Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
condemned vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2009-0110
SQL injection vulnerability in read.php in RiotPix 0.61 and previous versions allows remote malicious users to execute arbitrary SQL commands via the forumid parameter.
Riotpix Riotpix
Riotpix Riotpix 0.60
Riotpix Riotpix 0.52
Riotpix Riotpix 0.5
Riotpix Riotpix 0.51
Riotpix Riotpix .05
1 EDB exploit
7.5
CVSSv2
CVE-2008-6919
profileedit.php TaskDriver 1.3 and previous versions allows remote malicious users to bypass authentication and gain administrative access by setting the auth cookie to "fook!admin."
Taskdriver Taskdriver
Taskdriver Taskdriver 1.2
1 EDB exploit
6.8
CVSSv2
CVE-2008-7062
Unrestricted file upload vulnerability in admin/index.php in Download Manager module 1.0 for LoveCMS 1.6.2 Final allows remote malicious users to execute arbitrary code by uploading a file with an executable extension, then accessing it via a direct request to the file in uploads...
Lovecms Lovecms 1.6.2
1 EDB exploit
5.1
CVSSv2
CVE-2008-5217
Directory traversal vulnerability in index.php in txtCMS 0.3, when register_globals is enabled and magic_quotes_gpc is disabled, allows remote malicious users to include and execute arbitrary local files via a .. (dot dot) in the id parameter.
Phpc0d3r Txtcms 0.3
1 EDB exploit
5
CVSSv2
CVE-2008-5218
ScriptsEz FREEze Greetings 1.0 stores pwd.txt under the web root with insufficient access control, which allows remote malicious users to obtain cleartext passwords.
Scriptsez Freeze Greetings 1.0
1 EDB exploit
7.5
CVSSv2
CVE-2008-5287
SQL injection vulnerability in catagorie.php in Werner Hilversum FAQ Manager 1.2 allows remote malicious users to execute arbitrary SQL commands via the cat_id parameter.
Scripts4you Faq Manager 1.2
1 EDB exploit
6.8
CVSSv2
CVE-2008-2887
Directory traversal vulnerability in index.php in chaozz@work FubarForum 1.5 allows remote malicious users to include and execute arbitrary local files via a .. (dot dot) in the page parameter.
Chaozzatwork Fubarforum 1.5
1 EDB exploit
7.5
CVSSv2
CVE-2008-2896
Directory traversal vulnerability in index.php in FireAnt 1.3 allows remote malicious users to include and execute arbitrary local files via a .. (dot dot) in the page parameter.
Getfireant Fireant 1.3
1 EDB exploit
6.8
CVSSv2
CVE-2008-3190
Directory traversal vulnerability in list.php in 1Scripts CodeDB 1.1.1 allows remote malicious users to include and execute arbitrary local files via a .. (dot dot) in the lang parameter.
1scripts Codedb 1.1.1
1 EDB exploit
7.5
CVSSv2
CVE-2008-3848
SQL injection vulnerability in single.php in Z-Breaknews 2.0 allows remote malicious users to execute arbitrary SQL commands via the id parameter.
Pdesigner Z-breaknews 2.0
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-49223
CVE-2024-0044
information disclosure
CVE-2024-35753
HTML injection
CVE-2024-21306
CVE-2024-35733
SQL injection
CVE-2024-35732
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
NEXT »