r0t3d3vil vulnerabilities and exploits

(subscribe to this query)

NA

Multiple cross-site scripting (XSS) vulnerabilities in SCOOP! 2.3 and previous versions allow remote malicious users to inject arbitrary web script or HTML via the (1) keyword and (2) invalid parameter to articleSearch.asp; (3) username and (4) invalid parameter to lostPassword.a...

Commercial Interactive Media Scoop

7 EDB exploits

NA

Multiple SQL injection vulnerabilities in AFFcommerce 1.1.4 allow remote malicious users to execute arbitrary SQL commands via (1) the cl parameter to SubCategory.php and the item_id parameter in (2) ItemInfo.php and (3) ItemReview.php.

Affcommerce Affcommerce 1.1.4

3 EDB exploits

NA

Cross-site scripting (XSS) vulnerability in ScareCrow 2.13 and previous versions allows remote malicious users to inject arbitrary web script or HTML via the forum parameter to (1) forum.cgi and (2) post.cgi, or (3) the user parameter to profile.cgi.

Jonathan Bravata Scarecrow 2.12 Jonathan Bravata Scarecrow Jonathan Bravata Scarecrow 2.00 Beta Jonathan Bravata Scarecrow 2.01 Beta Jonathan Bravata Scarecrow 2.10 Jonathan Bravata Scarecrow 2.11

3 EDB exploits

NA

Multiple SQL injection vulnerabilities in PhpWebGallery 1.5.1 and previous versions allow remote malicious users to execute arbitrary SQL commands via the (1) since, (2) sort_by, and (3) items_number parameters to comments.php, (4) the search parameter to category.php, and (5) im...

3 EDB exploits

NA

Multiple cross-site scripting (XSS) vulnerabilities in Sitekit CMS 6.6 and previous versions allow remote malicious users to inject arbitrary web script or HTML via the (1) query string, (2) textonly, (3) locID, and (4) lang parameters to (a) Default.aspx, and the (6) ClickFrom p...

Sitekit Solutions Sitekit Cms

3 EDB exploits

NA

Multiple SQL injection vulnerabilities in Web4Future eCommerce Enterprise Edition 2.1 and previous versions allow remote malicious users to execute arbitrary SQL commands via the (1) prod, and (2) brid parameters to (a) view.php; the (3) the bid parameter to (b) viewbrands.php; a...

3 EDB exploits

NA

Multiple cross-site scripting (XSS) vulnerabilities in Binary Board System (BBS) 0.2.5 and previous versions allow remote malicious users to inject arbitrary web script or HTML via the (1) inreplyto, (2) article, and (3) board parameters to reply.pl, (4) branch, (5) board, and (6...

Binary-concepts Binary Board System

3 EDB exploits

NA

Multiple SQL injection vulnerabilities in Papoo 2.1.2 and previous versions allow remote malicious users to execute arbitrary SQL commands via the (1) menuid parameter to (a) index.php and (b) guestbook.php, and the (2) forumid and (3) reporeid_print parameters to (c) print.php.

Papoo Papoo

3 EDB exploits

NA

Multiple SQL injection vulnerabilities in 1WebCalendar 4.0 and previous versions allow remote malicious users to execute arbitrary SQL commands via the (1) EventID parameter in viewEvent.cfm, (2) NewsID parameter in newsView.cfm, or (3) ThisDate parameter in mainCal.cfm.

Benson It Solutions 1webcalendar

3 EDB exploits

NA

Multiple SQL injection vulnerabilities in Central Manchester CLC Helpdesk Issue Manager 0.9 and previous versions allow remote malicious users to execute arbitrary SQL commands via the (1) detail[], (2) orderdir, and (3) orderby parameters to find.php, and the (4) id parameter to...

Helpdesk Issue Manager Helpdesk Issue Manager 0.7 Helpdesk Issue Manager Helpdesk Issue Manager 0.8 Helpdesk Issue Manager Helpdesk Issue Manager 0.3 Helpdesk Issue Manager Helpdesk Issue Manager 0.4 Helpdesk Issue Manager Helpdesk Issue Manager 0.1 Helpdesk Issue Manager Helpdesk Issue Manager 0.2 Helpdesk Issue Manager Helpdesk Issue Manager 0.9 Helpdesk Issue Manager Helpdesk Issue Manager 0.5 Helpdesk Issue Manager Helpdesk Issue Manager 0.6

2 EDB exploits

Get Started

1 2 3 4 5 6 NEXT »

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook