Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
siteman siteman vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2008-4365
Cross-site scripting (XSS) vulnerability in search.php in Siteman 1.1.11 and previous versions allows remote malicious users to inject arbitrary web script or HTML via unknown vectors. NOTE: the provenance of this information is unknown; the details are obtained solely from third...
Siteman Siteman 1.1.10
Siteman Siteman 1.1.9
Siteman Siteman 1.1.1
Siteman Siteman
7.5
CVSSv2
CVE-2005-0305
CRLF injection vulnerability in users.php in Siteman 1.1.10 and previous versions allows remote malicious users to add arbitrary users and gain privileges via the line parameter in a docreate operation.
Siteman Siteman 1.1.10
Siteman Siteman 1.1.9
2 EDB exploits
5
CVSSv2
CVE-2007-0593
Siteman 1.1.11 stores sensitive information under the web root with insufficient access control, which allows remote malicious users to download a database containing password hashes via a direct request for data/members.txt.
Siteman Siteman 1.1.11
5
CVSSv2
CVE-2008-0452
Directory traversal vulnerability in articles.php in Siteman 1.1.9 allows remote malicious users to read arbitrary files via directory traversal sequences in the cat parameter in a viewart action.
Siteman Siteman 1.1.9
1 EDB exploit
9
CVSSv2
CVE-2008-2081
Directory traversal vulnerability in index.php in Siteman 2.0.x2 allows remote authenticated administrators to include and execute arbitrary local files via a .. (dot dot) in the module parameter.
Siteman Siteman 2.0
1 EDB exploit
4.3
CVSSv2
CVE-2008-2082
Cross-site scripting (XSS) vulnerability in index.php in Siteman 2.0.x2 allows remote malicious users to inject arbitrary web script or HTML via the module parameter, which leaks the path in an error message.
Siteman Siteman 2.0
2 EDB exploits
5
CVSSv2
CVE-2007-0594
Siteman 2.0.x2 stores sensitive information under the web root with insufficient access control, which allows remote malicious users to download a database containing password hashes via a direct request for db/siteman/users.MYD.
Siteman Siteman 2.0.x2
7.5
CVSSv2
CVE-2006-1586
SQL injection vulnerability in admin_login.asp in ISP of Egypt SiteMan allows remote malicious users to execute arbitrary SQL commands via the pass parameter.
Internet Solutions Professionals Site Man
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
camera
bypass
CVE-2024-3592
CVE-2024-37383
CVE-2024-24919
CVE-2024-27822
CVE-2024-36788
CVE-2024-36789
man-in-the-middle
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started