Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
npds vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2015-1400
SQL injection vulnerability in search.php in NPDS Revolution 13 allows remote malicious users to execute arbitrary SQL commands via the query parameter.
Npds Revolution 13.0
1 EDB exploit
NA
CVE-2007-2537
Multiple SQL injection vulnerabilities in mainfile.php in NPDS 5.10 and previous versions allow remote authenticated users to execute arbitrary SQL commands via a (1) nickname or (2) Id in a cookie, or (3) the X-Forwarded-For (X_FORWARDED_FOR) HTTP header.
Npds Npds
1 EDB exploit
NA
CVE-2007-1635
Static code injection vulnerability in admin/settings.php in Net Portal Dynamic System (NPDS) 5.10 and previous versions allows remote authenticated users to inject arbitrary PHP code via the xtop parameter in a "ConfigSave" op to admin.php, which can later be accessed ...
Net Portal Dynamic System Net Portal Dynamic System
1 EDB exploit
NA
CVE-2007-1634
Variable extraction vulnerability in grab_globals.php in Net Portal Dynamic System (NPDS) 5.10 and previous versions allows remote malicious users to conduct SQL injection attacks via the _FILES[DB][tmp_name] parameter to print.php, which overwrites the $DB variable with dynamic ...
Net Portal Dynamic System Net Portal Dynamic System
1 EDB exploit
NA
CVE-2006-2950
Net Portal Dynamic System (NPDS) 5.10 and previous versions allows remote malicious users to obtain sensitive information via a direct request to (1) header.php, (2) contact.php, or (3) forum_extender.php, which reveals the path in an error message.
Npds Npds
Npds Npds 4.8
NA
CVE-2006-2951
Multiple cross-site scripting (XSS) vulnerabilities in Net Portal Dynamic System (NPDS) 5.10 and previous versions allow remote malicious users to inject arbitrary web script and HTML via the (1) Titlesitename or (2) sitename parameter to (a) header.php, (3) nuke_url parameter to...
Npds Npds 4.8
Npds Npds 5.0
Npds Npds
NA
CVE-2006-2952
Directory traversal vulnerability in Net Portal Dynamic System (NPDS) 5.10 and previous versions allows remote malicious users to read arbitrary files via a .. (dot dot) sequence and trailing null (%00) byte in the (1) Default_Theme parameter to header.php or (2) ModPath paramete...
Net Portal Dynamic System Net Portal Dynamic System
NA
CVE-2005-1803
Multiple cross-site scripting (XSS) vulnerabilities in Net Portal Dynamic System (NPDS) 5.0 allow remote malicious users to inject arbitrary web script or HTML via the language parameter to (1) admin.php, or (2) powerpack_f.php, (3) the sitename parameter to sdv_infos.php, (4) th...
Net Portal Dynamic System Net Portal Dynamic System 5.0
6 EDB exploits
NA
CVE-2005-1804
Multiple SQL injection vulnerabilities in Net Portal Dynamic System (NPDS) 5.0 allow remote malicious users to execute arbitrary SQL commands via the (1) terme parameter in the glossaire module (glossaire.php) or (2) query parameter to links.php.
Net Portal Dynamic System Net Portal Dynamic System 5.0
2 EDB exploits
NA
CVE-2005-1637
Multiple SQL injection vulnerabilities in NPDS 4.8 and 5.0 allow remote malicious users to execute arbitrary SQL commands via the thold parameter to (1) comments.php or (2) pollcomments.php.
Npds Npds 5.0
Npds Npds 4.8
2 EDB exploits
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
deserialization
CVE-2024-4040
cross-site scripting
CVE-2023-25790
CVE-2024-2961
XML external entity
CVE-2024-26926
CVE-2024-32806
CVE-2024-32711
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »