Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
web-app.org webapp 0.9.9 vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2005-0927
Unknown vulnerability in subs.pl for WebAPP 0.9.9 up to and including 0.9.9.2 has unknown impact and attack vectors, probably involving shell metacharacters or .. sequences.
Web-app.org Webapp 0.9.9
Web-app.org Webapp 0.9.9.2
Web-app.org Webapp 0.9.9.1
NA
CVE-2005-1628
apage.cgi in WebAPP 0.9.9.2.1, and possibly earlier versions, allows remote malicious users to execute arbitrary commands via shell metacharacters in the f parameter.
Web-app.org Webapp 0.9.9.2.1
Web-app.org Webapp 0.9.9.2
Web-app.org Webapp 0.9.9
2 EDB exploits
NA
CVE-2007-1182
WebAPP prior to 0.9.9.5 allows remote Guest users to edit a Guest profile, which has unknown impact.
Web-app.org Webapp 0.9.9.3.2
Web-app.org Webapp 0.9.9.4
Web-app.org Webapp 0.9.9
Web-app.org Webapp 0.9.9.1
Web-app.org Webapp 0.9.9.2
Web-app.org Webapp 0.9.9.2.1
Web-app.org Webapp 0.9.9.3
Web-app.org Webapp 0.9.9.3.1
NA
CVE-2007-1185
The (1) Search, (2) Edit Profile, (3) Recommend, and (4) User Approval forms in WebAPP prior to 0.9.9.5 use hidden inputs, which has unknown impact and remote attack vectors.
Web-app.org Webapp 0.9.9.2.1
Web-app.org Webapp 0.9.9.3
Web-app.org Webapp 0.9.9.3.1
Web-app.org Webapp 0.9.9.3.2
Web-app.org Webapp 0.9.9
Web-app.org Webapp 0.9.9.4
Web-app.org Webapp 0.9.9.1
Web-app.org Webapp 0.9.9.2
NA
CVE-2007-1177
WebAPP prior to 0.9.9.5 does not properly filter certain characters in contexts related to (1) the query string, (2) Profiles, (3) the Forum Post icon field, (4) the Edit Profile, and (5) the Gallery, which has unknown impact and remote attack vectors, possibly related to cross-s...
Web-app.org Webapp 0.9.9.3.1
Web-app.org Webapp 0.9.9.3.2
Web-app.org Webapp 0.9.9
Web-app.org Webapp 0.9.9.4
Web-app.org Webapp 0.9.9.1
Web-app.org Webapp 0.9.9.2
Web-app.org Webapp 0.9.9.2.1
Web-app.org Webapp 0.9.9.3
NA
CVE-2007-1188
WebAPP prior to 0.9.9.5 allows remote malicious users to submit Search form input that is not checked for (1) composition or (2) length, which has unknown impact, possibly related to "search form hijacking".
Web-app.org Webapp 0.9.9.1
Web-app.org Webapp 0.9.9.2
Web-app.org Webapp 0.9.9.2.1
Web-app.org Webapp 0.9.9.3
Web-app.org Webapp 0.9.9.3.1
Web-app.org Webapp 0.9.9.3.2
Web-app.org Webapp 0.9.9
Web-app.org Webapp 0.9.9.4
NA
CVE-2007-1181
WebAPP prior to 0.9.9.5 passes (1) Unused Informations and (2) the username through Edit Profile forms, which has unknown impact and attack vectors.
Web-app.org Webapp 0.9.9
Web-app.org Webapp 0.9.9.4
Web-app.org Webapp 0.9.9.1
Web-app.org Webapp 0.9.9.2
Web-app.org Webapp 0.9.9.2.1
Web-app.org Webapp 0.9.9.3
Web-app.org Webapp 0.9.9.3.1
Web-app.org Webapp 0.9.9.3.2
NA
CVE-2007-1184
The default configuration of WebAPP prior to 0.9.9.5 has a CAPTCHA setting of "no," which makes it easier for automated programs to submit false data.
Web-app.org Webapp 0.9.9.3
Web-app.org Webapp 0.9.9.3.1
Web-app.org Webapp 0.9.9.3.2
Web-app.org Webapp 0.9.9.4
Web-app.org Webapp 0.9.9
Web-app.org Webapp 0.9.9.1
Web-app.org Webapp 0.9.9.2
Web-app.org Webapp 0.9.9.2.1
NA
CVE-2007-1186
WebAPP prior to 0.9.9.5 does not "censor" the Latest Member real name, which has unknown impact.
Web-app.org Webapp 0.9.9.2
Web-app.org Webapp 0.9.9.2.1
Web-app.org Webapp 0.9.9.3
Web-app.org Webapp 0.9.9.3.1
Web-app.org Webapp 0.9.9.3.2
Web-app.org Webapp 0.9.9.4
Web-app.org Webapp 0.9.9
Web-app.org Webapp 0.9.9.1
NA
CVE-2007-1187
WebAPP prior to 0.9.9.5 allows remote authenticated users, without admin privileges, to obtain sensitive information via (1) the Forum Archive feature and (2) Recent Searches.
Web-app.org Webapp 0.9.9.2
Web-app.org Webapp 0.9.9.2.1
Web-app.org Webapp 0.9.9.3
Web-app.org Webapp 0.9.9.3.1
Web-app.org Webapp 0.9.9.3.2
Web-app.org Webapp 0.9.9.4
Web-app.org Webapp 0.9.9
Web-app.org Webapp 0.9.9.1
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27322
cross-site request forgery
unauthorized
CVE-2024-33925
reflected XSS
CVE-2023-51580
CVE-2023-51579
CVE-2015-2051
CVE-2023-51609
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »