Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
khashayar fereidani vulnerabilities and exploits
(subscribe to this query)
755
VMScore
CVE-2009-3824
Directory traversal vulnerability in include/processor.php in Greenwood PHP Content Manager 0.3.2 allows remote malicious users to include and execute arbitrary local files via a .. (dot dot) in the content_path parameter.
Michael J Greenwood Php Content Manager 0.3.2
1 EDB exploit
585
VMScore
CVE-2009-3860
Multiple insecure method vulnerabilities in Idefense Labs COMRaider allow remote malicious users to create or overwrite arbitrary files via the (1) CreateFolder and (2) Copy methods. NOTE: this might only be a vulnerability in certain insecure configurations of Internet Explorer.
Idefense Comraider
1 EDB exploit
755
VMScore
CVE-2008-6989
SQL injection vulnerability in gallery.php in Easy Photo Gallery (aka Ezphotogallery) 2.1 allows remote malicious users to execute arbitrary SQL commands via the username parameter.
Ezphotogallery Ezphotogallery 2.1
1 EDB exploit
755
VMScore
CVE-2009-0280
Asp Project Management 1.0 allows remote malicious users to bypass authentication and gain administrative access by setting the crypt cookie to 1.
Asp-project Asp-project 1.0
1 EDB exploit
435
VMScore
CVE-2008-0676
Cross-site scripting (XSS) vulnerability in search.php in A-Blog 2 allows remote malicious users to inject arbitrary web script or HTML via the words parameter.
A-blog A-blog 2
1 EDB exploit
755
VMScore
CVE-2008-0677
SQL injection vulnerability in blog.php in A-Blog 2 allows remote malicious users to execute arbitrary SQL commands via the id parameter in a news action.
A-blog A-blog 2
1 EDB exploit
685
VMScore
CVE-2008-0678
SQL injection vulnerability in index.php in BlogPHP 2.0 allows remote malicious users to execute arbitrary SQL commands via the id parameter in a page action.
Blogphp Blogphp 2.0
1 EDB exploit
435
VMScore
CVE-2008-0679
Cross-site scripting (XSS) vulnerability in index.php in BlogPHP 2.0 allows remote malicious users to inject arbitrary web script or HTML via the search parameter.
Blogphp Blogphp 2.0
1 EDB exploit
755
VMScore
CVE-2007-5122
SQL injection vulnerability in store_info.php in SoftBiz Classifieds PLUS allows remote malicious users to execute arbitrary SQL commands via the id parameter.
Softbizscripts Classifieds Plus Script
1 EDB exploit
755
VMScore
CVE-2007-5449
SQL injection vulnerability in searchresult.php in Softbiz Recipes Portal Script allows remote malicious users to execute arbitrary SQL commands via the sbcat_id parameter.
Softbiz Recipes Portal Script
1 EDB exploit
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
bypass
open redirect
CVE-2024-4358
CVE-2024-24199
CVE-2024-5550
CVE-2024-5305
CVE-2024-30373
CVE-2024-1800
deserialization
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »