Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
d3b4g vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2008-5785
SQL injection vulnerability in V3 Chat - Profiles/Dating Script 3.0.2 allows remote malicious users to execute arbitrary SQL commands via the (1) username and (2) password fields.
V3chat V3 Chat Profiles Dating Script 3.0.2
1 EDB exploit
NA
CVE-2008-6332
SQL injection vulnerability in login.php in Simple Customer 1.2 allows remote malicious users to execute arbitrary SQL commands via the password parameter.
Simplecustomer Simple Customer 1.2
1 EDB exploit
NA
CVE-2012-6584
Multiple SQL injection vulnerabilities in MYRE Realty Manager allow remote malicious users to execute arbitrary SQL commands via the bathrooms1 parameter to (1) demo2/search.php or (2) search.php.
Myrephp Myre Realty Manager -
1 EDB exploit
NA
CVE-2012-6587
Cross-site scripting (XSS) vulnerability in vacation/1_mobile/alert_members.php in MYRE Vacation Rental Software allows remote malicious users to inject arbitrary web script or HTML via the link_idd parameter in a login action.
Myrephp Myre Vacation Rental -
1 EDB exploit
NA
CVE-2008-6487
Multiple SQL injection vulnerabilities in login.asp in Digiappz DigiAffiliate 1.4 and previous versions allow remote malicious users to execute arbitrary SQL commands via the (1) admin and (2) password fields.
Digiappz Digiaffiliate
1 EDB exploit
NA
CVE-2008-4774
Cross-site scripting (XSS) vulnerability in main/main.php in QuestCMS allows remote malicious users to inject arbitrary web script or HTML via the cx parameter.
Questwork Questcms
1 EDB exploit
NA
CVE-2013-5578
Buffer overflow in the ToDot method in the WINGRAPHVIZLib.NEATO ActiveX control in WinGraphviz.dll in StarUML allows remote malicious users to execute arbitrary code via a long argument.
Staruml Staruml 5.0.2.1570
1 EDB exploit
NA
CVE-2008-6215
Cross-site scripting (XSS) vulnerability in cadena_ofertas_ext.php in Venalsur Booking Centre Booking System for Hotels Group allows remote malicious users to inject arbitrary web script or HTML via the OfertaID parameter.
Bookingcentre Booking System For Hotels Group -
1 EDB exploit
NA
CVE-2008-6246
SQL injection vulnerability in category.php in Scripts For Sites (SFS) EZ Webring allows remote malicious users to execute arbitrary SQL commands via the cat parameter.
Scripts-for-sites Ez Webring -
1 EDB exploit
NA
CVE-2008-6326
SQL injection vulnerability in login.php in Simple Customer as downloaded on 20081118 allows remote malicious users to execute arbitrary SQL commands via the email parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party inf...
Simplecustomer Simple Customer -
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
HTML injection
CVE-2024-35894
SQL
CVE-2024-5105
CVE-2014-100005
CVE-2024-35895
unauthorized
CVE-2024-22120
CVE-2024-35890
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
NEXT »