Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
dnx vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2008-3131
SQL injection vulnerability in chatbox.php in pSys 0.7.0 Alpha, when magic_quotes_gpc is disabled, allows remote malicious users to execute arbitrary SQL commands via the showid parameter.
Powie Psys 0.7.0
1 EDB exploit
NA
CVE-2008-3241
SQL injection vulnerability in players-detail.php in UltraStats 0.2.136, 0.2.140, and 0.2.142 allows remote malicious users to execute arbitrary SQL commands via the id parameter.
Ultrastats Ultrastats 0.2.142
Ultrastats Ultrastats 0.2.136
Ultrastats Ultrastats 0.2.140
1 EDB exploit
NA
CVE-2009-2337
SQL injection vulnerability in includes/module/book/index.inc.php in w3b|cms Gaestebuch Guestbook Module 3.0.0, when magic_quotes_gpc is disabled, allows remote malicious users to execute arbitrary SQL commands via the spam_id parameter.
W3bcms Gaestebuch Guestbook Module 3.0.0
1 EDB exploit
NA
CVE-2007-1393
PHP remote file inclusion vulnerability in mysave.php in Magic CMS 4.2.747 allows remote malicious users to execute arbitrary PHP code via a URL in the file parameter.
Geo Soft Magic Cms 4.2.747
1 EDB exploit
NA
CVE-2007-2425
Directory traversal vulnerability in fileview.php in Imageview 5.3 allows remote malicious users to read arbitrary files via a .. (dot dot) in the album parameter.
Blackdot Imageview 5.3
1 EDB exploit
NA
CVE-2008-6158
Multiple unspecified vulnerabilities in the admin backend in w3b>cms (aka w3blabor CMS) prior to 3.2.0 have unknown impact and remote attack vectors.
W3bcms W3b\\>cms
W3bcms W3b\\>cms 3.0.5
1 EDB exploit
NA
CVE-2007-6578
SQL injection vulnerability in go.php in PHP ZLink 0.3 allows remote malicious users to execute arbitrary SQL commands via the id parameter.
Zeak.net Php Zlink 0.3
1 EDB exploit
NA
CVE-2007-4605
PHP remote file inclusion vulnerability in convert/mvcw.php in Virtual War (VWar) 1.5.0 R15 and previous versions allows remote malicious users to execute arbitrary PHP code via a URL in the vwar_root parameter, a different vector than CVE-2006-1503, CVE-2006-1636, and CVE-2006-1...
Vwar Virtual War
1 EDB exploit
NA
CVE-2007-4606
PHP remote file inclusion vulnerability in convert/mvcw_conver.php in the Virtual War (VWar) module for PHPNuke-Clan (PNC) 4.2.0 and previous versions allows remote malicious users to execute arbitrary PHP code via a URL in the vwar_root parameter, a different vector than CVE-200...
Phpnuke-clan Phpnuke-clan
1 EDB exploit
NA
CVE-2008-6647
SQL injection vulnerability in gallery.php in Ktools PhotoStore 3.4.3 allows remote malicious users to execute arbitrary SQL commands via the gid parameter.
Ktools Photostore 3.4.3
2 EDB exploits
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
inject
CVE-2024-34001
CVE-2024-37018
LFI
CVE-2024-1275
CVE-2024-1086
CSRF
CVE-2024-31030
CVE-2024-24919
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
NEXT »