Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
aliaksandr hartsuyeu vulnerabilities and exploits
(subscribe to this query)
760
VMScore
CVE-2006-0167
SQL injection vulnerability in MyPhPim 01.05 allows remote malicious users to execute arbitrary SQL commands via the (1) cal_id parameter in calendar.php3 and the (2) password field on the login page.
Myphpim Myphpim 01.05
2 EDB exploits
520
VMScore
CVE-2006-1569
Multiple SQL injection vulnerabilities in RedCMS 0.1 allow remote malicious users to execute arbitrary SQL commands via the (1) username or (2) password parameters to (a) login.php or (b) register.php; or (3) u parameter to (c) profile.php.
Redcms Redcms 0.1
2 EDB exploits
650
VMScore
CVE-2006-1334
Multiple SQL injection vulnerabilities in Maian Weblog 2.0 allow remote malicious users to execute arbitrary SQL commands via the (1) entry and (2) email parameters to (a) print.php and (b) mail.php.
Maian Script World Maian Weblog
2 EDB exploits
505
VMScore
CVE-2006-0877
Cross-site scripting vulnerability in Easy Forum 2.5 allows remote malicious users to inject arbitrary web script or HTML via the image variable.
Easy Forum Easy Forum 2.5
1 EDB exploit
755
VMScore
CVE-2006-4504
SQL injection vulnerability in NX5Linx 1.0 allows remote malicious users to execute arbitrary SQL commands via the (1) c and (2) l parameters.
Nx5 Nx5linx 1.0
1 EDB exploit
755
VMScore
CVE-2006-4505
CRLF injection vulnerability in links.php in NX5Linx 1.0 allows remote malicious users to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via a CRLF sequence in the url parameter.
Nx5 Nx5linx 1.0
1 EDB exploit
755
VMScore
CVE-2006-0775
Multiple SQL injection vulnerabilities in show.php in BirthSys 3.1 allow remote malicious users to execute arbitrary SQL commands via the $month variable. NOTE: a vector regarding the $date parameter and data.php (date.php) was originally reported, but this appears to be in error...
Ridder Roeland Birthsys 3.1
1 EDB exploit
435
VMScore
CVE-2006-0409
Cross-site scripting (XSS) vulnerability in index.php in Pixelpost Photoblog 1.4.3 allows remote malicious users to inject arbitrary web script or HTML via the "Add Comment" field in a comment popup.
Pixelpost Photoblog 1.4.3
1 EDB exploit
755
VMScore
CVE-2006-0491
SQL injection vulnerability in SZUserMgnt.class.php in SZUserMgnt 1.4 allows remote malicious users to execute arbitrary SQL commands via the username parameter.
Subzane Szusermgnt 1.4
1 EDB exploit
668
VMScore
CVE-2006-0606
SQL injection vulnerability in Unknown Domain Shoutbox 2005.07.21 allows remote malicious users to execute arbitrary SQL commands via unknown attack vectors.
Unknown Domain Shoutbox 2005-07-21
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
type confusion
IMAP
CVE-2024-36103
CVE-2024-28995
CVE-2024-37325
CVE-2024-30078
CVE-2024-30082
SQL injection
CVE-2024-30052
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
6
NEXT »