Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
softbiz vulnerabilities and exploits
(subscribe to this query)
775
VMScore
CVE-2005-3938
SQL injection vulnerability in Softbiz FAQ Script 1.1 and earler allows remote malicious users to execute arbitrary SQL commands via the id parameter in (1) index.php, (2) faq_qanda.php, (3) refer_friend.php, (4) print_article.php, or (5) add_comment.php.
Softbiz Faq
5 EDB exploits
665
VMScore
CVE-2006-1659
Multiple SQL injection vulnerabilities in Softbiz Image Gallery allow remote malicious users to execute arbitrary SQL commands via the (1) id parameter in image_desc.php, (2) provided parameter in template.php, (3) cid parameter in suggest_image.php, (4) img_id parameter in inser...
Softbiz Image Gallery
5 EDB exploits
605
VMScore
CVE-2006-1660
Cross-site scripting (XSS) vulnerability in image_desc.php in Softbiz Image Gallery allows remote malicious users to inject arbitrary web script or HTML via msg parameter. NOTE: the provenance of this information is unknown; the details are obtained from third party information.
Softbiz Image Gallery
475
VMScore
CVE-2008-3511
Multiple cross-site scripting (XSS) vulnerabilities in Softbiz Image Gallery (Photo Gallery) allow remote malicious users to inject arbitrary web script or HTML via the (1) latest parameter to (a) index.php, (b) images.php, (c) suggest_image.php, and (d) image_desc.php; and the (...
Softbiz Image Gallery
9 EDB exploits
755
VMScore
CVE-2009-2790
SQL injection vulnerability in cat_products.php in SoftBiz Dating Script allows remote malicious users to execute arbitrary SQL commands via the cid parameter. NOTE: this might overlap CVE-2006-3271.4.
Softbiz Dating Script
1 EDB exploit
450
VMScore
CVE-2006-3607
Multiple cross-site scripting (XSS) vulnerabilities in Softbiz Banner Exchange Script (aka Banner Exchange Network Script) 1.0 allow remote malicious users to inject arbitrary web script or HTML via (1) the city parameter in (a) insertmember.php, and (2) a PHPSESSID cookie in (b)...
Softbiz Banner Exchange 1.0
4 EDB exploits
755
VMScore
CVE-2007-6125
SQL injection vulnerability in search_form.php in Softbiz Freelancers Script 1 allows remote malicious users to execute arbitrary SQL commands via the sb_protype parameter.
Softbiz Freelancers Script 1.0
1 EDB exploit
435
VMScore
CVE-2007-6124
Cross-site scripting (XSS) vulnerability in signin.php in Softbiz Freelancers Script 1 allows remote malicious users to inject arbitrary web script or HTML via the errmsg parameter.
Softbiz Freelancers Script 1.0
1 EDB exploit
755
VMScore
CVE-2007-5999
SQL injection vulnerability in product_desc.php in Softbiz Auctions Script allows remote malicious users to execute arbitrary SQL commands via the id parameter.
Softbizscripts Softbiz Auctions Script
1 EDB exploit
775
VMScore
CVE-2006-3271
Multiple SQL injection vulnerabilities in Softbiz Dating 1.0 allow remote malicious users to execute SQL commands via the (1) country and (2) sort_by parameters in (a) search_results.php; (3) browse parameter in (b) featured_photos.php; (4) cid parameter in (c) products.php, (d) ...
Softbiz Dating Script 1.0
5 EDB exploits
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-29758
CVE-2023-42931
unauthorized
CVE-2024-1540
unprivileged
CVE-2023-24955
CVE-2024-20259
logic flaw
CVE-2024-20333
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
NEXT »