Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
maran vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2007-3198
Cross-site scripting (XSS) vulnerability in comments.php in Maran PHP Blog (Maran Blog), possibly only versions prior to 20070610, allows remote malicious users to inject arbitrary web script or HTML via the id parameter.
Maran Php Blog
1 EDB exploit
7.5
CVSSv2
CVE-2008-4879
SQL injection vulnerability in prod.php in Maran PHP Shop allows remote malicious users to execute arbitrary SQL commands via the cat parameter, a different vector than CVE-2008-4880.
Maran Php Shop
1 EDB exploit
6.8
CVSSv2
CVE-2007-2182
Unrestricted file upload vulnerability in forum_write.php in Maran PHP Forum allows remote malicious users to upload and execute arbitrary PHP files via a trailing %00 in a filename in the page parameter.
Maran Php Forum
1 EDB exploit
7.5
CVSSv2
CVE-2008-6296
admin.php in Maran PHP Shop allows remote malicious users to bypass authentication and gain administrative access by setting the user cookie to "demo."
Maran Php Shop
1 EDB exploit
7.5
CVSSv2
CVE-2008-4880
SQL injection vulnerability in prodshow.php in Maran PHP Shop allows remote malicious users to execute arbitrary SQL commands via the id parameter, a different vector than CVE-2008-4879.
Maran Php Shop
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2022-38028
CVE-2024-32406
CVE-2024-25624
IMAP
CVE-2024-2310
CVE-2024-0874
CVE-2024-20359
XXE
remote code execution
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started