Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
g4n0k vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2008-5651
SQL injection vulnerability in plugins/bookmarker/bookmarker_backend.php in MyioSoft EasyBookMarker 4.0 allows remote malicious users to execute arbitrary SQL commands via the Parent parameter.
Myiosoft Easybookmarker 4.0
1 EDB exploit
NA
CVE-2009-4674
admin/admin.php in Mole Group Sky Hunter Airline Ticket Sale Script and Bus Ticket Script allows remote malicious users to change an arbitrary password via a modified user_id field.
Mole-group Sky Hunter Airline Ticket Sale Script -
Mole-group Bus Ticket Script -
1 EDB exploit
NA
CVE-2008-6628
Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2008-6268. Reason: This candidate is a duplicate of CVE-2008-6268. Notes: All CVE users should reference CVE-2008-6268 instead of this candidate. All references and descriptions in this candidate have been removed...
1 EDB exploit
NA
CVE-2008-6629
Cross-site scripting (XSS) vulnerability in detail.php in WEBBDOMAIN Multi Languages WebShop Online 1.02 allows remote malicious users to inject arbitrary web script or HTML via the name parameter.
Webbdomain Webshop Online 1.02
1 EDB exploit
NA
CVE-2008-6715
Multiple cross-site scripting (XSS) vulnerabilities in Pre ADS Portal 2.0 and previous versions allow remote malicious users to inject arbitrary web script or HTML via the msg parameter to (1) homeadmin/adminhome.php and (2) homeadmin/signinform.php.
Preprojects Pre Ads Portal
1 EDB exploit
NA
CVE-2008-6716
homeadmin/adminhome.php in Pre ADS Portal 2.0 and previous versions does not require administrative authentication, which allows remote malicious users to have an unspecified impact via a direct request.
Preprojects Pre Ads Portal
1 EDB exploit
NA
CVE-2008-6717
U&M Software Signup 1.0 and 1.1 does not require administrative authentication for all scripts in the admin/ directory, which allows remote malicious users to have an unspecified impact via a direct request to (1) adminstart.php, (2) admineventtype.php, (3) admineventdetails....
Uochm Signup 1.0
Uochm Signup 1.1
1 EDB exploit
NA
CVE-2008-6719
U&M Software Event Lister (aka JustListIt) 1.0 does not require administrative authentication for all scripts in the admin/ directory, which allows remote malicious users to have an unspecified impact via a direct request to (1) start.php, (2) aktivitet.php, (3) prop_aktivite...
Uochm Justlistit 1.0
1 EDB exploit
NA
CVE-2008-5037
SQL injection vulnerability in view.php in ElkaGroup Image Gallery 1.0 allows remote malicious users to execute arbitrary SQL commands via the cid parameter.
Elkagroup Image Gallery 1.0
1 EDB exploit
NA
CVE-2008-6939
TurnkeyForms Web Hosting Directory allows remote malicious users to bypass authentication and (1) gain administrative privileges by setting the adm cookie to 1 or (2) gain privileges as another user by setting the logged cookie to the target username.
Turnkeyforms Web Hosting Directory -
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-37316
firmware
CVE-2024-30078
CVE-2024-5995
remote code execution
logic flaw
CVE-2024-20693
CVE-2024-37315
CVE-2024-5464
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
NEXT »