Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
silentz vulnerabilities and exploits
(subscribe to this query)
5
CVSSv2
CVE-2007-2749
SQL injection vulnerability in question.php in FAQEngine 4.16.03 and previous versions allows remote malicious users to execute arbitrary SQL commands via the questionref parameter in a display action.
Faqengine Faqengine
1 EDB exploit
7.8
CVSSv2
CVE-2007-3082
Directory traversal vulnerability in sendcard.php in Sendcard 3.4.1 and previous versions allows remote malicious users to include and execute arbitrary local files via a .. (dot dot) in the sc_language parameter.
Sendcard Sendcard
1 EDB exploit
10
CVSSv2
CVE-2007-2598
SQL injection vulnerability in print.php in SimpleNews 1.0.0 FINAL allows remote malicious users to execute arbitrary SQL commands via the news_id parameter.
Simplenews Simplenews 1.0.0 Final
1 EDB exploit
7.5
CVSSv2
CVE-2007-2599
Multiple SQL injection vulnerabilities in TutorialCMS (aka Photoshop Tutorials) 1.00 and previous versions allow remote malicious users to execute arbitrary SQL commands via the (1) catFile parameter to (a) browseCat.php or (b) browseSubCat.php; the (2) id parameter to (c) openTu...
Wavelink Media Tutorialcms
1 EDB exploit
7.5
CVSSv2
CVE-2007-2889
SQL injection vulnerability in tracking/courseLog.php in Dokeos 1.6.5 and previous versions allows remote malicious users to execute arbitrary SQL commands via the scormcontopen parameter.
Dokeos Open Source Learning And Knowledge Management Tool 1.6.4 P1
Dokeos Open Source Learning And Knowledge Management Tool 1.6.5
Dokeos Open Source Learning And Knowledge Management Tool 1.4
Dokeos Open Source Learning And Knowledge Management Tool 1.5
Dokeos Open Source Learning And Knowledge Management Tool 1.6 Rc2
Dokeos Open Source Learning And Knowledge Management Tool 1.5.3
Dokeos Open Source Learning And Knowledge Management Tool 1.5.4
Dokeos Open Source Learning And Knowledge Management Tool 1.5.5
Dokeos Open Source Learning And Knowledge Management Tool 1.6.4
1 EDB exploit
7.5
CVSSv2
CVE-2007-6666
SQL injection vulnerability in rss.php in Zenphoto 1.1 up to and including 1.1.3 allows remote malicious users to execute arbitrary SQL commands via the albumnr parameter.
Zenphoto Zenphoto 1.1
Zenphoto Zenphoto 1.1.1
Zenphoto Zenphoto 1.1.2
Zenphoto Zenphoto 1.1.3
1 EDB exploit
9.3
CVSSv2
CVE-2007-2822
TutorialCMS 1.01 and previous versions, when register_globals is enabled, allows remote malicious users to bypass authentication via the (1) loggedIn and (2) activated parameters to (a) login.php, (b) headerLinks.php, (c) submit1.php, (d) myFav.php, and (e) userCP.php.
Wavelink Media Tutorialcms
1 EDB exploit
7.5
CVSSv2
CVE-2007-3065
SQL injection vulnerability in viewimage.php in Particle Soft Particle Gallery 1.0.1 and previous versions allows remote malicious users to execute arbitrary SQL commands via the editcomment parameter, a different version and vector than CVE-2006-2862.
Particle Soft Particle Gallery 1.0.1
Particle Soft Particle Gallery 1.0.0
1 EDB exploit
6.6
CVSSv2
CVE-2007-4781
administrator/index.php in the installer component (com_installer) in Joomla! 1.5 Beta1, Beta2, and RC1 allows remote authenticated administrators to upload arbitrary files to tmp/ via the "Upload Package File" functionality, which is accessible when com_installer is th...
Joomla Joomla 1.5.0 Rc1
Joomla Joomla 1.5.0 Beta1
Joomla Joomla 1.5.0 Beta2
1 EDB exploit
7.5
CVSSv2
CVE-2007-3077
SQL injection vulnerability in listmembers.php in EQdkp 1.3.2 and previous versions allows remote malicious users to execute arbitrary SQL commands via the rank parameter.
Eqdkp Eqdkp
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
inject
CVE-2024-34001
CVE-2024-37018
LFI
CVE-2024-1275
CVE-2024-1086
CSRF
CVE-2024-31030
CVE-2024-24919
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
NEXT »