Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
g4n0k vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2008-6289
SQL injection vulnerability in cityview.php in Tours Manager 1.0 allows remote malicious users to execute arbitrary SQL commands via the cityid parameter.
Toursmanager Tours Manager 1.0
1 EDB exploit
NA
CVE-2008-6349
SQL injection vulnerability in survey_results_text.php in TurnkeyForms Business Survey Pro 1.0 allows remote malicious users to execute arbitrary SQL commands via the id parameter.
Turnkeyforms Business Survey Pro 1.0
1 EDB exploit
NA
CVE-2008-6966
AJ Square AJ Auction Pro Platinum Skin #1 sends a redirect but does not exit when it is called directly, which allows remote malicious users to bypass authentication via a direct request to admin/user.php.
Aj Square Aj Auction 1.0
1 EDB exploit
NA
CVE-2008-7045
AJ Square Free Polling Script (AJPoll) Database version allows remote malicious users to bypass authentication and reset poll votes via a direct request to admin/resetvote.php.
Ajsquare Free Polling Script
1 EDB exploit
NA
CVE-2008-7046
AJ Square Free Polling Script (AJPoll) allows remote malicious users to bypass authentication and create new polls via a direct request to admin/include/newpoll.php, a different vector than CVE-2008-7045. NOTE: the provenance of this information is unknown; the details are obtain...
Ajsquare Free Polling Script
1 EDB exploit
NA
CVE-2008-7051
AJ Square AJ Article allows remote malicious users to bypass authentication and access administrator functionality via a direct request to (1) user.php, (2) articles.php, (3) articlesuspend.php, (4) site.php, (5) statistics.php, (6) mail.php, (7) category.php, (8) subcategory.php...
Ajsquare Aj Article
1 EDB exploit
NA
CVE-2008-5567
Cross-site request forgery (CSRF) vulnerability in admin/ad_settings.php in Bonza Cart 1.10 and previous versions allows remote malicious users to change the admin password via a logout action in conjunction with the NewAdmin, NewPass1, and NewPass2 parameters.
Bonzacart Bonza Cart
1 EDB exploit
NA
CVE-2008-5568
Cross-site request forgery (CSRF) vulnerability in admin/settings.php in IPN Pro 3 1.44 and previous versions allows remote malicious users to change the admin password via a logout action in conjunction with the admin_id, newpass_1, and newpass_2 parameters.
Ipn-mate Ipn Pro 3
1 EDB exploit
NA
CVE-2008-6227
SQL injection vulnerability in buyer_detail.php in Pre Multi-Vendor Shopping Malls allows remote malicious users to execute arbitrary SQL commands via the (1) sid and (2) cid parameters.
Preproject Pre Multi-vendor Shopping Malls -
1 EDB exploit
NA
CVE-2008-6228
Pre Multi-Vendor Shopping Malls allows remote malicious users to bypass authentication and gain administrative access by setting the (1) adminname and the (2) adminid cookies to "admin".
Preproject Pre Multi-vendor Shopping Malls -
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3380
CVE-2024-1694
local file inclusion
CVE-2024-5645
CVE-2024-24919
XSS
CVE-2024-36774
CVE-2024-21306
SQL
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
NEXT »