Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
khashayar fereidani vulnerabilities and exploits
(subscribe to this query)
445
VMScore
CVE-2008-2202
Multiple cross-site scripting (XSS) vulnerabilities in Maian Uploader 4.0 allow remote malicious users to inject arbitrary web script or HTML via the (1) keywords parameter to upload/admin/index.php in a search action, the (2) msg_charset and (3) msg_header9 parameters to admin/i...
Maianscriptworld Maian Uploader 4.0
3 EDB exploits
270
VMScore
CVE-2008-3712
Multiple cross-site scripting (XSS) vulnerabilities in Mambo 4.6.2 and 4.6.5, when register_globals is enabled, allow remote malicious users to inject arbitrary web script or HTML via the (1) query string to mambots/editors/mostlyce/jscripts/tiny_mce/filemanager/connectors/php/co...
Mambo Mambo 4.6.2
Mambo Mambo 4.6.5
2 EDB exploits
655
VMScore
CVE-2014-3857
Multiple SQL injection vulnerabilities in Kerio Control Statistics in Kerio Control (formerly WinRoute Firewall) prior to 8.3.2 allow remote authenticated users to execute arbitrary SQL commands via the (1) x_16 or (2) x_17 parameter to print.php.
Kerio Control 8.3.0
Kerio Control
1 EDB exploit
440
VMScore
CVE-2008-3569
Multiple cross-site scripting (XSS) vulnerabilities in XAMPP 1.6.7, when register_globals is enabled, allow remote malicious users to inject arbitrary web script or HTML via the text parameter to (1) iart.php and (2) ming.php.
Apache Friends Xampp 1.6.7
2 EDB exploits
440
VMScore
CVE-2008-2082
Cross-site scripting (XSS) vulnerability in index.php in Siteman 2.0.x2 allows remote malicious users to inject arbitrary web script or HTML via the module parameter, which leaks the path in an error message.
Siteman Siteman 2.0
2 EDB exploits
440
VMScore
CVE-2008-2188
Multiple cross-site scripting (XSS) vulnerabilities in EJ3 BlackBook 1.0 allow remote malicious users to inject arbitrary web script or HTML via the (1) bookCopyright and (2) ver parameters to (a) footer.php, and the (3) bookName, (4) bookMetaTags, and (5) estiloCSS parameters to...
Eejj33 Blackbook 1.0
2 EDB exploits
755
VMScore
CVE-2008-0796
SQL injection vulnerability in threads.php in Nuboard 0.5 allows remote malicious users to execute arbitrary SQL commands via the ssid parameter.
Nuboard Nuboard 0.5
1 EDB exploit
755
VMScore
CVE-2008-0856
Multiple SQL injection vulnerabilities in e-Vision CMS 2.02 allow remote malicious users to execute arbitrary SQL commands via the id parameter to (1) iframe.php and (2) print.php. NOTE: the provenance of this information is unknown; the details are obtained solely from third par...
E-vision E-vision Cms 2.02
1 EDB exploit
755
VMScore
CVE-2009-3541
PHP remote file inclusion vulnerability in CoupleDB.php in PHPGenealogy 2.0 allows remote malicious users to execute arbitrary PHP code via a URL in the DataDirectory parameter.
Phpgenealogy Phpgenealogy 2.0
1 EDB exploit
755
VMScore
CVE-2009-3543
SQL injection vulnerability in _phenotype/admin/login.php in Phenotype CMS prior to 2.9 allows remote malicious users to execute arbitrary SQL commands via the user parameter (aka the login name).
Phenotype-cms Phenotype Cms 2.1
Phenotype-cms Phenotype Cms 2.4
Phenotype-cms Phenotype Cms 2.3
Phenotype-cms Phenotype Cms 2.5.1
Phenotype-cms Phenotype Cms 2.0
Phenotype-cms Phenotype Cms 2.2
Phenotype-cms Phenotype Cms 2.6
Phenotype-cms Phenotype Cms
Phenotype-cms Phenotype Cms 1.0
Phenotype-cms Phenotype Cms 2.5
Phenotype-cms Phenotype Cms 2.7
1 EDB exploit
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
camera
bypass
CVE-2024-3592
CVE-2024-37383
CVE-2024-24919
CVE-2024-27822
CVE-2024-36788
CVE-2024-36789
man-in-the-middle
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
6
NEXT »