Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
r0t vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2005-3879
Multiple SQL injection vulnerabilities in Softbiz Resource Repository Script 1.1 and previous versions allow remote malicious users to execute arbitrary SQL commands via the (1) sbres_id parameter in (a) details_res.php, (b) refer_friend.php, and (c) report_link.php, and (2) the ...
Softbiz Resource Repository Script 1.1
4 EDB exploits
NA
CVE-2005-4034
Multiple SQL injection vulnerabilities in Web4Future eDating Professional 5 allow remote malicious users to execute arbitrary SQL commands via the (1) s, (2) pg, and (3) sortb parameters to (a) index.php; (4) cid parameter to (b) gift.php and (c) fq.php; and (5) cat parameter to ...
Web4future Edating Professional 5
4 EDB exploits
NA
CVE-2006-1706
Multiple SQL injection vulnerabilities in Shopweezle 2.0 allow remote malicious users to execute arbitrary SQL commands via the (1) itemID parameter to (a) login.php and (b) memo.php; and the (2) itemgr, (3) brandID, and (4) album parameters to (c) index.php. NOTE: this issue als...
Kansok Communications Shopweezle 2.0
Kansok Communications Shopweezle 2.0 Personal
Kansok Communications Shopweezle 2.0 Professional
Kansok Communications Shopweezle 2.0 Professional Plus
3 EDB exploits
NA
CVE-2006-1946
Multiple cross-site scripting (XSS) vulnerabilities in Visale 1.0 and previous versions allow remote malicious users to inject arbitrary web script or HTML via (1) the keyval parameter in pbpgst.cgi, (2) the catsubno parameter in pblscg.cgi, and (3) the listno parameter in pblsmb...
Visale Visale
3 EDB exploits
NA
CVE-2006-1430
Multiple cross-site scripting (XSS) vulnerabilities in CONTROLzx HMS (formerly DRZES) 3.3.4 and previous versions allow remote malicious users to inject arbitrary web script or HTML via the (1) dedicatedPlanID parameter to dedicated_order.php, (2) sharedPlanID parameter to shared...
Controlzx Hms
3 EDB exploits
NA
CVE-2006-2955
Multiple cross-site scripting (XSS) vulnerabilities in KAPhotoservice 7.5 and previous versions allow remote malicious users to inject arbitrary web script or HTML via the (1) New Category (newcategory) or (2) apage parameter to (a) edtalbum.asp, or the (3) cat or (4) albumid par...
Kaphotoservice Kaphotoservice
3 EDB exploits
NA
CVE-2006-1661
Multiple cross-site scripting (XSS) vulnerabilities in SKForum 1.5 and previous versions allow remote malicious users to inject arbitrary web script or HTML via the (1) areaID parameter in area.View.action, (2) time parameter in planning.View.action, and (3) userID parameter in u...
Sk Soft Skforum
3 EDB exploits
NA
CVE-2005-3939
Multiple SQL injection vulnerabilities in WSN Knowledge Base 1.2.0 and earler allow remote malicious users to execute arbitrary SQL commands via the (1) catid, (2) perpage, (3) ascdesc, and (4) orderlinks in a displaycat action in (a) index.php; and the (5) id parameter in (b) co...
Wsn Knowledge Base Wsn Knowledge Base
3 EDB exploits
NA
CVE-2005-3953
SQL injection vulnerability in Bedeng PSP 1.1 allows remote malicious users to execute arbitrary SQL commands via the cwhere parameter to (1) index.php and (2) download.php, or (3) ckode parameter to baca.php.
Bedeng Psp Bedeng Psp 1.1
3 EDB exploits
NA
CVE-2005-4408
Multiple SQL injection vulnerabilities in Miraserver 1.0 RC4 and previous versions allow remote malicious users to execute arbitrary SQL commands via the (1) page parameter to index.php, (2) id parameter to newsitem.php, and (3) cat parameter to article.php.
Pc Media Miraserver
3 EDB exploits
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3380
CVE-2024-1694
local file inclusion
CVE-2024-5645
CVE-2024-24919
XSS
CVE-2024-36774
CVE-2024-21306
SQL
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »