Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
phpwebsite phpwebsite 0.8.2 vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2006-1330
Multiple SQL injection vulnerabilities in phpWebsite 0.83 and previous versions allow remote malicious users to execute arbitrary SQL commands via the sid parameter to (1) friend.php or (2) article.php.
Phpwebsite Phpwebsite 0.8.2
Phpwebsite Phpwebsite 0.8.3
Phpwebsite Phpwebsite 0.7.3
2 EDB exploits
7.5
CVSSv2
CVE-2004-1654
SQL injection vulnerability in the calendar module in phpWebsite 0.9.3-4 and previous versions allows remote malicious users to execute arbitrary SQL commands via cal_template.
Phpwebsite Phpwebsite 0.9.3.4
Phpwebsite Phpwebsite 0.8.2
Phpwebsite Phpwebsite 0.9.3
Phpwebsite Phpwebsite 0.8.3
Phpwebsite Phpwebsite 0.7.3
4.3
CVSSv2
CVE-2004-1655
Cross-site scripting (XSS) vulnerability in phpWebsite 0.9.3-4 and previous versions allows remote malicious users to inject arbitrary web script or HTML via the (1) CM_pid parameter in the comments module or (2) the subject or message fields in the notes module.
Phpwebsite Phpwebsite 0.9.3.4
Phpwebsite Phpwebsite 0.8.2
Phpwebsite Phpwebsite 0.9.3
Phpwebsite Phpwebsite 0.8.3
Phpwebsite Phpwebsite 0.7.3
1 EDB exploit
5
CVSSv2
CVE-2004-1516
CRLF injection vulnerability in index.php in phpWebSite 0.9.3-4 allows remote malicious users to perform HTTP Response Splitting attacks to modify expected HTML content from the server via the block_username parameter in the user module.
Phpwebsite Phpwebsite 0.9.3.1
Phpwebsite Phpwebsite 0.9.3.4
Phpwebsite Phpwebsite 0.8.2
Phpwebsite Phpwebsite 0.9.3.3
Phpwebsite Phpwebsite 0.9.3.2
Phpwebsite Phpwebsite 0.9.3
Phpwebsite Phpwebsite 0.8.3
Phpwebsite Phpwebsite 0.7.3
7.5
CVSSv2
CVE-2006-0973
SQL injection vulnerability in topics.php in Appalachian State University phpWebSite 0.10.2 and previous versions allows remote malicious users to execute arbitrary SQL commands via the topic parameter.
Phpwebsite Phpwebsite 0.10.1
Phpwebsite Phpwebsite 0.9.3.1
Phpwebsite Phpwebsite 0.9.3.4
Phpwebsite Phpwebsite 0.8.2
Phpwebsite Phpwebsite 0.9.3.3
Phpwebsite Phpwebsite 0.9.3.2
Phpwebsite Phpwebsite 0.10.2
Phpwebsite Phpwebsite 0.9.3
Phpwebsite Phpwebsite 0.10
Phpwebsite Phpwebsite 0.8.3
Phpwebsite Phpwebsite 0.7.3
1 EDB exploit
7.5
CVSSv2
CVE-2005-4792
SQL injection vulnerability in index.php in Appalachian State University phpWebSite 0.10.1 and previous versions allows remote malicious users to execute arbitrary SQL commands via the module parameter. NOTE: the provenance of this information is unknown; the details are obtained...
Phpwebsite Phpwebsite
Phpwebsite Phpwebsite 0.9.1
Phpwebsite Phpwebsite 0.9.2
Phpwebsite Phpwebsite 0.9.3.1
Phpwebsite Phpwebsite 0.9.3.4
Phpwebsite Phpwebsite 0.8.2
Phpwebsite Phpwebsite 0.9.3.3
Phpwebsite Phpwebsite 0.9.3.2
Phpwebsite Phpwebsite 0.9.3
Phpwebsite Phpwebsite 0.10
Phpwebsite Phpwebsite 0.9.0
Phpwebsite Phpwebsite 0.8.3
Phpwebsite Phpwebsite 0.7.3
1 EDB exploit
7.5
CVSSv2
CVE-2002-1135
modsecurity.php 1.10 and previous versions, in phpWebSite 0.8.2 and previous versions, allows remote malicious users to execute arbitrary PHP source code via an inc_prefix parameter that points to the malicious code.
Phpwebsite Phpwebsite 0.8.2
1 EDB exploit
4.3
CVSSv2
CVE-2011-4265
Cross-site scripting (XSS) vulnerability in phpWebSite prior to 1.0.0 allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors.
Phpwebsite Phpwebsite 0.9.1
Phpwebsite Phpwebsite 0.9.2
Phpwebsite Phpwebsite 0.10.1
Phpwebsite Phpwebsite 0.9.3.1
Phpwebsite Phpwebsite 0.8.2
Phpwebsite Phpwebsite 0.9.3.3
Phpwebsite Phpwebsite 0.9.2.1
Phpwebsite Phpwebsite
Phpwebsite Phpwebsite 0.10.0
Phpwebsite Phpwebsite 0.9.3.2
Phpwebsite Phpwebsite 0.10.2
Phpwebsite Phpwebsite 0.9.3
Phpwebsite Phpwebsite 0.10
Phpwebsite Phpwebsite 0.9.0
Phpwebsite Phpwebsite 0.8.3
Phpwebsite Phpwebsite 0.7.3
7.5
CVSSv2
CVE-2008-6266
SQL injection vulnerability in links.php in Appalachian State University phpWebSite allows remote malicious users to execute arbitrary SQL commands via the cid parameter in a viewlink action.
Appstate Phpwebsite 0.7.3
Appstate Phpwebsite 0.9.3
Appstate Phpwebsite 0.9.3-3
Appstate Phpwebsite 0.9.3-4
Appstate Phpwebsite 0.8.3
Appstate Phpwebsite 0.8.2
Appstate Phpwebsite 0.9.3-2
Appstate Phpwebsite 0.9.3-1
1 EDB exploit
6.8
CVSSv2
CVE-2003-0736
Multiple cross-site scripting (XSS) vulnerabilities in phpWebSite 0.9.x and previous versions allow remote malicious users to execute arbitrary web script via (1) the day parameter in the calendar module, (2) the fatcat_id parameter in the fatcat module, (3) the PAGE_id parameter...
Phpwebsite Phpwebsite
4 EDB exploits
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-5834
CVE-2024-30100
CVE-2024-4577
physical
dos
CVE-2024-30099
CVE-2024-27801
CVE-2024-32146
logic flaw
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »