Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
d3b4g vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2008-6326
SQL injection vulnerability in login.php in Simple Customer as downloaded on 20081118 allows remote malicious users to execute arbitrary SQL commands via the email parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party inf...
Simplecustomer Simple Customer -
1 EDB exploit
9.3
CVSSv2
CVE-2013-5578
Buffer overflow in the ToDot method in the WINGRAPHVIZLib.NEATO ActiveX control in WinGraphviz.dll in StarUML allows remote malicious users to execute arbitrary code via a long argument.
Staruml Staruml 5.0.2.1570
1 EDB exploit
7.5
CVSSv2
CVE-2008-6487
Multiple SQL injection vulnerabilities in login.asp in Digiappz DigiAffiliate 1.4 and previous versions allow remote malicious users to execute arbitrary SQL commands via the (1) admin and (2) password fields.
Digiappz Digiaffiliate
1 EDB exploit
7.5
CVSSv2
CVE-2010-5289
Buffer overflow in the Authenticate method in the INCREDISPOOLERLib.Pop ActiveX control in ImSpoolU.dll in IncrediMail 2.0 allows remote malicious users to cause a denial of service (application crash) or possibly have unspecified other impact via a long string in the first argum...
Incredimail Incredimail 2.0
1 EDB exploit
4.3
CVSSv2
CVE-2012-6585
Cross-site scripting (XSS) vulnerability in search.php in MYRE Realty Manager allows remote malicious users to inject arbitrary web script or HTML via the cat_id1 parameter.
Myrephp Myre Realty Manager -
1 EDB exploit
7.5
CVSSv2
CVE-2012-6586
Multiple SQL injection vulnerabilities in MYRE Vacation Rental Software allow remote malicious users to execute arbitrary SQL commands via the (1) garage1 or (2) bathrooms1 parameter to vacation/1_mobile/search.php, or (3) unspecified input to vacation/widgate/request_more_inform...
Myrephp Myre Vacation Rental -
1 EDB exploit
7.5
CVSSv2
CVE-2008-4772
SQL injection vulnerability in main/main.php in QuestCMS allows remote malicious users to execute arbitrary SQL commands via the obj parameter.
Questwork Questcms
1 EDB exploit
4.3
CVSSv2
CVE-2008-4774
Cross-site scripting (XSS) vulnerability in main/main.php in QuestCMS allows remote malicious users to inject arbitrary web script or HTML via the cx parameter.
Questwork Questcms
1 EDB exploit
7.5
CVSSv2
CVE-2008-6246
SQL injection vulnerability in category.php in Scripts For Sites (SFS) EZ Webring allows remote malicious users to execute arbitrary SQL commands via the cat parameter.
Scripts-for-sites Ez Webring -
1 EDB exploit
5
CVSSv2
CVE-2008-4773
Directory traversal vulnerability in main/main.php in QuestCMS allows remote malicious users to read arbitrary local files via a .. (dot dot) in the theme parameter.
Questwork Questcms
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
validation
CVE-2012-1823
malicious code
CVE-2024-5770
CVE-2023-45866
CVE-2024-35687
local users
CVE-2024-31246
CVE-2024-35730
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
NEXT »