Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

the:paradox vulnerabilities and exploits

(subscribe to this query)
NA
CVE-2008-2778
SQL injection vulnerability in inc/class_search.php in the Search System in RevokeBB 1.0 RC11 allows remote malicious users to execute arbitrary SQL commands via the search parameter.
Revokesoft Revokebb 1.0
NA
CVE-2008-0099
Multiple SQL injection vulnerabilities in MyPHP Forum 3.0 and previous versions allow remote malicious users to execute arbitrary SQL commands via the searchtext parameter to search.php, and unspecified other vectors.
Myphp Forum Myphp Forum
7.5
CVSSv3
CVE-2008-0141
actions.php in WebPortal CMS 0.6-beta generates predictable passwords containing only the time of day, which makes it easier for remote malicious users to obtain access to any account via a lostpass action.
Webportal Cms Project Webportal Cms 0.6.0
NA
CVE-2008-0142
Multiple SQL injection vulnerabilities in WebPortal CMS 0.6-beta allow remote malicious users to execute arbitrary SQL commands via the user_name parameter to actions.php, and unspecified other vectors.
Webportal Webportal Cms 0.6 Beta
NA
CVE-2008-1591
The pnVarPrepForStore function in PostNuke 0.764 and previous versions skips input sanitization when magic_quotes_runtime is enabled, which allows remote malicious users to conduct SQL injection attacks and execute arbitrary SQL commands via input associated with server variables...
Postnuke Postnuke
NA
CVE-2009-2230
SQL injection vulnerability in inc/datahandlers/user.php in MyBB (aka MyBulletinBoard) prior to 1.4.7 allows remote authenticated users to execute arbitrary SQL commands via the birthdayprivacy parameter.
Mybulletinboard Mybulletinboard 1.1Mybulletinboard Mybulletinboard 1.1.7Mybulletinboard Mybulletinboard 1.1.6Mybulletinboard Mybulletinboard 1.0.3Mybulletinboard Mybulletinboard 1.0.4Mybulletinboard Mybulletinboard 1.2.10Mybulletinboard Mybulletinboard 1.2.11Mybulletinboard Mybulletinboard 1.1.2Mybulletinboard Mybulletinboard 1.0Mybulletinboard Mybulletinboard 1.4.5Mybulletinboard MybulletinboardMybulletinboard Mybulletinboard 1.1.3Mybulletinboard Mybulletinboard 1.2Mybulletinboard Mybulletinboard 1.1.5Mybulletinboard Mybulletinboard 1.1.4Mybulletinboard Mybulletinboard 1.4.2Mybulletinboard Mybulletinboard 1.4.3Mybulletinboard Mybulletinboard 1.2.3Mybulletinboard Mybulletinboard 1.2.5Mybulletinboard Mybulletinboard 1.1.8Mybulletinboard Mybulletinboard 1.0.1Mybulletinboard Mybulletinboard 1.0.2
NA
CVE-2008-6741
SQL injection vulnerability in Load.php in Simple Machines Forum (SMF) 1.1.4 and previous versions allows remote malicious users to execute arbitrary SQL commands by setting the db_character_set parameter to a multibyte character set such as big5, which causes the addslashes PHP ...
Simple Machines Simple Machines Forum 1.0.11Simple Machines Simple Machines ForumSimple Machines Simple Machines Forum 1.1Simple Machines Simple Machines Forum 1.0.5Simple Machines Simple Machines Forum 1.0.12Simple Machines Simple Machines Forum 1.1.3Simple Machines Simple Machines Forum 1.1.1Simple Machines Simple Machines Forum 1.0.6Simple Machines Simple Machines Forum 1.0.7Simple Machines Simple Machines Forum 1.1.2
NA
CVE-2008-0734
SQL injection vulnerability in class_auth.php in Limbo CMS 1.0.4.2, and possibly earlier versions, allows remote malicious users to execute arbitrary SQL commands via the cuid cookie parameter to admin.php.
Limbo Cms Limbo Cms
NA
CVE-2008-1861
Directory traversal vulnerability in modules/threadstop/threadstop.php in ExBB Italia 0.22 and previous versions, when register_globals is enabled and magic_quotes_gpc is disabled, allows remote malicious users to include and execute arbitrary local files via a .. (dot dot) in th...
Exbb Exbb Italia
NA
CVE-2008-1862
ExBB Italia 0.22 and previous versions only checks GET requests that use the QUERY_STRING for certain path manipulations, which allows remote malicious users to bypass this check via (1) POST or (2) COOKIE variables, a different vector than CVE-2006-4488. NOTE: this can be levera...
Exbb Exbb Italia
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-22120CVE-2024-35921CVE-2024-35874brute forceCVE-2024-36080unprivilegedCVE-2024-35917IDORCVE-2024-4947
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook