Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
nukedx vulnerabilities and exploits
(subscribe to this query)
6.4
CVSSv2
CVE-2006-2032
Multiple SQL injection vulnerabilities in Core CoreNews 2.0.1 and previous versions allow remote malicious users to execute arbitrary SQL commands via the (1) icon_id and (2) userid parameters in preview.php.
Corenews Corenews
1 EDB exploit
7.5
CVSSv2
CVE-2006-2731
Multiple SQL injection vulnerabilities in Enigma Haber 4.3 and previous versions allow remote malicious users to execute arbitrary SQL commands via the (1) id parameter in (a) e_mesaj_yas.asp, (b) edi_haber.asp, and (c) haber_devam.asp; (2) hid parameter in (d) yazdir.asp and (e)...
Enigma Haber Enigma Haber
Enigma Haber Enigma Haber 4.2
1 EDB exploit
4.3
CVSSv2
CVE-2006-2755
Cross-site scripting (XSS) vulnerability in index.php in UBBThreads 5.x and previous versions allows remote malicious users to inject arbitrary web script or HTML via the debug parameter, as demonstrated by stealing MD5 hashes of passwords.
Ubbcentral Ubb.threads 5.5.1
Ubbcentral Ubb.threads 6.5
Ubbcentral Ubb.threads 6.5.1
Ubbcentral Ubb.threads 6.1
Ubbcentral Ubb.threads 6.2.1
Ubbcentral Ubb.threads 6.0.1
Ubbcentral Ubb.threads 6.4.4
Ubbcentral Ubb.threads 6.4.3
Ubbcentral Ubb.threads 6.4.2
Ubbcentral Ubb.threads 6.4.1
Ubbcentral Ubb.threads 6.2.2
Ubbcentral Ubb.threads 6.2
Ubbcentral Ubb.threads 6.5.1.1
Ubbcentral Ubb.threads 6.5.3
Ubbcentral Ubb.threads 5.0
Ubbcentral Ubb.threads 6.5.2
Ubbcentral Ubb.threads 6.0.3
Ubbcentral Ubb.threads 6.1.1
Ubbcentral Ubb.threads 6.4
Ubbcentral Ubb.threads 6.5.2 Beta2
Ubbcentral Ubb.threads 6.3.1
Ubbcentral Ubb.threads 6.0.2
1 EDB exploit
10
CVSSv2
CVE-2006-1000
Multiple SQL injection vulnerabilities in Pentacle In-Out Board 3.0 and previous versions allow remote malicious users to execute arbitrary SQL commands and bypass authentication via the (1) newsid parameter to newsdetailsview.asp and (2) password parameter to login.asp.
G2soft Pentacle In-out Board 6.03
1 EDB exploit
7.5
CVSSv2
CVE-2006-1094
SQL injection vulnerability in Datenbank MOD 2.7 and previous versions for Woltlab Burning Board allows remote malicious users to execute arbitrary SQL commands via the fileid parameter to (1) info_db.php or (2) database.php.
Woltlab Burning Board 2.4
Woltlab Burning Board 2.7
Woltlab Burning Board 1.1.1
Woltlab Burning Board 2.0 Beta 4
Woltlab Burning Board 2.2.2
Woltlab Burning Board 2.3.3
Woltlab Burning Board 2.3.1
Datenbank Module Datenbank Module
Woltlab Burning Board 2.0 Beta 3
Woltlab Burning Board 2.5
Woltlab Burning Board 2.6
Woltlab Burning Board 2.0 Rc1
Woltlab Burning Board 2.0 Beta 5
Woltlab Burning Board 2.0 Rc2
1 EDB exploit
7.5
CVSSv2
CVE-2006-6177
SQL injection vulnerability in system/core/users/users.profile.inc.php in Neocrome Seditio 1.10 and previous versions allows remote authenticated users to execute arbitrary SQL commands via a double-url-encoded id parameter to users.php that begins with a valid filename, as demon...
Neocrome Seditio
1 EDB exploit
6.4
CVSSv2
CVE-2006-2725
SQL injection vulnerability in rss/posts.php in Eggblog prior to 3.07 allows remote malicious users to execute arbitrary SQL commands via the id parameter.
Epic Designs Eggblog
1 EDB exploit
6.8
CVSSv2
CVE-2006-2746
Multiple cross-site scripting (XSS) vulnerabilities in F@cile Interactive Web 0.8.5 and previous versions allow remote malicious users to inject arbitrary web script or HTML via the (1) lang parameter in index.php, and the (2) mytheme and (3) myskin parameters in multiple "p...
Facile Interactive Web Facile Interactive Web
Facile Interactive Web Facile Interactive Web 0.8.41
1 EDB exploit
7.5
CVSSv2
CVE-2006-1994
PHP remote file inclusion vulnerability in dForum 1.5 and previous versions allows remote malicious users to execute arbitrary PHP code via a URL in the DFORUM_PATH parameter to (1) about.php, (2) admin.php, (3) anmelden.php, (4) losethread.php, (5) config.php, (6) delpost.php, (...
Dforum Dforum 1.5
1 EDB exploit
5.8
CVSSv2
CVE-2006-2028
Cross-site scripting (XSS) vulnerability in imagelist.php in Jeremy Ashcraft Simplog 0.9.3 and previous versions allows remote malicious users to inject arbitrary web script or HTML via the imagedir parameter. NOTE: this issue might be resultant from directory traversal.
Simplog Simplog
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3080
log injection
CVE-2024-6041
CVE-2024-37661
XML external entity
CVE-2024-0845
privilege escalation
CVE-2023-37057
CVE-2024-27801
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
NEXT »