Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
silentz vulnerabilities and exploits
(subscribe to this query)
755
VMScore
CVE-2007-3313
Multiple SQL injection vulnerabilities in Jasmine CMS 1.0 allow remote malicious users to execute arbitrary SQL commands via (1) the login_username parameter to login.php or (2) the item parameter to news.php.
Efstratios Geroulis Jasmine Cms 1.0
1 EDB exploit
685
VMScore
CVE-2008-0358
SQL injection vulnerability in index.php in Pixelpost 1.7 allows remote malicious users to execute arbitrary SQL commands via the parent_id parameter.
Pixelpost Pixelpost 1.7
1 EDB exploit
905
VMScore
CVE-2007-3312
Directory traversal vulnerability in admin/plugin_manager.php in Jasmine CMS 1.0 allows remote authenticated administrators to include and execute arbitrary local files a .. (dot dot) in the u parameter. NOTE: a separate vulnerability could be leveraged to make this issue exploit...
Efstratios Geroulis Jasmine Cms 1.0
1 EDB exploit
755
VMScore
CVE-2007-6666
SQL injection vulnerability in rss.php in Zenphoto 1.1 up to and including 1.1.3 allows remote malicious users to execute arbitrary SQL commands via the albumnr parameter.
Zenphoto Zenphoto 1.1
Zenphoto Zenphoto 1.1.1
Zenphoto Zenphoto 1.1.2
Zenphoto Zenphoto 1.1.3
1 EDB exploit
755
VMScore
CVE-2007-2889
SQL injection vulnerability in tracking/courseLog.php in Dokeos 1.6.5 and previous versions allows remote malicious users to execute arbitrary SQL commands via the scormcontopen parameter.
Dokeos Open Source Learning And Knowledge Management Tool 1.6.4 P1
Dokeos Open Source Learning And Knowledge Management Tool 1.6.5
Dokeos Open Source Learning And Knowledge Management Tool 1.4
Dokeos Open Source Learning And Knowledge Management Tool 1.5
Dokeos Open Source Learning And Knowledge Management Tool 1.6 Rc2
Dokeos Open Source Learning And Knowledge Management Tool 1.5.3
Dokeos Open Source Learning And Knowledge Management Tool 1.5.4
Dokeos Open Source Learning And Knowledge Management Tool 1.5.5
Dokeos Open Source Learning And Knowledge Management Tool 1.6.4
1 EDB exploit
755
VMScore
CVE-2007-2971
SQL injection vulnerability in getnewsitem.php in gCards 1.46 and previous versions allows remote malicious users to execute arbitrary SQL commands via the newsid parameter.
Greg Neustaetter Gcards 1.13
Greg Neustaetter Gcards 1.43
Greg Neustaetter Gcards 1.44
Greg Neustaetter Gcards 1.45
Greg Neustaetter Gcards
1 EDB exploit
755
VMScore
CVE-2007-3065
SQL injection vulnerability in viewimage.php in Particle Soft Particle Gallery 1.0.1 and previous versions allows remote malicious users to execute arbitrary SQL commands via the editcomment parameter, a different version and vector than CVE-2006-2862.
Particle Soft Particle Gallery 1.0.1
Particle Soft Particle Gallery 1.0.0
1 EDB exploit
785
VMScore
CVE-2007-3082
Directory traversal vulnerability in sendcard.php in Sendcard 3.4.1 and previous versions allows remote malicious users to include and execute arbitrary local files via a .. (dot dot) in the sc_language parameter.
Sendcard Sendcard
1 EDB exploit
785
VMScore
CVE-2007-3251
Multiple directory traversal vulnerabilities in e-Vision CMS 2.02 and previous versions allow remote malicious users to (1) include and execute arbitrary local files via a .. (dot dot) in the adminlang cookie to admin/functions.php or (2) read arbitrary local files via the img pa...
E-vision E-vision Cms
1 EDB exploit
505
VMScore
CVE-2007-2749
SQL injection vulnerability in question.php in FAQEngine 4.16.03 and previous versions allows remote malicious users to execute arbitrary SQL commands via the questionref parameter in a display action.
Faqengine Faqengine
1 EDB exploit
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
validation
CVE-2012-1823
malicious code
CVE-2024-5770
CVE-2023-45866
CVE-2024-35687
local users
CVE-2024-31246
CVE-2024-35730
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
NEXT »