Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
mr_kaliman vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2006-6479
Multiple cross-site scripting (XSS) vulnerabilities in AnnonceScriptHP 2.0 allow remote malicious users to inject arbitrary web script or HTML via the email parameter in (1) erreurinscription.php, (2) Templates/admin.dwt.php, (3) Templates/commun.dwt.php, (4) membre.dwt.php, and ...
Scriptphp Annoncescripthp 2.0
5 EDB exploits
NA
CVE-2006-6520
Multiple cross-site scripting (XSS) vulnerabilities in Messageriescripthp 2.0 allow remote malicious users to inject arbitrary web script or HTML via the (1) pseudo parameter to (a) existepseudo.php, the (2) email parameter to (b) existeemail.php, or the (3) pageName or (4) cssfo...
Scriptphp Messageriescripthp 2.0
3 EDB exploits
NA
CVE-2006-6478
Multiple SQL injection vulnerabilities in AnnonceScriptHP 2.0 allow remote malicious users to execute arbitrary SQL commands via the (1) id parameter in (a) email.php, the (2) no parameter in (b) voirannonce.php, the (3) idmembre parameter in (c) admin/admin_membre/fiche_membre.p...
Scriptphp Annoncescripthp 2.0
3 EDB exploits
NA
CVE-2006-6518
Multiple cross-site scripting (XSS) vulnerabilities in ProNews 1.5 allow remote malicious users to inject arbitrary web script or HTML via the (1) pseudo, (2) email, (3) date, (4) sujet, (5) message, (6) site, and (7) lien parameters to (a) admin/change.php, and the (8) aa parame...
Scriptphp Pronews 1.5
2 EDB exploits
NA
CVE-2006-6746
Multiple cross-site scripting (XSS) vulnerabilities in Xt-News 0.1 allow remote malicious users to inject arbitrary web script or HTML via the id_news parameter to (1) add_comment.php or (2) show_news.php.
Dreaxteam Xt-news 0.1
2 EDB exploits
NA
CVE-2006-6517
Multiple cross-site scripting (XSS) vulnerabilities in KDPics 1.16 and previous versions allow remote malicious users to inject arbitrary web script or HTML via the (1) categories parameter to (a) index.php3 or (b) galeries.inc.php3.
Kdpics Kdpics
3 EDB exploits
NA
CVE-2006-6519
SQL injection vulnerability in lire-avis.php in ProNews 1.5 allows remote malicious users to execute arbitrary SQL commands via the aa parameter.
Scriptphp Pronews 1.5
1 EDB exploit
NA
CVE-2006-6747
SQL injection vulnerability in show_news.php in Xt-News 0.1 allows remote malicious users to execute arbitrary SQL commands via the id_news parameter.
Dreaxteam Xt-news 0.1
1 EDB exploit
NA
CVE-2006-6521
SQL injection vulnerability in lire-avis.php in Messageriescripthp 2.0 allows remote malicious users to execute arbitrary SQL commands via the aa parameter.
Scriptphp Messageriescripthp 2.0
1 EDB exploit
NA
CVE-2006-6569
form.php in GenesisTrader 1.0 allows remote malicious users to read source code for arbitrary files and obtain sensitive information via the (1) do and (2) chem parameters with a "modfich" floap parameter.
Genesistrader Genesistrader 1.0
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-33572
CVE-2024-24919
CVE-2024-0230
CVE-2024-32714
HTML injection
local file inclusion
CVE-2024-31098
CVE-2024-31244
privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »