Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
r0t3d3vil vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2005-4490
Multiple cross-site scripting (XSS) vulnerabilities in SCOOP! 2.3 and previous versions allow remote malicious users to inject arbitrary web script or HTML via the (1) keyword and (2) invalid parameter to articleSearch.asp; (3) username and (4) invalid parameter to lostPassword.a...
Commercial Interactive Media Scoop
7 EDB exploits
NA
CVE-2005-3914
Multiple SQL injection vulnerabilities in AFFcommerce 1.1.4 allow remote malicious users to execute arbitrary SQL commands via (1) the cl parameter to SubCategory.php and the item_id parameter in (2) ItemInfo.php and (3) ItemReview.php.
Affcommerce Affcommerce 1.1.4
3 EDB exploits
NA
CVE-2005-4307
Cross-site scripting (XSS) vulnerability in ScareCrow 2.13 and previous versions allows remote malicious users to inject arbitrary web script or HTML via the forum parameter to (1) forum.cgi and (2) post.cgi, or (3) the user parameter to profile.cgi.
Jonathan Bravata Scarecrow 2.12
Jonathan Bravata Scarecrow
Jonathan Bravata Scarecrow 2.00 Beta
Jonathan Bravata Scarecrow 2.01 Beta
Jonathan Bravata Scarecrow 2.10
Jonathan Bravata Scarecrow 2.11
3 EDB exploits
NA
CVE-2005-4228
Multiple SQL injection vulnerabilities in PhpWebGallery 1.5.1 and previous versions allow remote malicious users to execute arbitrary SQL commands via the (1) since, (2) sort_by, and (3) items_number parameters to comments.php, (4) the search parameter to category.php, and (5) im...
Phpwebgallery Phpwebgallery 1.0
Phpwebgallery Phpwebgallery 1.5.0
Phpwebgallery Phpwebgallery 1.6.0
Phpwebgallery Phpwebgallery 1.7.0
Phpwebgallery Phpwebgallery 1.1
Phpwebgallery Phpwebgallery 1.3.1
Phpwebgallery Phpwebgallery
Phpwebgallery Phpwebgallery 1.6.1
Phpwebgallery Phpwebgallery 1.7.1
Phpwebgallery Phpwebgallery 1.6
Phpwebgallery Phpwebgallery 1.5.2
Phpwebgallery Phpwebgallery 1.3.2
Phpwebgallery Phpwebgallery 1.3.0
Phpwebgallery Phpwebgallery 1.3.4
Phpwebgallery Phpwebgallery 1.3.3
Phpwebgallery Phpwebgallery 1.2.1
Phpwebgallery Phpwebgallery 1.4.0
Phpwebgallery Phpwebgallery 1.6.2
Phpwebgallery Phpwebgallery 1.5.1
Phpwebgallery Phpwebgallery 1.4.1
3 EDB exploits
NA
CVE-2005-4491
Multiple cross-site scripting (XSS) vulnerabilities in Sitekit CMS 6.6 and previous versions allow remote malicious users to inject arbitrary web script or HTML via the (1) query string, (2) textonly, (3) locID, and (4) lang parameters to (a) Default.aspx, and the (6) ClickFrom p...
Sitekit Solutions Sitekit Cms
3 EDB exploits
NA
CVE-2005-4035
Multiple SQL injection vulnerabilities in Web4Future eCommerce Enterprise Edition 2.1 and previous versions allow remote malicious users to execute arbitrary SQL commands via the (1) prod, and (2) brid parameters to (a) view.php; the (3) the bid parameter to (b) viewbrands.php; a...
3 EDB exploits
NA
CVE-2005-4333
Multiple cross-site scripting (XSS) vulnerabilities in Binary Board System (BBS) 0.2.5 and previous versions allow remote malicious users to inject arbitrary web script or HTML via the (1) inreplyto, (2) article, and (3) board parameters to reply.pl, (4) branch, (5) board, and (6...
Binary-concepts Binary Board System
3 EDB exploits
NA
CVE-2005-4478
Multiple SQL injection vulnerabilities in Papoo 2.1.2 and previous versions allow remote malicious users to execute arbitrary SQL commands via the (1) menuid parameter to (a) index.php and (b) guestbook.php, and the (2) forumid and (3) reporeid_print parameters to (c) print.php.
Papoo Papoo
3 EDB exploits
NA
CVE-2006-1372
Multiple SQL injection vulnerabilities in 1WebCalendar 4.0 and previous versions allow remote malicious users to execute arbitrary SQL commands via the (1) EventID parameter in viewEvent.cfm, (2) NewsID parameter in newsView.cfm, or (3) ThisDate parameter in mainCal.cfm.
Benson It Solutions 1webcalendar
3 EDB exploits
NA
CVE-2005-3925
Multiple SQL injection vulnerabilities in Central Manchester CLC Helpdesk Issue Manager 0.9 and previous versions allow remote malicious users to execute arbitrary SQL commands via the (1) detail[], (2) orderdir, and (3) orderby parameters to find.php, and the (4) id parameter to...
Helpdesk Issue Manager Helpdesk Issue Manager 0.7
Helpdesk Issue Manager Helpdesk Issue Manager 0.8
Helpdesk Issue Manager Helpdesk Issue Manager 0.3
Helpdesk Issue Manager Helpdesk Issue Manager 0.4
Helpdesk Issue Manager Helpdesk Issue Manager 0.1
Helpdesk Issue Manager Helpdesk Issue Manager 0.2
Helpdesk Issue Manager Helpdesk Issue Manager 0.9
Helpdesk Issue Manager Helpdesk Issue Manager 0.5
Helpdesk Issue Manager Helpdesk Issue Manager 0.6
2 EDB exploits
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2006-4304
CVE-2024-4240
arbitrary
CVE-2024-31601
XSS
CVE-2023-20198
CVE-2024-4256
CVE-2024-3342
encryption
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
6
NEXT »