Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
khashayar fereidani vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2009-3824
Directory traversal vulnerability in include/processor.php in Greenwood PHP Content Manager 0.3.2 allows remote malicious users to include and execute arbitrary local files via a .. (dot dot) in the content_path parameter.
Michael J Greenwood Php Content Manager 0.3.2
1 EDB exploit
NA
CVE-2009-3860
Multiple insecure method vulnerabilities in Idefense Labs COMRaider allow remote malicious users to create or overwrite arbitrary files via the (1) CreateFolder and (2) Copy methods. NOTE: this might only be a vulnerability in certain insecure configurations of Internet Explorer.
Idefense Comraider
1 EDB exploit
NA
CVE-2008-6989
SQL injection vulnerability in gallery.php in Easy Photo Gallery (aka Ezphotogallery) 2.1 allows remote malicious users to execute arbitrary SQL commands via the username parameter.
Ezphotogallery Ezphotogallery 2.1
1 EDB exploit
NA
CVE-2009-0280
Asp Project Management 1.0 allows remote malicious users to bypass authentication and gain administrative access by setting the crypt cookie to 1.
Asp-project Asp-project 1.0
1 EDB exploit
NA
CVE-2008-0676
Cross-site scripting (XSS) vulnerability in search.php in A-Blog 2 allows remote malicious users to inject arbitrary web script or HTML via the words parameter.
A-blog A-blog 2
1 EDB exploit
NA
CVE-2008-0677
SQL injection vulnerability in blog.php in A-Blog 2 allows remote malicious users to execute arbitrary SQL commands via the id parameter in a news action.
A-blog A-blog 2
1 EDB exploit
NA
CVE-2008-0678
SQL injection vulnerability in index.php in BlogPHP 2.0 allows remote malicious users to execute arbitrary SQL commands via the id parameter in a page action.
Blogphp Blogphp 2.0
1 EDB exploit
NA
CVE-2008-0679
Cross-site scripting (XSS) vulnerability in index.php in BlogPHP 2.0 allows remote malicious users to inject arbitrary web script or HTML via the search parameter.
Blogphp Blogphp 2.0
1 EDB exploit
NA
CVE-2007-5122
SQL injection vulnerability in store_info.php in SoftBiz Classifieds PLUS allows remote malicious users to execute arbitrary SQL commands via the id parameter.
Softbizscripts Classifieds Plus Script
1 EDB exploit
NA
CVE-2007-5449
SQL injection vulnerability in searchresult.php in Softbiz Recipes Portal Script allows remote malicious users to execute arbitrary SQL commands via the sbcat_id parameter.
Softbiz Recipes Portal Script
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
camera
bypass
CVE-2024-3592
CVE-2024-37383
CVE-2024-24919
CVE-2024-27822
CVE-2024-36788
CVE-2024-36789
man-in-the-middle
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »