Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
alphanix vulnerabilities and exploits
(subscribe to this query)
755
VMScore
CVE-2008-6319
SQL injection vulnerability in calendarevent.cfm in CF_Calendar allows remote malicious users to execute arbitrary SQL commands via the calid parameter.
Cfmsource Cf Calendar -
1 EDB exploit
755
VMScore
CVE-2008-6320
SQL injection vulnerability in index.cfm in CF Shopkart 5.2.2 allows remote malicious users to execute arbitrary SQL commands via the Category parameter in a ViewCategory action.
Cfshopkart Cf Shopkart 5.2.2
1 EDB exploit
505
VMScore
CVE-2008-6321
CF Shopkart 5.2.2 stores cfshopkart52.mdb under the web root with insufficient access control, which allows remote malicious users to obtain sensitive information, such as usernames and passwords, via a direct request.
Cfshopkart Cf Shopkart 5.2.2
1 EDB exploit
755
VMScore
CVE-2008-6322
SQL injection vulnerability in index.cfm in CFMSource CFMBlog allows remote malicious users to execute arbitrary SQL commands via the categorynbr parameter.
Cfmsource Cfmblog -
1 EDB exploit
755
VMScore
CVE-2008-6323
SQL injection vulnerability in forummessages.cfm in CFMSource CF_Auction allows remote malicious users to execute arbitrary SQL commands via the categorynbr parameter.
Cfmsource Cf Auction -
1 EDB exploit
755
VMScore
CVE-2008-6324
SQL injection vulnerability in forummessages.cfm in CF_Forum allows remote malicious users to execute arbitrary SQL commands via the categorynbr parameter.
Cfmsource Cf Forum -
1 EDB exploit
505
VMScore
CVE-2008-6354
The Net Guys ASPired2poll stores sensitive information under the web root with insufficient access control, which allows remote malicious users to download a database containing the username and password via a direct request to ASPired2poll.mdb.
Thenetguys Aspired2poll -
1 EDB exploit
505
VMScore
CVE-2008-6355
The Net Guys ASPired2Protect stores sensitive information under the web root with insufficient access control, which allows remote malicious users to download a database containing the username and password via a direct request to ASPired2Protect.mdb.
Thenetguys Aspired2protect -
1 EDB exploit
505
VMScore
CVE-2008-6374
CodefixerSoftware MailingListPro Free Edition stores sensitive information under the web root with insufficient access control, which allows remote malicious users to obtain sensitive information via a direct request to db/MailingList.mdb.
Codefixer Mailinglistpro -
1 EDB exploit
755
VMScore
CVE-2008-5888
Multiple SQL injection vulnerabilities in Click&Rank allow remote malicious users to execute arbitrary SQL commands via the id parameter to (1) hitcounter.asp, (2) user_delete.asp, and (3) user_update.asp; (4) the userid parameter to admin_login.asp (aka the USERNAME field in...
Icash Click\\&rank Nil
1 EDB exploit
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
inject
CVE-2024-34001
CVE-2024-37018
LFI
CVE-2024-1275
CVE-2024-1086
CSRF
CVE-2024-31030
CVE-2024-24919
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
NEXT »