Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
tru-zone nukeet vulnerabilities and exploits
(subscribe to this query)
6.8
CVSSv2
CVE-2008-2134
The Journal module in Tru-Zone Nuke ET 3.x allows remote malicious users to obtain access to arbitrary user accounts, and alter or delete data, via a modified username in an unspecified cookie.
Tru-zone Nukeet 3.2
Tru-zone Nukeet 3.3
Tru-zone Nukeet 3.4
Tru-zone Nukeet 3.0
Tru-zone Nukeet 3.1
Tru-zone Nukeet 3.9
4.3
CVSSv2
CVE-2008-2133
Cross-site scripting (XSS) vulnerability in the Journal module in Tru-Zone Nuke ET 3.x allows remote malicious users to inject arbitrary web script or HTML via the title parameter in a new entry, as demonstrated by a CSS property in the STYLE attribute of a DIV element, a differe...
Tru-zone Nukeet 3.1
Tru-zone Nukeet 3.2
Tru-zone Nukeet 3.0
Tru-zone Nukeet 3.3
Tru-zone Nukeet 3.4
Tru-zone Nukeet 3.9
7.5
CVSSv2
CVE-2005-3748
SQL injection vulnerability in the Search module in Tru-Zone Nuke ET 3.2, and possibly earlier versions, allows remote malicious users to execute arbitrary SQL commands via the query parameter.
Tru-zone Nukeet 3.2
Tru-zone Nukeet 3.0
Tru-zone Nukeet 3.1
1 EDB exploit
6.8
CVSSv2
CVE-2005-1610
Cross-site scripting (XSS) vulnerability in security.php for Tru-Zone NukeET 3.0 and 3.1 allows remote malicious users to inject arbitrary web script or HTML via a base64 encoded Codigo parameter.
Tru-zone Nukeet 3.0
Tru-zone Nukeet 3.1
1 EDB exploit
4.3
CVSSv2
CVE-2008-1873
Cross-site scripting (XSS) vulnerability in the private message feature in Nuke ET 3.2 and 3.4, when using Internet Explorer, allows remote authenticated users to inject arbitrary web script or HTML via a CSS property in the STYLE attribute of a DIV element in the mensaje paramet...
Tru-zone Nukeet 3.4
Tru-zone Nukeet 3.2
1 EDB exploit
6.5
CVSSv2
CVE-2007-1925
The borrado function in modules/Your_Account/index.php in Tru-Zone Nuke ET 3.4 before fix 7 does not verify that account deletion requests come from the account owner, which allows remote authenticated users to delete arbitrary accounts via a modified cookie.
Tru-zone Nukeet
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
cross-site scripting
CVE-2024-5158
XML external entity
CVE-2024-4262
CVE-2024-2036
CVE-2024-4985
CVE-2024-21791
remote attackers
CVE-2023-43208
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started