Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ajsquare vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2010-5322
Cross-site scripting (XSS) vulnerability in ZeusCart 4.0 and previous versions allows remote malicious users to inject arbitrary web script or HTML via the search parameter in a search action to index.php.
Ajsquare Zeuscart
1 EDB exploit
NA
CVE-2008-6721
SQL injection vulnerability in index.php in AJ Square AJ Article allows remote malicious users to execute arbitrary SQL commands via the txtName parameter (aka the username field).
Ajsquare Aj Article
1 EDB exploit
NA
CVE-2008-7041
AJ Classifieds allows remote malicious users to bypass authentication and gain administrator privileges via a direct request to admin/home.php.
Ajsquare Aj Classifieds -
1 EDB exploit
NA
CVE-2008-7051
AJ Square AJ Article allows remote malicious users to bypass authentication and access administrator functionality via a direct request to (1) user.php, (2) articles.php, (3) articlesuspend.php, (4) site.php, (5) statistics.php, (6) mail.php, (7) category.php, (8) subcategory.php...
Ajsquare Aj Article
1 EDB exploit
NA
CVE-2015-2182
Multiple cross-site scripting (XSS) vulnerabilities in ZeusCart 4 allow remote malicious users to inject arbitrary web script or HTML via the (1) schltr parameter in a brands action or (2) brand parameter in a viewbrands action to index.php. NOTE: The search parameter vector is a...
Ajsquare Zeuscart 4.0
1 EDB exploit
NA
CVE-2015-2184
ZeusCart 4 allows remote malicious users to obtain configuration information via a getphpinfo action to admin/, which calls the phpinfo function.
Ajsquare Zeuscart 4.0
1 EDB exploit
NA
CVE-2009-2779
SQL injection vulnerability in index.php in AJ Matrix DNA allows remote malicious users to execute arbitrary SQL commands via the id parameter in a productdetail action.
Ajsquare Aj Matrix Dna
1 EDB exploit
NA
CVE-2008-7044
SQL injection vulnerability in admin/include/newpoll.php in AJ Square Free Polling Script (AJPoll) Database version allows remote malicious users to execute arbitrary SQL commands via the ques parameter.
Ajsquare Free Polling Script
1 EDB exploit
NA
CVE-2008-7045
AJ Square Free Polling Script (AJPoll) Database version allows remote malicious users to bypass authentication and reset poll votes via a direct request to admin/resetvote.php.
Ajsquare Free Polling Script
1 EDB exploit
NA
CVE-2008-7046
AJ Square Free Polling Script (AJPoll) allows remote malicious users to bypass authentication and create new polls via a direct request to admin/include/newpoll.php, a different vector than CVE-2008-7045. NOTE: the provenance of this information is unknown; the details are obtain...
Ajsquare Free Polling Script
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-7073
CVE-2024-5496
CVE-2024-5495
XPath injection
bypass
CVE-2024-30043
CVE-2024-24919
denial of service
CVE-2024-35468
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »