Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
preprojects vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2008-6232
Pre Shopping Mall allows remote malicious users to bypass authentication and gain administrative access by setting the (1) adminname and the (2) adminid cookies to "admin".
Preprojects Pre Shopping Mall -
2 EDB exploits
NA
CVE-2008-2915
Multiple SQL injection vulnerabilities in jobseekers/JobSearch.php (aka the search module) in Pre Job Board allow remote malicious users to execute arbitrary SQL commands via the (1) position or (2) kw parameter.
Preprojects Pre Job Board
1 EDB exploit
NA
CVE-2008-2914
SQL injection vulnerability in jobseekers/JobSearch3.php (aka the search module) in PHP JOBWEBSITE PRO allows remote malicious users to execute arbitrary SQL commands via the (1) kw or (2) position parameter. NOTE: some of these details are obtained from third party information.
Preprojects Php Jobwebsite Pro
1 EDB exploit
NA
CVE-2008-2916
Multiple SQL injection vulnerabilities in Pre ADS Portal 2.0 and previous versions, when magic_quotes_gpc is disabled, allow remote malicious users to execute arbitrary SQL commands via the (1) cid parameter to showcategory.php and the (2) id parameter to software-description.php...
Preprojects Pre Ads Portal
1 EDB exploit
NA
CVE-2008-2917
SQL injection vulnerability in productsofcat.asp in E-SMART CART allows remote malicious users to execute arbitrary SQL commands via the category_id parameter.
Preprojects E-smart Cart
1 EDB exploit
NA
CVE-2008-6715
Multiple cross-site scripting (XSS) vulnerabilities in Pre ADS Portal 2.0 and previous versions allow remote malicious users to inject arbitrary web script or HTML via the msg parameter to (1) homeadmin/adminhome.php and (2) homeadmin/signinform.php.
Preprojects Pre Ads Portal
1 EDB exploit
NA
CVE-2008-6716
homeadmin/adminhome.php in Pre ADS Portal 2.0 and previous versions does not require administrative authentication, which allows remote malicious users to have an unspecified impact via a direct request.
Preprojects Pre Ads Portal
1 EDB exploit
NA
CVE-2008-6230
SQL injection vulnerability in Tour.php in Pre Projects Pre Podcast Portal allows remote malicious users to execute arbitrary SQL commands via the id parameter.
Preprojects Pre Podcast Portal -
1 EDB exploit
NA
CVE-2008-5976
Multiple cross-site scripting (XSS) vulnerabilities in siteadmin/forgot.php in PHP JOBWEBSITE PRO allow remote malicious users to inject arbitrary web script or HTML via (1) the adname parameter in a Submit action or (2) the UserName field.
Preprojects Php Jobwebsite Pro
1 EDB exploit
NA
CVE-2008-5977
SQL injection vulnerability in siteadmin/forgot.php in PHP JOBWEBSITE PRO allows remote malicious users to execute arbitrary SQL commands via the adname parameter in a Submit action.
Preprojects Php Jobwebsite Pro
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3201
CVE-2024-4779
CVE-2024-35090
CVE-2024-5084
hard-coded
CVE-2024-4985
HTML injection
CVE-2024-33655
local file inclusion
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
NEXT »