Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
phpwebsite phpwebsite 0.9.3.4 vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2004-1654
SQL injection vulnerability in the calendar module in phpWebsite 0.9.3-4 and previous versions allows remote malicious users to execute arbitrary SQL commands via cal_template.
Phpwebsite Phpwebsite 0.9.3
Phpwebsite Phpwebsite 0.9.3.4
Phpwebsite Phpwebsite 0.8.2
Phpwebsite Phpwebsite 0.8.3
Phpwebsite Phpwebsite 0.7.3
NA
CVE-2004-1655
Cross-site scripting (XSS) vulnerability in phpWebsite 0.9.3-4 and previous versions allows remote malicious users to inject arbitrary web script or HTML via the (1) CM_pid parameter in the comments module or (2) the subject or message fields in the notes module.
Phpwebsite Phpwebsite 0.7.3
Phpwebsite Phpwebsite 0.9.3
Phpwebsite Phpwebsite 0.9.3.4
Phpwebsite Phpwebsite 0.8.2
Phpwebsite Phpwebsite 0.8.3
1 EDB exploit
NA
CVE-2004-1516
CRLF injection vulnerability in index.php in phpWebSite 0.9.3-4 allows remote malicious users to perform HTTP Response Splitting attacks to modify expected HTML content from the server via the block_username parameter in the user module.
Phpwebsite Phpwebsite 0.9.3
Phpwebsite Phpwebsite 0.9.3.1
Phpwebsite Phpwebsite 0.9.3.2
Phpwebsite Phpwebsite 0.9.3.3
Phpwebsite Phpwebsite 0.9.3.4
Phpwebsite Phpwebsite 0.7.3
Phpwebsite Phpwebsite 0.8.2
Phpwebsite Phpwebsite 0.8.3
NA
CVE-2005-0572
index.php in phpWebSite 0.10.0 and previous versions allows remote malicious users to obtain sensitive information via an invalid SEA_search_module parameter, which reveals the path in a PHP error message.
Phpwebsite Phpwebsite 0.9.1
Phpwebsite Phpwebsite 0.9.2
Phpwebsite Phpwebsite 0.9.3.1
Phpwebsite Phpwebsite 0.9.3.4
Phpwebsite Phpwebsite 0.9.3.3
Phpwebsite Phpwebsite 0.9.2.1
Phpwebsite Phpwebsite 0.10.0
Phpwebsite Phpwebsite 0.9.3.2
Phpwebsite Phpwebsite 0.9.3
Phpwebsite Phpwebsite 0.9.0
NA
CVE-2005-0565
The Announce module in phpWebSite 0.10.0 and previous versions allows remote malicious users to execute arbitrary PHP code by setting the Image field to reference a PHP file whose name contains a .gif.php extension.
Phpwebsite Phpwebsite 0.10.0
Phpwebsite Phpwebsite 0.9.0
Phpwebsite Phpwebsite 0.9.3.3
Phpwebsite Phpwebsite 0.9.3.4
Phpwebsite Phpwebsite 0.9.2.1
Phpwebsite Phpwebsite 0.9.3
Phpwebsite Phpwebsite 0.9.3.1
Phpwebsite Phpwebsite 0.9.3.2
Phpwebsite Phpwebsite 0.9.1
Phpwebsite Phpwebsite 0.9.2
NA
CVE-2006-0973
SQL injection vulnerability in topics.php in Appalachian State University phpWebSite 0.10.2 and previous versions allows remote malicious users to execute arbitrary SQL commands via the topic parameter.
Phpwebsite Phpwebsite 0.10.1
Phpwebsite Phpwebsite 0.10.2
Phpwebsite Phpwebsite 0.7.3
Phpwebsite Phpwebsite 0.9.3.4
Phpwebsite Phpwebsite 0.8.2
Phpwebsite Phpwebsite 0.8.3
Phpwebsite Phpwebsite 0.9.3
Phpwebsite Phpwebsite 0.9.3.1
Phpwebsite Phpwebsite 0.10
Phpwebsite Phpwebsite 0.9.3.2
Phpwebsite Phpwebsite 0.9.3.3
1 EDB exploit
NA
CVE-2005-4792
SQL injection vulnerability in index.php in Appalachian State University phpWebSite 0.10.1 and previous versions allows remote malicious users to execute arbitrary SQL commands via the module parameter. NOTE: the provenance of this information is unknown; the details are obtained...
Phpwebsite Phpwebsite 0.10
Phpwebsite Phpwebsite 0.7.3
Phpwebsite Phpwebsite 0.8.3
Phpwebsite Phpwebsite 0.9.1
Phpwebsite Phpwebsite
Phpwebsite Phpwebsite 0.9.3
Phpwebsite Phpwebsite 0.9.3.1
Phpwebsite Phpwebsite 0.9.3.2
Phpwebsite Phpwebsite 0.9.3.3
Phpwebsite Phpwebsite 0.8.2
Phpwebsite Phpwebsite 0.9.0
Phpwebsite Phpwebsite 0.9.2
Phpwebsite Phpwebsite 0.9.3.4
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2022-48654
CVE-2024-2757
authentication bypass
CVE-2024-3194
CVE-2024-33640
CVE-2024-21111
dos
insecure direct object reference
CVE-2024-21345
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started