Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
subj vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2010-1076
Cross-site scripting (XSS) vulnerability in index.php in Entry Level CMS (EL CMS) allows remote malicious users to inject arbitrary web script or HTML via the subj parameter, which is not properly handled in a forced SQL error message. NOTE: the provenance of this information is ...
Entrylevelcms El Cms
NA
CVE-2010-1075
SQL injection vulnerability in index.php in Entry Level CMS (EL CMS) allows remote malicious users to execute arbitrary SQL commands via the subj parameter.
Entrylevelcms El Cms
NA
CVE-2009-2929
Multiple SQL injection vulnerabilities in TGS Content Management 0.x allow remote malicious users to execute arbitrary SQL commands via the (1) tgs_language_id, (2) tpl_dir, (3) referer, (4) user-agent, (5) site, (6) option, (7) db_optimization, (8) owner, (9) admin_email, (10) d...
Tgs-cms Tgs Content Management 0.3.2
Tgs-cms Tgs Content Management 0.1.6
Tgs-cms Tgs Content Management 0.2.5
Tgs-cms Tgs Content Management 0.2.0
Tgs-cms Tgs Content Management 0.1.7
Tgs-cms Tgs Content Management 0.3.0
1 EDB exploit
NA
CVE-2003-1541
PlanetMoon Guestbook tr3.a stores sensitive information under the web root with insufficient access control, which allows remote malicious users to obtain the admin script password, and other passwords, via a direct request to files/passwd.txt.
Planetmoon Guestbook Tr3.a.1
1 EDB exploit
NA
CVE-2003-1540
WF-Chat 1.0 Beta stores sensitive information under the web root with insufficient access control, which allows remote malicious users to obtain authentication information via a direct request to (1) !pwds.txt and (2) !nicks.txt.
Wfchat Wfchat 1.0
1 EDB exploit
NA
CVE-2003-1181
Advanced Poll 2.0.2 allows remote malicious users to obtain sensitive information via an HTTP request to info.php, which invokes the phpinfo() function.
Advanced Poll Advanced Poll 2.0.2
1 EDB exploit
NA
CVE-2002-1522
Buffer overflow in PowerFTP FTP server 2.24, and possibly other versions, allows remote malicious users to cause a denial of service and possibly execute arbitrary code via a long USER argument.
Cooolsoft Powerftp 2.10
Cooolsoft Powerftp 2.23
Cooolsoft Powerftp 2.24
Cooolsoft Powerftp 2.03
3 EDB exploits
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
authentication bypass
CVE-2024-30051
remote
CVE-2024-27954
CVE-2023-51483
CVE-2023-47782
SSRF
CVE-2024-24715
CVE-2023-52424
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started