Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
nukedx vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2006-0870
SQL injection vulnerability in pages.asp in Mini-Nuke CMS System 1.8.2 and previous versions allows remote malicious users to execute arbitrary SQL commands via the id parameter. NOTE: version 2.3 was later reported to be vulnerable as well.
Mini-nuke Mini-nuke Cms
1 EDB exploit
NA
CVE-2006-0961
SQL injection vulnerability in yazdir.asp in Cilem Hiber 1.1 allows remote malicious users to execute arbitrary SQL commands via the haber_id parameter. NOTE: this product has also been referred to as "Cilem News," although that does not appear to be the proper name.
Cilem Cilem Haber 1.1
1 EDB exploit
NA
CVE-2006-1000
Multiple SQL injection vulnerabilities in Pentacle In-Out Board 3.0 and previous versions allow remote malicious users to execute arbitrary SQL commands and bypass authentication via the (1) newsid parameter to newsdetailsview.asp and (2) password parameter to login.asp.
G2soft Pentacle In-out Board 6.03
1 EDB exploit
NA
CVE-2006-1094
SQL injection vulnerability in Datenbank MOD 2.7 and previous versions for Woltlab Burning Board allows remote malicious users to execute arbitrary SQL commands via the fileid parameter to (1) info_db.php or (2) database.php.
Woltlab Burning Board 2.4
Woltlab Burning Board 2.7
Woltlab Burning Board 1.1.1
Woltlab Burning Board 2.0 Beta 4
Woltlab Burning Board 2.2.2
Woltlab Burning Board 2.3.3
Woltlab Burning Board 2.3.1
Datenbank Module Datenbank Module
Woltlab Burning Board 2.0 Beta 3
Woltlab Burning Board 2.5
Woltlab Burning Board 2.6
Woltlab Burning Board 2.0 Rc1
Woltlab Burning Board 2.0 Beta 5
Woltlab Burning Board 2.0 Rc2
1 EDB exploit
NA
CVE-2006-1109
SQL injection vulnerability in index.asp in Total Ecommerce 1.0 allows remote malicious users to execute arbitrary SQL commands via the id parameter. NOTE: it is not clear whether this report is associated with a specific product. If not, then it should not be included in CVE.
Totalecommerce Totalecommerce 1.0
1 EDB exploit
NA
CVE-2006-2675
PHP remote file inclusion vulnerability in ubbt.inc.php in UBBThreads 5.x and 6.x allows remote malicious users to execute arbitrary PHP code via a URL in the (1) thispath or (2) configdir parameters.
Ubbcentral Ubb.threads 5.5.1
Ubbcentral Ubb.threads 6.5
Ubbcentral Ubb.threads 6.5.1
Ubbcentral Ubb.threads 6.1
Ubbcentral Ubb.threads 6.2.1
Ubbcentral Ubb.threads 6.0.1
Ubbcentral Ubb.threads 6.4.4
Ubbcentral Ubb.threads 6.4.3
Ubbcentral Ubb.threads 6.4.2
Ubbcentral Ubb.threads 6.4.1
Ubbcentral Ubb.threads 3.5
Ubbcentral Ubb.threads 3.4
Ubbcentral Ubb.threads 6.2.2
Ubbcentral Ubb.threads 6.2
Ubbcentral Ubb.threads 6.5.1.1
Ubbcentral Ubb.threads 5.0
Ubbcentral Ubb.threads 6.5.2
Ubbcentral Ubb.threads 6.0.3
Ubbcentral Ubb.threads 6.1.1
Ubbcentral Ubb.threads 6.4
Ubbcentral Ubb.threads 6.5.2 Beta2
Ubbcentral Ubb.threads 6.3.1
1 EDB exploit
NA
CVE-2006-2735
PHP remote file inclusion vulnerability in language/lang_english/lang_activity.php in Activity MOD Plus (Amod) 1.1.0, as used with phpBB when register_globals is enabled, allows remote malicious users to execute arbitrary PHP code via a URL in the phpbb_root_path parameter. NOTE:...
Activity Mod Plus Activity Mod Plus 1.1.0
1 EDB exploit
NA
CVE-2006-2736
PHP remote file inclusion vulnerability in blend_data/blend_common.php in Blend Portal 1.2.0, as used with phpBB when register_globals is enabled, allows remote malicious users to execute arbitrary PHP code via a URL in the phpbb_root_path parameter. NOTE: This is a similar vulne...
Phpbb-portal Blend Portal 1.2.0
1 EDB exploit
NA
CVE-2006-2740
Multiple SQL injection vulnerabilities in Epicdesigns tinyBB 0.3 allow remote malicious users to execute arbitrary SQL commands via the (1) q parameter in (a) forgot.php, and the (2) username and (3) password parameters in (b) login.php, and other unspecified vectors.
Epic Designs Tinybb
1 EDB exploit
NA
CVE-2006-2746
Multiple cross-site scripting (XSS) vulnerabilities in F@cile Interactive Web 0.8.5 and previous versions allow remote malicious users to inject arbitrary web script or HTML via the (1) lang parameter in index.php, and the (2) mytheme and (3) myskin parameters in multiple "p...
Facile Interactive Web Facile Interactive Web
Facile Interactive Web Facile Interactive Web 0.8.41
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
deserialization
CVE-2024-4541
CVE-2024-3080
CVE-2024-4787
log injection
CVE-2024-5967
inject
CVE-2024-30078
CVE-2024-5899
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
NEXT »