Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
the:paradox vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2008-2778
SQL injection vulnerability in inc/class_search.php in the Search System in RevokeBB 1.0 RC11 allows remote malicious users to execute arbitrary SQL commands via the search parameter.
Revokesoft Revokebb 1.0
1 EDB exploit
NA
CVE-2008-0099
Multiple SQL injection vulnerabilities in MyPHP Forum 3.0 and previous versions allow remote malicious users to execute arbitrary SQL commands via the searchtext parameter to search.php, and unspecified other vectors.
Myphp Forum Myphp Forum
1 EDB exploit
7.5
CVSSv3
CVE-2008-0141
actions.php in WebPortal CMS 0.6-beta generates predictable passwords containing only the time of day, which makes it easier for remote malicious users to obtain access to any account via a lostpass action.
Webportal Cms Project Webportal Cms 0.6.0
1 EDB exploit
NA
CVE-2008-0142
Multiple SQL injection vulnerabilities in WebPortal CMS 0.6-beta allow remote malicious users to execute arbitrary SQL commands via the user_name parameter to actions.php, and unspecified other vectors.
Webportal Webportal Cms 0.6 Beta
1 EDB exploit
NA
CVE-2008-1591
The pnVarPrepForStore function in PostNuke 0.764 and previous versions skips input sanitization when magic_quotes_runtime is enabled, which allows remote malicious users to conduct SQL injection attacks and execute arbitrary SQL commands via input associated with server variables...
Postnuke Postnuke
1 EDB exploit
NA
CVE-2009-2230
SQL injection vulnerability in inc/datahandlers/user.php in MyBB (aka MyBulletinBoard) prior to 1.4.7 allows remote authenticated users to execute arbitrary SQL commands via the birthdayprivacy parameter.
Mybulletinboard Mybulletinboard 1.1
Mybulletinboard Mybulletinboard 1.1.7
Mybulletinboard Mybulletinboard 1.1.6
Mybulletinboard Mybulletinboard 1.0.3
Mybulletinboard Mybulletinboard 1.0.4
Mybulletinboard Mybulletinboard 1.2.10
Mybulletinboard Mybulletinboard 1.2.11
Mybulletinboard Mybulletinboard 1.1.2
Mybulletinboard Mybulletinboard 1.0
Mybulletinboard Mybulletinboard 1.4.5
Mybulletinboard Mybulletinboard
Mybulletinboard Mybulletinboard 1.1.3
Mybulletinboard Mybulletinboard 1.2
Mybulletinboard Mybulletinboard 1.1.5
Mybulletinboard Mybulletinboard 1.1.4
Mybulletinboard Mybulletinboard 1.4.2
Mybulletinboard Mybulletinboard 1.4.3
Mybulletinboard Mybulletinboard 1.2.3
Mybulletinboard Mybulletinboard 1.2.5
Mybulletinboard Mybulletinboard 1.1.8
Mybulletinboard Mybulletinboard 1.0.1
Mybulletinboard Mybulletinboard 1.0.2
1 EDB exploit
NA
CVE-2008-6741
SQL injection vulnerability in Load.php in Simple Machines Forum (SMF) 1.1.4 and previous versions allows remote malicious users to execute arbitrary SQL commands by setting the db_character_set parameter to a multibyte character set such as big5, which causes the addslashes PHP ...
Simple Machines Simple Machines Forum 1.0.11
Simple Machines Simple Machines Forum
Simple Machines Simple Machines Forum 1.1
Simple Machines Simple Machines Forum 1.0.5
Simple Machines Simple Machines Forum 1.0.12
Simple Machines Simple Machines Forum 1.1.3
Simple Machines Simple Machines Forum 1.1.1
Simple Machines Simple Machines Forum 1.0.6
Simple Machines Simple Machines Forum 1.0.7
Simple Machines Simple Machines Forum 1.1.2
1 EDB exploit
NA
CVE-2008-0734
SQL injection vulnerability in class_auth.php in Limbo CMS 1.0.4.2, and possibly earlier versions, allows remote malicious users to execute arbitrary SQL commands via the cuid cookie parameter to admin.php.
Limbo Cms Limbo Cms
1 EDB exploit
NA
CVE-2008-1861
Directory traversal vulnerability in modules/threadstop/threadstop.php in ExBB Italia 0.22 and previous versions, when register_globals is enabled and magic_quotes_gpc is disabled, allows remote malicious users to include and execute arbitrary local files via a .. (dot dot) in th...
Exbb Exbb Italia
1 EDB exploit
NA
CVE-2008-1862
ExBB Italia 0.22 and previous versions only checks GET requests that use the QUERY_STRING for certain path manipulations, which allows remote malicious users to bypass this check via (1) POST or (2) COOKIE variables, a different vector than CVE-2006-4488. NOTE: this can be levera...
Exbb Exbb Italia
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-22120
CVE-2024-35921
CVE-2024-35874
brute force
CVE-2024-36080
unprivileged
CVE-2024-35917
IDOR
CVE-2024-4947
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »