Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
knockout vulnerabilities and exploits
(subscribe to this query)
755
VMScore
CVE-2008-2634
SQL injection vulnerability in index.asp in I-Pos Internet Pay Online Store 1.3 Beta and previous versions allows remote malicious users to execute arbitrary SQL commands via the item parameter.
Bearrivernet.net I-pos Internet Pay Online Store 1.1
Bearrivernet.net I-pos Internet Pay Online Store
1 EDB exploit
755
VMScore
CVE-2008-2872
SQL injection vulnerability in default.asp in sHibby sHop 2.2 and previous versions allows remote malicious users to execute arbitrary SQL commands via the sayfa parameter.
Aspindir Shibby Shop
1 EDB exploit
505
VMScore
CVE-2008-2873
sHibby sHop 2.2 and previous versions stores sensitive information under the web root with insufficient access control, which allows remote malicious users to download a database via a direct request to Db/urun.mdb.
Aspindir Shibby Shop
1 EDB exploit
755
VMScore
CVE-2008-2882
upgrade.asp in sHibby sHop 2.2 and previous versions does not require administrative authentication, which allows remote malicious users to update a file or have unspecified other impact via a direct request.
Aspindir Shibby Shop
1 EDB exploit
755
VMScore
CVE-2010-4793
SQL injection vulnerability in detail.asp in Site2Nite Auto e-Manager allows remote malicious users to execute arbitrary SQL commands via the ID parameter.
Site2nite Auto E-manager
1 EDB exploit
685
VMScore
CVE-2010-4799
Multiple SQL injection vulnerabilities in Chipmunk Pwngame 1.0, when magic_quotes_gpc is disabled, allow remote malicious users to execute arbitrary SQL commands via the (1) username and (2) password parameters to authenticate.php and the (3) ID parameter to pwn.php. NOTE: some o...
Chipmunk-scripts Pwngame 1.0
1 EDB exploit
755
VMScore
CVE-2010-4855
SQL injection vulnerability in oku.asp in xWeblog 2.2 allows remote malicious users to execute arbitrary SQL commands via the makale_id parameter.
Aspindir Xweblog 2.2
1 EDB exploit
755
VMScore
CVE-2010-4912
SQL injection vulnerability in shop.php in UCenter Home 2.0 allows remote malicious users to execute arbitrary SQL commands via the shopid parameter in a view action.
Discuz Ucenter Home 2.0
1 EDB exploit
755
VMScore
CVE-2009-2117
uye_paneli.php in phPortal 1.0 allows remote malicious users to bypass authentication and obtain administrative access by setting the kulladi cookie to a valid username.
Phportal Phportal 1.0
1 EDB exploit
755
VMScore
CVE-2010-4797
Multiple SQL injection vulnerabilities in the log-in form in Truworth Flex Timesheet allow remote malicious users to execute arbitrary SQL commands via the (1) Username and (2) Password fields.
Truworthit Flex Timesheet
1 EDB exploit
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-5248
CVE-2024-3110
CVE-2024-5552
CVE-2024-29415
HTML injection
CVE-2024-3095
TCP
type confusion
CVE-2024-1800
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
NEXT »