Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
uiga vulnerabilities and exploits
(subscribe to this query)
6.8
CVSSv2
CVE-2010-1528
PHP remote file inclusion vulnerability in include/template.php in Uiga Proxy, when register_globals is enabled, allows remote malicious users to execute arbitrary PHP code via a URL in the content parameter.
Uiga Proxy
1 EDB exploit
7.5
CVSSv2
CVE-2012-4055
SQL injection vulnerability in index2.php in Uiga Fan Club allows remote malicious users to execute arbitrary SQL commands via the p parameter.
Uiga Fan Club
1 EDB exploit
7.5
CVSSv2
CVE-2012-4056
SQL injection vulnerability in index2.php in Uiga Personal Portal allows remote malicious users to execute arbitrary SQL commands via the p parameter.
Uiga Personal Portal
7.5
CVSSv2
CVE-2009-3081
SQL injection vulnerability in index.php in Uiga Church Portal allows remote malicious users to execute arbitrary SQL commands via the month parameter in a calendar action. NOTE: the provenance of this information is unknown; the details are obtained solely from third party infor...
Uiga Church Portal
1 EDB exploit
7.5
CVSSv2
CVE-2010-1364
SQL injection vulnerability in index.php in Uiga Personal Portal, as downloaded on 20100301, allows remote malicious users to execute arbitrary SQL commands via the id parameter in a photos action. NOTE: some of these details are obtained from third party information.
Uiga Personal Portal
2 EDB exploits
4.3
CVSSv2
CVE-2010-1048
Cross-site scripting (XSS) vulnerability in blog/index.php in Uiga Business Portal allows remote malicious users to inject arbitrary web script or HTML via the textcomment parameter (aka the Comment Box) in a noentryid action. NOTE: some of these details are obtained from third p...
Uiga Business Portal
1 EDB exploit
7.5
CVSSv2
CVE-2010-1049
Multiple SQL injection vulnerabilities in Uiga Business Portal allow remote malicious users to execute arbitrary SQL commands via the (1) noentryid parameter to blog/index.php and the (2) p parameter to index2.php.
Uiga Business Portal
1 EDB exploit
7.5
CVSSv2
CVE-2009-3116
SQL injection vulnerability in index.php in Uiga Church Portal allows remote malicious users to execute arbitrary SQL commands via the year parameter in a calendar action.
Uiga Church Portal
1 EDB exploit
4.3
CVSSv2
CVE-2010-1367
Multiple cross-site scripting (XSS) vulnerabilities in admin/admin_login.php in Uiga Fan Club, as downloaded on 20100310, allow remote malicious users to inject arbitrary web script or HTML via the (1) admin_name and (2) admin_password parameters. NOTE: the provenance of this inf...
Uiga Fan Club 1.0
7.5
CVSSv2
CVE-2010-1366
Multiple SQL injection vulnerabilities in admin/admin_login.php in Uiga Fan Club 1.0 and previous versions allow remote malicious users to execute arbitrary SQL commands via the (1) admin_name and (2) admin_password parameters.
Uiga Fan Club 1.0
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27977
IMAP
local users
CVE-2024-32038
CVE-2023-49963
CVE-2023-22869
CVE-2024-31497
local
CVE-2024-2961
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »