Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
tru-zone nukeet vulnerabilities and exploits
(subscribe to this query)
383
VMScore
CVE-2008-2133
Cross-site scripting (XSS) vulnerability in the Journal module in Tru-Zone Nuke ET 3.x allows remote malicious users to inject arbitrary web script or HTML via the title parameter in a new entry, as demonstrated by a CSS property in the STYLE attribute of a DIV element, a differe...
Tru-zone Nukeet 3.1
Tru-zone Nukeet 3.2
Tru-zone Nukeet 3.0
Tru-zone Nukeet 3.3
Tru-zone Nukeet 3.4
Tru-zone Nukeet 3.9
605
VMScore
CVE-2008-2134
The Journal module in Tru-Zone Nuke ET 3.x allows remote malicious users to obtain access to arbitrary user accounts, and alter or delete data, via a modified username in an unspecified cookie.
Tru-zone Nukeet 3.2
Tru-zone Nukeet 3.3
Tru-zone Nukeet 3.4
Tru-zone Nukeet 3.0
Tru-zone Nukeet 3.1
Tru-zone Nukeet 3.9
755
VMScore
CVE-2005-3748
SQL injection vulnerability in the Search module in Tru-Zone Nuke ET 3.2, and possibly earlier versions, allows remote malicious users to execute arbitrary SQL commands via the query parameter.
Tru-zone Nukeet 3.2
Tru-zone Nukeet 3.0
Tru-zone Nukeet 3.1
1 EDB exploit
685
VMScore
CVE-2005-1610
Cross-site scripting (XSS) vulnerability in security.php for Tru-Zone NukeET 3.0 and 3.1 allows remote malicious users to inject arbitrary web script or HTML via a base64 encoded Codigo parameter.
Tru-zone Nukeet 3.0
Tru-zone Nukeet 3.1
1 EDB exploit
435
VMScore
CVE-2008-1873
Cross-site scripting (XSS) vulnerability in the private message feature in Nuke ET 3.2 and 3.4, when using Internet Explorer, allows remote authenticated users to inject arbitrary web script or HTML via a CSS property in the STYLE attribute of a DIV element in the mensaje paramet...
Tru-zone Nukeet 3.4
Tru-zone Nukeet 3.2
1 EDB exploit
578
VMScore
CVE-2007-1925
The borrado function in modules/Your_Account/index.php in Tru-Zone Nuke ET 3.4 before fix 7 does not verify that account deletion requests come from the account owner, which allows remote authenticated users to delete arbitrary accounts via a modified cookie.
Tru-zone Nukeet
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3380
CVE-2024-1694
local file inclusion
CVE-2024-5645
CVE-2024-24919
XSS
CVE-2024-36774
CVE-2024-21306
SQL
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started