Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
virtuastore virtuastore 2.0 vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2006-3402
SQL injection vulnerability in VirtuaStore 2.0 allows remote malicious users to execute arbitrary SQL commands via the password parameter when logging in.
Virtuastore Virtuastore 2.0
1 EDB exploit
NA
CVE-2006-3487
VirtuaStore 2.0 stores sensitive files under the web root with insufficient access control, which allows remote malicious users to obtain local database information by directly accessing database/virtuastore.mdb.
Virtuastore Virtuastore 2.0
NA
CVE-2006-3488
Absolute path traversal vulnerability in administrador.asp in VirtuaStore 2.0 allows remote malicious users to possibly read arbitrary directories or files via an absolute path with Windows drive letter in the Pasta parameter when link=util, acao=ftp, and acaba=sim.
Virtuastore Virtuastore 2.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27802
template injection
CVE-2024-0044
code injection
CVE-2024-35474
CVE-2024-27857
CVE-2024-23251
CVE-2024-23692
physical
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started