Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
virtuastore virtuastore 2.0 vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2006-3402
SQL injection vulnerability in VirtuaStore 2.0 allows remote malicious users to execute arbitrary SQL commands via the password parameter when logging in.
Virtuastore Virtuastore 2.0
1 EDB exploit
5
CVSSv2
CVE-2006-3487
VirtuaStore 2.0 stores sensitive files under the web root with insufficient access control, which allows remote malicious users to obtain local database information by directly accessing database/virtuastore.mdb.
Virtuastore Virtuastore 2.0
5
CVSSv2
CVE-2006-3488
Absolute path traversal vulnerability in administrador.asp in VirtuaStore 2.0 allows remote malicious users to possibly read arbitrary directories or files via an absolute path with Windows drive letter in the Pasta parameter when link=util, acao=ftp, and acaba=sim.
Virtuastore Virtuastore 2.0
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
inject
CVE-2024-34001
CVE-2024-37018
LFI
CVE-2024-1275
CVE-2024-1086
CSRF
CVE-2024-31030
CVE-2024-24919
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started