Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
articles vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2006-7052
Multiple PHP remote file inclusion vulnerabilities in DotWidget For Articles (dotwidgeta) 0.2 allow remote malicious users to execute arbitrary code via a URL in the (1) file_path parameter to (a) index.php, (b) showcatpicks.php, and (c) showarticle.php; and the (2) admin_header_...
Keith Reichley Dotwidget For Articles 0.2
7 EDB exploits
NA
CVE-2006-4891
SQL injection vulnerability in ArticlesTableview.asp in Techno Dreams Articles & Papers Package 2.0 and previous versions allows remote malicious users to execute arbitrary SQL commands via the key parameter.
Techno Dreams Articles And Papers Package
1 EDB exploit
NA
CVE-2008-7075
Multiple SQL injection vulnerabilities in Kalptaru Infotech Ltd. Star Articles 6.0 allow remote malicious users to inject arbitrary SQL commands via (1) the subcatid parameter to article.list.php; or the artid parameter to (2) article.print.php, (3) article.comments.php, (4) arti...
Kalptaru Infotech Stararticles 6.0
2 EDB exploits
NA
CVE-2008-7076
Unrestricted file upload vulnerability in user.modify.profile.php in Kalptaru Infotech Ltd. Star Articles 6.0 allows remote authenticated users to execute arbitrary code by uploading a file with an executable extension as a profile photo, then accessing it via a direct request to...
Kalptaru Infotech Stararticles 6.0
1 EDB exploit
NA
CVE-2006-5917
Multiple SQL injection vulnerabilities in OmniStar Article Manager allow remote malicious users to execute arbitrary SQL commands via the (1) article_id parameter in (a) articles/comments.php and (b) articles/article.php, and the (2) page_id parameter in (c) articles/pages.php.
Omnistar Interactive Omnistar Article Manager
6.1
CVSSv3
CVE-2020-13761
In Joomla! prior to 3.9.19, lack of input validation in the heading tag option of the "Articles - Newsflash" and "Articles - Categories" modules allows XSS.
Joomla Joomla\\! 3.0.0
Joomla Joomla\\!
NA
CVE-2007-0526
Multiple cross-site scripting (XSS) vulnerabilities in Bitweaver 1.3.1 allow remote malicious users to inject arbitrary web script or HTML via the URL (PATH_INFO) to (1) articles/edit.php, (2) articles/list.php, (3) blogs/list_blogs.php, or (4) blogs/rankings.php.
Bitweaver Bitweaver 1.3.1
NA
CVE-2006-3102
Race condition in articles/BitArticle.php in Bitweaver 1.3, when run on Apache with the mod_mime extension, allows remote malicious users to execute arbitrary PHP code by uploading arbitrary files with double extensions, which are stored for a small period of time under the webro...
Bitweaver Bitweaver 1.3
1 EDB exploit
NA
CVE-2010-5320
Multiple cross-site request forgery (CSRF) vulnerabilities in MemHT Portal 4.0.1 allow remote malicious users to hijack the authentication of administrators for requests that (1) modify settings via a configuration action to admin.php, (2) modify articles via an articles action t...
Memht Memht Portal 4.0.1
5.4
CVSSv3
CVE-2022-44070
Zenario CMS 9.3.57186 is vulnerable to Cross Site Scripting (XSS) via News articles.
Tribalsystems Zenario 9.3.57186
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
camera
bypass
CVE-2024-3592
CVE-2024-37383
CVE-2024-24919
CVE-2024-27822
CVE-2024-36788
CVE-2024-36789
man-in-the-middle
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »