Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
dnx vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2007-6578
SQL injection vulnerability in go.php in PHP ZLink 0.3 allows remote malicious users to execute arbitrary SQL commands via the id parameter.
Zeak.net Php Zlink 0.3
1 EDB exploit
7.5
CVSSv2
CVE-2008-3241
SQL injection vulnerability in players-detail.php in UltraStats 0.2.136, 0.2.140, and 0.2.142 allows remote malicious users to execute arbitrary SQL commands via the id parameter.
Ultrastats Ultrastats 0.2.142
Ultrastats Ultrastats 0.2.136
Ultrastats Ultrastats 0.2.140
1 EDB exploit
6.8
CVSSv2
CVE-2008-2484
SQL injection vulnerability in index.php in Xomol CMS 1.20071213, when magic_quotes_gpc is disabled, allows remote malicious users to execute arbitrary SQL commands via the email parameter.
Xomol Xomol Cms 1.20071213
1 EDB exploit
5
CVSSv2
CVE-2007-2425
Directory traversal vulnerability in fileview.php in Imageview 5.3 allows remote malicious users to read arbitrary files via a .. (dot dot) in the album parameter.
Blackdot Imageview 5.3
1 EDB exploit
7.5
CVSSv2
CVE-2007-1163
SQL injection vulnerability in printview.php in webSPELL 4.01.02 and previous versions allows remote malicious users to execute arbitrary SQL commands via the topic parameter, a different vector than CVE-2007-1019, CVE-2006-5388, and CVE-2006-4783.
Webspell Webspell
Webspell Webspell 4.0
Webspell Webspell 4.01.00
Webspell Webspell 4.01.01
1 EDB exploit
7.5
CVSSv2
CVE-2007-4605
PHP remote file inclusion vulnerability in convert/mvcw.php in Virtual War (VWar) 1.5.0 R15 and previous versions allows remote malicious users to execute arbitrary PHP code via a URL in the vwar_root parameter, a different vector than CVE-2006-1503, CVE-2006-1636, and CVE-2006-1...
Vwar Virtual War
1 EDB exploit
7.5
CVSSv2
CVE-2007-5174
Directory traversal vulnerability in phpinc/news.php in actSite 1.56 allows remote malicious users to include and execute arbitrary local files via a .. (dot dot) in the do parameter.
Actsite Actsite 1.56
1 EDB exploit
6.8
CVSSv2
CVE-2007-5175
PHP remote file inclusion vulnerability lib/base.php in actSite 1.991 Beta allows remote malicious users to execute arbitrary PHP code via a URL in the BaseCfg[BaseDir] parameter.
Actsite Actsite 1.991 Beta
1 EDB exploit
10
CVSSv2
CVE-2007-1393
PHP remote file inclusion vulnerability in mysave.php in Magic CMS 4.2.747 allows remote malicious users to execute arbitrary PHP code via a URL in the file parameter.
Geo Soft Magic Cms 4.2.747
1 EDB exploit
7.5
CVSSv2
CVE-2008-6647
SQL injection vulnerability in gallery.php in Ktools PhotoStore 3.4.3 allows remote malicious users to execute arbitrary SQL commands via the gid parameter.
Ktools Photostore 3.4.3
2 EDB exploits
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
validation
CVE-2012-1823
malicious code
CVE-2024-5770
CVE-2023-45866
CVE-2024-35687
local users
CVE-2024-31246
CVE-2024-35730
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
NEXT »