Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
knockout vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2008-2882
upgrade.asp in sHibby sHop 2.2 and previous versions does not require administrative authentication, which allows remote malicious users to update a file or have unspecified other impact via a direct request.
Aspindir Shibby Shop
1 EDB exploit
NA
CVE-2007-6542
PHP remote file inclusion vulnerability in admin/frontpage_right.php in Arcadem LE 2.04 and previous versions allows remote malicious users to execute arbitrary PHP code via a URL in the loadadminpage parameter.
Agares Media Arcadem
1 EDB exploit
NA
CVE-2008-1493
Directory traversal vulnerability in login.php in Cuteflow Bin 1.5.0 allows remote malicious users to include and execute arbitrary local files via a .. (dot dot) in the language parameter.
Cuteflow-bin Cuteflow Bin 1.5
1 EDB exploit
NA
CVE-2010-4793
SQL injection vulnerability in detail.asp in Site2Nite Auto e-Manager allows remote malicious users to execute arbitrary SQL commands via the ID parameter.
Site2nite Auto E-manager
1 EDB exploit
NA
CVE-2010-4797
Multiple SQL injection vulnerabilities in the log-in form in Truworth Flex Timesheet allow remote malicious users to execute arbitrary SQL commands via the (1) Username and (2) Password fields.
Truworthit Flex Timesheet
1 EDB exploit
NA
CVE-2010-4799
Multiple SQL injection vulnerabilities in Chipmunk Pwngame 1.0, when magic_quotes_gpc is disabled, allow remote malicious users to execute arbitrary SQL commands via the (1) username and (2) password parameters to authenticate.php and the (3) ID parameter to pwn.php. NOTE: some o...
Chipmunk-scripts Pwngame 1.0
1 EDB exploit
NA
CVE-2010-4855
SQL injection vulnerability in oku.asp in xWeblog 2.2 allows remote malicious users to execute arbitrary SQL commands via the makale_id parameter.
Aspindir Xweblog 2.2
1 EDB exploit
NA
CVE-2010-4912
SQL injection vulnerability in shop.php in UCenter Home 2.0 allows remote malicious users to execute arbitrary SQL commands via the shopid parameter in a view action.
Discuz Ucenter Home 2.0
1 EDB exploit
NA
CVE-2008-1962
Multiple directory traversal vulnerabilities in Aterr 0.9.1 allow remote malicious users to include and execute arbitrary local files via a .. (dot dot) in the (1) class parameter to include/functions.inc.php and the (2) file parameter to include/common.inc.php.
Chimaera Aterr 0.9.1
1 EDB exploit
NA
CVE-2008-6802
Multiple SQL injection vulnerabilities in index.php in phPhotoGallery 0.92 allow remote malicious users to execute arbitrary SQL commands via the (1) Username and (2) Password fields. NOTE: the provenance of this information is unknown; the details are obtained solely from third ...
Phpexplorer Phphotogallery 0.92
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-7073
CVE-2024-5496
CVE-2024-5495
XPath injection
bypass
CVE-2024-30043
CVE-2024-24919
denial of service
CVE-2024-35468
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
NEXT »