Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
website baker website baker vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2006-2307
Cross-site scripting (XSS) vulnerability in Website Baker CMS prior to 2.6.4 allows remote malicious users to inject arbitrary web script or HTML via a user display name.
Website Baker Website Baker 2.5.2
Website Baker Website Baker 2.6
Website Baker Website Baker 2.6.1
7.5
CVSSv2
CVE-2005-4140
SQL injection vulnerability in admin/login/index.php in Website Baker 2.6.0 allows remote malicious users to execute arbitrary SQL commands via the username parameter, as used by the user field.
Website Baker Website Baker 2.5.2
Website Baker Website Baker 2.6
1 EDB exploit
6.8
CVSSv2
CVE-2007-0527
SQL injection vulnerability in the is_remembered function in class.login.php in Website Baker 2.6.5 and previous versions allows remote malicious users to execute arbitrary SQL commands via the REMEMBER_KEY cookie parameter. NOTE: some of these details are obtained from third par...
Website Baker Website Baker
4.3
CVSSv2
CVE-2005-2435
Cross-site scripting (XSS) vulnerability in browse.php in Website Baker Project allows remote malicious users to inject arbitrary web script or HTML via the dir parameter.
Website Baker Website Baker
5
CVSSv2
CVE-2005-2436
browse.php in Website Baker Project allows remote malicious users to obtain sensitive data via (1) a directory that does not exist in the dir parameter or (2) a direct request to certain php files, which reveal the path in an error message.
Website Baker Website Baker
5
CVSSv2
CVE-2005-2437
Website Baker Project does not properly verify the file extensions of uploaded files, which allows remote malicious users to upload and execute arbitrary PHP code.
Website Baker Website Baker
5
CVSSv2
CVE-2011-3817
Website Baker 2.8.1 allows remote malicious users to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by admin/media/parameters.php and certain other files. NOTE: this might overlap CVE-2005...
Websitebaker2 Website Baker 2.8.1
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3380
CVE-2024-1694
local file inclusion
CVE-2024-5645
CVE-2024-24919
XSS
CVE-2024-36774
CVE-2024-21306
SQL
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started