Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
night_warrior771 vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2006-0358
Multiple SQL injection vulnerabilities in PowerPortal, possibly 1.1 beta up to and including 1.3, allow remote malicious users to execute arbitrary SQL commands via the search parameter in (1) index.php and (2) search.php. NOTE: This issue might overlap CVE-2004-0663.2.
Powerportal Powerportal 1.1b
Powerportal Powerportal 1.3
Powerportal Powerportal 1.3b
2 EDB exploits
NA
CVE-2006-0480
Cross-site scripting (XSS) vulnerability in the Articles module in sPaiz-Nuke allows remote malicious users to inject arbitrary web script or HTML via the query parameter in the search file.
Spaiz Spaiz-nuke Cms 0
1 EDB exploit
NA
CVE-2006-0185
Multiple cross-site scripting vulnerabilities in the (1) Pool or (2) News Modules in Php-Nuke allow remote malicious users to inject arbitrary web script or HTML via javascript in the SRC attribute of an IMG tag.
Php-nuke News Module
Php-nuke Pool Module
1 EDB exploit
NA
CVE-2006-0198
Cross-site scripting (XSS) vulnerability in a certain module, possibly poll or Pool, for XOOPS allows remote malicious users to inject arbitrary web script or HTML via JavaScript in the SRC attribute of an IMG element in a comment.
Xoops Xoops Pool Module
1 EDB exploit
NA
CVE-2006-4357
PHP remote file inclusion vulnerability in clients/index.php in Diesel Smart Traffic allows remote malicious users to execute arbitrary PHP code via a URL in the src parameter.
Dieselscripts Diesel Smart Traffic
1 EDB exploit
NA
CVE-2006-4362
Cross-site scripting (XSS) vulnerability in getad.php in Diesel Paid Mail allows remote malicious users to inject arbitrary web script or HTML via the ps parameter.
Dieselscripts Diesel Paid Mail
1 EDB exploit
NA
CVE-2006-0222
Cross-site scripting (XSS) vulnerability in fullview.php in AlstraSoft Template Seller Pro allows remote malicious users to inject arbitrary web script or HTML via the tempid parameter.
Alstrasoft Template Seller
1 EDB exploit
NA
CVE-2006-0624
SQL injection vulnerability in check.asp in Whomp Real Estate Manager XP 2005 allows remote malicious users to execute arbitrary SQL commands via the (1) username and (2) password parameters.
Webeveyn Whomp Real Estate Manager Xp 2005
1 EDB exploit
NA
CVE-2006-4358
Cross-site scripting (XSS) vulnerability in index.php in Diesel Pay allows remote malicious users to inject arbitrary web script or HTML via the read parameter.
Dieselscripts Diesel Pay
1 EDB exploit
NA
CVE-2006-4443
PHP remote file inclusion vulnerability in myajaxphp.php in AlstraSoft Video Share Enterprise allows remote malicious users to execute arbitrary PHP code via a URL in the config[BASE_DIR] parameter.
Alstrasoft Video Share Enterprise 4.0
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-40673
CVE-2024-36674
CVE-2024-27348
unspecified
CVE-2024-24919
CVE-2024-4870
malicious code
CVE-2024-2019
hard-coded
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »