Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ajann vulnerabilities and exploits
(subscribe to this query)
755
VMScore
CVE-2007-1962
SQL injection vulnerability in index.php in the WF-Snippets 1.02 and previous versions module for XOOPS allows remote malicious users to execute arbitrary SQL commands via the c parameter in a cat action.
Xoops Wf-snippets
1 EDB exploit
1000
VMScore
CVE-2006-2807
ASPwebSoft Speedy Asp Discussion Forum allows remote malicious users to change the password of any account via a modified account id and possibly arbitrary values of the name, email, country, password, and passwordre parameters to profileupdate.asp.
Aspwebsoft Speedy Asp Discussion Forum
1 EDB exploit
755
VMScore
CVE-2010-2359
SQL injection vulnerability in eWebQuiz.asp in ActiveWebSoftwares.com eWebquiz 8 allows remote malicious users to execute arbitrary SQL commands via the QuizType parameter, a different vector than CVE-2007-1706.
Activewebsoftwares Ewebquiz 8.0
1 EDB exploit
755
VMScore
CVE-2006-6149
SQL injection vulnerability in index.asp in JiRos FAQ Manager 1.0 allows remote malicious users to execute arbitrary SQL commands via the tID parameter.
Jiros Faq Manager 1.0
1 EDB exploit
755
VMScore
CVE-2006-6160
SQL injection vulnerability in details.asp in Doug Luxem Liberum Help Desk 0.97.3 and previous versions allows remote malicious users to execute arbitrary SQL commands via the id parameter.
Doug Luxem Liberum Help Desk 0.97.3
1 EDB exploit
685
VMScore
CVE-2006-6343
SQL injection vulnerability in polls.php in Neocrome Seditio 1.10 and previous versions allows remote malicious users to execute arbitrary SQL commands via the id parameter.
Neocrome Seditio
1 EDB exploit
755
VMScore
CVE-2006-6349
Multiple SQL injection vulnerabilities in PWP Technologies The Classified Ad System allow remote malicious users to execute arbitrary SQL commands via (1) the main parameter in a view action (includes/mainpage/view.asp) in default.asp or (2) a query in the search engine.
Pwp Technologies The Classified Ad System
1 EDB exploit
685
VMScore
CVE-2006-6380
Cross-site scripting (XSS) vulnerability in index.asp in Ultimate HelpDesk allows remote malicious users to inject arbitrary web script or HTML via the keyword parameter.
Ultimate Helpdesk Ultimate Helpdesk
1 EDB exploit
755
VMScore
CVE-2006-6381
Directory traversal vulnerability in getfile.asp in Ultimate HelpDesk allows remote malicious users to read arbitrary files via a .. (dot dot) in the filename parameter.
Ultimate Helpdesk Ultimate Helpdesk
1 EDB exploit
506
VMScore
CVE-2006-2896
profile.php in FunkBoard CF0.71 allows remote malicious users to change arbitrary passwords via a modified uid hidden form field in an Edit Profile action.
Funkboard Funkboard Cf0.71
1 EDB exploit
3 Github repositories
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
bypass
open redirect
CVE-2024-4358
CVE-2024-24199
CVE-2024-5550
CVE-2024-5305
CVE-2024-30373
CVE-2024-1800
deserialization
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »