Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
khashayar fereidani vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2007-5449
SQL injection vulnerability in searchresult.php in Softbiz Recipes Portal Script allows remote malicious users to execute arbitrary SQL commands via the sbcat_id parameter.
Softbiz Recipes Portal Script
1 EDB exploit
NA
CVE-2009-3543
SQL injection vulnerability in _phenotype/admin/login.php in Phenotype CMS prior to 2.9 allows remote malicious users to execute arbitrary SQL commands via the user parameter (aka the login name).
Phenotype-cms Phenotype Cms 2.1
Phenotype-cms Phenotype Cms 2.4
Phenotype-cms Phenotype Cms 2.3
Phenotype-cms Phenotype Cms 2.5.1
Phenotype-cms Phenotype Cms 2.0
Phenotype-cms Phenotype Cms 2.2
Phenotype-cms Phenotype Cms 2.6
Phenotype-cms Phenotype Cms
Phenotype-cms Phenotype Cms 1.0
Phenotype-cms Phenotype Cms 2.5
Phenotype-cms Phenotype Cms 2.7
1 EDB exploit
NA
CVE-2009-3860
Multiple insecure method vulnerabilities in Idefense Labs COMRaider allow remote malicious users to create or overwrite arbitrary files via the (1) CreateFolder and (2) Copy methods. NOTE: this might only be a vulnerability in certain insecure configurations of Internet Explorer.
Idefense Comraider
1 EDB exploit
NA
CVE-2008-3368
PHP remote file inclusion vulnerability in tools/packages/import.php in ATutor 1.6.1 pl1 and previous versions allows remote authenticated administrators to execute arbitrary PHP code via a URL in the type parameter.
Atutor Atutor 1.2.1
Atutor Atutor 1.2.2
Atutor Atutor 1.4.2
Atutor Atutor 0.9.7
Atutor Atutor 1.0
Atutor Atutor 1.4
Atutor Atutor 1.4.1
Atutor Atutor 1.5.3.2
Atutor Atutor 1.5.4
Atutor Atutor 1.3
Atutor Atutor 1.3.1
Atutor Atutor 1.5.1
Atutor Atutor 1.5.2
Atutor Atutor
Atutor Atutor 1.4.3
Atutor Atutor 1.5.5
Atutor Atutor 1.6
Atutor Atutor 0.9.6
Atutor Atutor 1.3.2
Atutor Atutor 1.3.3
Atutor Atutor 1.5.3
Atutor Atutor 1.5.3.1
1 EDB exploit
NA
CVE-2008-3405
Directory traversal vulnerability in index.php in Ricardo Amaral nzFotolog 0.4.1 allows remote malicious users to include and execute arbitrary local files via directory traversal sequences in the action_file parameter.
Nazgulled Nzfotolog 0.4.1
1 EDB exploit
NA
CVE-2008-3415
Directory traversal vulnerability in common.php in CMScout 2.05, when .htaccess is not supported, allows remote malicious users to include and execute arbitrary local files via directory traversal sequences in the bit parameter, as demonstrated by an upload to avatar/ of a .jpg f...
Cmscout Cmscout 2.05
1 EDB exploit
NA
CVE-2008-6353
SQL injection vulnerability in index.asp in ASP-CMS 1.0 allows remote malicious users to execute arbitrary SQL commands via the cha parameter.
Asp-cms Asp-cms 1.0
1 EDB exploit
NA
CVE-2008-0325
SQL injection vulnerability in show.php in FaScript FaPersian Petition allows remote malicious users to execute arbitrary SQL commands via the id parameter.
Fascript Fapersian Petition
1 EDB exploit
NA
CVE-2008-0327
SQL injection vulnerability in show.php in FaScript FaMp3 1.0 allows remote malicious users to execute arbitrary SQL commands via the id parameter.
Fascript Famp3 1.0
1 EDB exploit
NA
CVE-2008-0328
SQL injection vulnerability in page.php in FaScript FaName 1.0 allows remote malicious users to execute arbitrary SQL commands via the id parameter.
Fascript Faname 1.0
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
SSTI
CVE-2024-35863
CVE-2024-35910
man-in-the-middle
CVE-2024-35912
CVE-2024-25742
LFI
CVE-2024-32002
CVE-2024-22120
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »