Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ajann vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2007-0679
PHP remote file inclusion vulnerability in lang/leslangues.php in Nicolas Grandjean PHPMyRing 4.1.3b and previous versions allows remote malicious users to execute arbitrary PHP code via a URL in the fichier parameter.
Nicolas Grandjean Phpmyring 4.1.1b
Nicolas Grandjean Phpmyring 4.1.2b
Nicolas Grandjean Phpmyring 4.1.0b
Nicolas Grandjean Phpmyring
1 EDB exploit
9.8
CVSSv3
CVE-2007-0681
profile.php in ExtCalendar 2 and previous versions allows remote malicious users to change the passwords of arbitrary users without providing the original password, and possibly perform other unauthorized actions, via modified values to register.php.
Extcalendar Project Extcalendar
1 EDB exploit
NA
CVE-2007-0765
SQL injection vulnerability in news.php in dB Masters Curium CMS 1.03 and previous versions allows remote malicious users to execute arbitrary SQL commands via the c_id parameter.
Db Masters Multimedia Curium Cms
1 EDB exploit
NA
CVE-2007-4503
SQL injection vulnerability in index.php in the Nice Talk component (com_nicetalk) 0.9.3 and previous versions for Joomla! allows remote malicious users to execute arbitrary SQL commands via the tagid parameter.
Joomla Nice Talk
1 EDB exploit
NA
CVE-2007-4506
SQL injection vulnerability in index.php in the NeoRecruit component (com_neorecruit) 1.4 and previous versions for Joomla! allows remote malicious users to execute arbitrary SQL commands via the id parameter in an offer_view action.
Joomla Neorecruit
1 EDB exploit
NA
CVE-2006-4871
SQL injection vulnerability in search_run.asp in Keyvan1 (aka Keyvan Janghorbani) EShoppingPro 1.0 allows remote malicious users to execute arbitrary SQL commands via the order parameter.
Keyvan1 Eshoppingpro 1.0
1 EDB exploit
NA
CVE-2006-4872
SQL injection vulnerability in search.asp in Keyvan1 (aka Keyvan Janghorbani) ECardPro 2.0 allows remote malicious users to execute arbitrary SQL commands via the keyword parameter.
Keyvan1 Ecardpro 2.0
1 EDB exploit
NA
CVE-2006-5514
SQL injection vulnerability in quiz.php in Web Group Communication Center (WGCC) 0.5.6b and previous versions allows remote malicious users to execute arbitrary SQL commands via the qzid parameter.
Web Group Communication Center Web Group Communication Center
1 EDB exploit
NA
CVE-2006-5640
SQL injection vulnerability in guestbookview.asp in Techno Dreams Guest Book 1.0 earlier allows remote malicious users to execute arbitrary SQL commands via the key parameter.
Techno Dreams Techno Dreams Guest Book
1 EDB exploit
NA
CVE-2006-5880
SQL injection vulnerability on the subMenu page in switch.asp in Munch Pro 1.0 allows remote malicious users to execute arbitrary SQL commands via the catid parameter.
Isystems Munch Pro 1.0
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
authentication bypass
CVE-2024-30043
camera
CVE-2023-40404
CVE-2024-2793
client side
CVE-2024-4469
CVE-2024-3565
CVE-2024-29825
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »