-site scripting (XSS) vulnerability in index.cfm in Future Internet allows remote malicious users to inject arbitrary web script or HTML via the categoryId parameter in a Portal.ShowPage action.
Future Internet Future Internet
1 EDB exploit
NA
CVE-2006-6734
Cross-site scripting (XSS) vulnerability in modules/viewcategory.php in Minh Nguyen Duong Obie Website Mini Web Shop 2.1.c allows remote malicious users to inject arbitrary web script or HTML via the catname parameter.
Obie Website Mini Web Shop 2.1.c
1 EDB exploit
NA
CVE-2006-1659
Multiple SQL injection vulnerabilities in Softbiz Image Gallery allow remote malicious users to execute arbitrary SQL commands via the (1) id parameter in image_desc.php, (2) provided parameter in template.php, (3) cid parameter in suggest_image.php, (4) img_id parameter in inser...
Softbiz Image Gallery
5 EDB exploits
NA
CVE-2006-1556
Multiple cross-site scripting (XSS) vulnerabilities in view_caricatier.php in AL-Caricatier 2.5 allow remote malicious users to inject arbitrary web script or HTML via the (1) CatName, (2) CaricatierID, or (3) CatID parameter.
Al-caricatier Al-caricatier 2.5
1 EDB exploit
NA
CVE-2006-1420
SQL injection vulnerability in print.php in SaphpLesson 2.0 allows remote malicious users to execute arbitrary SQL commands via the lessid parameter.
Arabless Saphplesson 2.0
1 EDB exploit
NA
CVE-2006-1349
Multiple cross-site scripting (XSS) vulnerabilities in Musicbox 2.3 Beta 2 allow remote malicious users to inject arbitrary web script or HTML via the (1) id and (2) type and (3) show parameters in a top action in (a) index.php; and the (4) message1 parameter in (b) cart.php.
Musicbox Musicbox 2.3 Beta 2
2 EDB exploits
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
SSTI
CVE-2024-35863
CVE-2024-35910
man-in-the-middle
CVE-2024-35912
CVE-2024-25742
LFI
CVE-2024-32002
CVE-2024-22120
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »