Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
g4n0k vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2008-6912
Zeeways SHAADICLONE 2.0 allows remote malicious users to bypass authentication and gain administrative privileges via a direct request to admin/home.php.
Zeeways Shaadiclone 2.0
2 EDB exploits
9.3
CVSSv2
CVE-2009-1641
Multiple stack-based buffer overflows in Mini-stream Ripper 3.0.1.1 allow remote malicious users to execute arbitrary code via (1) a long rtsp URL in a .ram file and (2) a long string in the HREF attribute of a REF element in a .asx file.
Mini-stream Ripper 3.0.1.1
2 EDB exploits
7.5
CVSSv2
CVE-2008-6232
Pre Shopping Mall allows remote malicious users to bypass authentication and gain administrative access by setting the (1) adminname and the (2) adminid cookies to "admin".
Preprojects Pre Shopping Mall -
2 EDB exploits
9.3
CVSSv2
CVE-2009-1645
Multiple stack-based buffer overflows in Mini-stream Easy RM-MP3 Converter 3.0.0.7 allow remote malicious users to execute arbitrary code via (1) a long rtsp URL in a .ram file and (2) a long string in the HREF attribute of a REF element in a .asx file.
Mini-stream Easy Rm-mp3 Converter 3.0.0.7
2 EDB exploits
7.5
CVSSv2
CVE-2008-6231
Pre Classified Listing PHP allows remote malicious users to bypass authentication and gain administrative access by setting the (1) adminname and the (2) adminid cookies to "admin".
Preprojects Pre Classified Listings -
2 EDB exploits
6.8
CVSSv2
CVE-2009-1659
Unrestricted file upload vulnerability in admin/uploadimage.php in eLitius 1.0 allows remote malicious users to bypass intended access restrictions and upload and execute arbitrary files via an avatar file with an accepted Content-Type such as image/gif, then requesting the file ...
Intelliants Elitius 1.0
1 EDB exploit
6.8
CVSSv2
CVE-2008-5565
Cross-site request forgery (CSRF) vulnerability in admin/settings.php in DL PayCart 1.34 and previous versions allows remote malicious users to change the admin password via a logout action in conjunction with the NewAdmin, NewPass1, and NewPass2 parameters.
Dinkumsoft Dl Paycart 1.01
Dinkumsoft Dl Paycart
1 EDB exploit
6.8
CVSSv2
CVE-2008-5567
Cross-site request forgery (CSRF) vulnerability in admin/ad_settings.php in Bonza Cart 1.10 and previous versions allows remote malicious users to change the admin password via a logout action in conjunction with the NewAdmin, NewPass1, and NewPass2 parameters.
Bonzacart Bonza Cart
1 EDB exploit
7.5
CVSSv2
CVE-2008-5651
SQL injection vulnerability in plugins/bookmarker/bookmarker_backend.php in MyioSoft EasyBookMarker 4.0 allows remote malicious users to execute arbitrary SQL commands via the Parent parameter.
Myiosoft Easybookmarker 4.0
1 EDB exploit
6.8
CVSSv2
CVE-2008-6226
SQL injection vulnerability in moreinfo.php in Pre Projects PHP Auto Listings Script, when magic_quotes_gpc is disabled, allows remote malicious users to execute arbitrary SQL commands via the itemno parameter.
Preproject Php Auto Listings Script Nil
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-49223
CVE-2024-0044
information disclosure
CVE-2024-35753
HTML injection
CVE-2024-21306
CVE-2024-35733
SQL injection
CVE-2024-35732
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
6
NEXT »