Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
joss vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2008-0835
SQL injection vulnerability in indexen.php in Simple CMS 1.0.3 and previous versions allows remote malicious users to execute arbitrary SQL commands via the area parameter.
Simple Cms Simple Cms 1.0.3
1 EDB exploit
NA
CVE-2008-6425
SQL injection vulnerability in news.php in ComicShout 2.8 allows remote malicious users to execute arbitrary SQL commands via the news_id parameter, a different vector than CVE-2008-2456.
Comicshout Comicshout 2.8
1 EDB exploit
NA
CVE-2009-1452
Multiple PHP remote file inclusion vulnerabilities in theme/format.php in SMA-DB 0.3.13 allow remote malicious users to execute arbitrary PHP code via a URL in the (1) _page_css and (2) _page_javascript parameters. NOTE: the _page_content vector is already is covered by CVE-2009-...
Bluevirus-design Sma-db 0.3.13
1 EDB exploit
NA
CVE-2009-1483
Unrestricted file upload vulnerability in upload-file.php in Adam Patterson Studio Lounge Address Book 2.5, as reachable from index2.php, allows remote malicious users to execute arbitrary code by uploading a file with an executable extension, then accessing it via a direct reque...
Studiolounge Address Book 2.5
1 EDB exploit
NA
CVE-2008-2914
SQL injection vulnerability in jobseekers/JobSearch3.php (aka the search module) in PHP JOBWEBSITE PRO allows remote malicious users to execute arbitrary SQL commands via the (1) kw or (2) position parameter. NOTE: some of these details are obtained from third party information.
Preprojects Php Jobwebsite Pro
1 EDB exploit
NA
CVE-2008-2915
Multiple SQL injection vulnerabilities in jobseekers/JobSearch.php (aka the search module) in Pre Job Board allow remote malicious users to execute arbitrary SQL commands via the (1) position or (2) kw parameter.
Preprojects Pre Job Board
1 EDB exploit
NA
CVE-2008-2917
SQL injection vulnerability in productsofcat.asp in E-SMART CART allows remote malicious users to execute arbitrary SQL commands via the category_id parameter.
Preprojects E-smart Cart
1 EDB exploit
NA
CVE-2008-1336
SQL injection vulnerability in Koobi CMS 4.2.3 up to and including 4.3.0 allows remote malicious users to execute arbitrary SQL commands via the categ parameter in a links action to index.php, a different vector than CVE-2008-1122.
Koobi Koobi Cms 4.2.3
Koobi Koobi Cms 4.2.4
Koobi Koobi Cms 4.2.7
Koobi Koobi Cms 4.2.8
Koobi Koobi Cms 4.2.9
Koobi Koobi Cms 4.3.0
Koobi Koobi Cms 4.2.5
Koobi Koobi Cms 4.2.6
1 EDB exploit
NA
CVE-2008-1344
Multiple SQL injection vulnerabilities in MyioSoft EasyCalendar 4.0tr and previous versions allow remote malicious users to execute arbitrary SQL commands via the (1) year parameter in a dayview action to plugins/calendar/calendar_backend.php and the (2) page parameter to ajaxp_b...
Myiosoft Easycalendar 4.0tr
1 EDB exploit
NA
CVE-2008-1345
Cross-site scripting (XSS) vulnerability in plugins/calendar/calendar_backend.php in MyioSoft EasyCalendar 4.0tr and previous versions allows remote malicious users to inject arbitrary web script or HTML via the day parameter in a dayview action.
Myiosoft Easycalendar 4.0tr
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4956
validation
CVE-2024-35221
remote attackers
CVE-2023-30309
CVE-2024-36112
CVE-2024-23109
CVE-2023-43850
stored XSS
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »