Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
dun vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2008-2837
SQL injection vulnerability in index.php in CMS-BRD allows remote malicious users to execute arbitrary SQL commands via the menuclick parameter.
Cms.brdconcept Cms-brd
1 EDB exploit
NA
CVE-2008-5963
Eval injection vulnerability in library/setup/rpc.php in Gravity Getting Things Done (GTD) 0.4.5 and previous versions allows remote malicious users to execute arbitrary PHP code via the objectname parameter.
Gravity-gtd Gravity-gtd 0.2
Gravity-gtd Gravity-gtd 0.3
Gravity-gtd Gravity-gtd 0.4
Gravity-gtd Gravity-gtd
1 EDB exploit
NA
CVE-2008-5989
Directory traversal vulnerability in defs.php in PHPcounter 1.3.2 and previous versions, when magic_quotes_gpc is disabled, allows remote malicious users to include and execute arbitrary local files via a .. (dot dot) in the l parameter.
Phpcounter Phpcounter 1.2.7
Phpcounter Phpcounter 1.2.0
Phpcounter Phpcounter 1.2.5
Phpcounter Phpcounter 1.2.4
Phpcounter Phpcounter 1.2.2
Phpcounter Phpcounter
Phpcounter Phpcounter 1.3.1
Phpcounter Phpcounter 1.2.6
Phpcounter Phpcounter 1.2.3
Phpcounter Phpcounter 1.2.1
Phpcounter Phpcounter 1.3.0
1 EDB exploit
NA
CVE-2008-5990
Directory traversal vulnerability in connect/init.inc in emergecolab 1.0 allows remote malicious users to include and execute arbitrary local files via a .. (dot dot) in the sitecode parameter to connect/index.php.
Eduforge Emergecolab 1.0
1 EDB exploit
NA
CVE-2008-6224
Directory traversal vulnerability in visualizza.php in Way Of The Warrior (WOTW) 5.0 and previous versions allows remote malicious users to read arbitrary files via a .. (dot dot) in the plancia parameter.
Samelinux Way Of The Warrior
1 EDB exploit
NA
CVE-2008-3418
SQL injection vulnerability in browse.php in TriO 2.1 and previous versions allows remote malicious users to execute arbitrary SQL commands via the id parameter.
Willo Trio
1 EDB exploit
NA
CVE-2008-3420
Multiple SQL injection vulnerabilities in Mobius for Mimsy XG 1 1.4.4.1 and previous versions allow remote malicious users to execute arbitrary SQL commands via (1) the id parameter to browse.php or (2) the s parameter in an exhibitions action to detail.php.
Willo Mobius Web Publishing Software
1 EDB exploit
NA
CVE-2008-2394
Multiple SQL injection vulnerabilities in TAGWORX.CMS 3.00.02 allow remote malicious users to execute arbitrary SQL commands via the (1) cid parameter to contact.php and the (2) nid parameter to news.php.
Tagworx Tagworx Cms 3.00.02
1 EDB exploit
NA
CVE-2008-4739
Directory traversal vulnerability in index.php in PlugSpace 0.1, when magic_quotes_gpc is disabled, allows remote malicious users to include and execute arbitrary local files via a .. (dot dot) in the navi parameter.
Plugspace Plugspace 0.1
1 EDB exploit
NA
CVE-2008-5071
Multiple eval injection vulnerabilities in itpm_estimate.php in Yoxel 1.23beta and previous versions allow remote authenticated users to execute arbitrary PHP code via the proj_id parameter.
Yoxel Yoxel 1.08beta
Yoxel Yoxel 1.22beta
Yoxel Yoxel 1.16beta
Yoxel Yoxel 1.20
Yoxel Yoxel 1.11beta
Yoxel Yoxel 1.13beta
Yoxel Yoxel 1.20beta
Yoxel Yoxel 1.06beta
Yoxel Yoxel 1.12beta
Yoxel Yoxel 1.14beta
Yoxel Yoxel 1.09beta
Yoxel Yoxel
Yoxel Yoxel 1.19beta
Yoxel Yoxel 1.07beta
Yoxel Yoxel 1.10beta
Yoxel Yoxel 1.15beta
Yoxel Yoxel 1.21
Yoxel Yoxel 1.17beta
Yoxel Yoxel 1.22
Yoxel Yoxel 1.18beta
Yoxel Yoxel 1.21beta
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2018-25103
CVE-2024-36279
CVE-2024-38457
elevation of privilege
CVE-2024-27801
CVE-2024-30103
NULL pointer dereference
CVE-2024-6057
XML injection
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
NEXT »