Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
r0t3d3vil vulnerabilities and exploits
(subscribe to this query)
760
VMScore
CVE-2005-3918
Multiple SQL injection vulnerabilities in OvBB 0.08a allow remote malicious users to execute arbitrary SQL commands via the (1) threadid parameter to thread.php and (2) userid parameter to profile.php. NOTE: the vendor disputes these issues, saying "these reports are complet...
Ovbb Ovbb 0.5a
Ovbb Ovbb 0.6a
Ovbb Ovbb 0.3a
Ovbb Ovbb 0.7a
Ovbb Ovbb 0.4a
Ovbb Ovbb 0.2a
Ovbb Ovbb 0.8a
Ovbb Ovbb 0.1a
2 EDB exploits
760
VMScore
CVE-2005-3925
Multiple SQL injection vulnerabilities in Central Manchester CLC Helpdesk Issue Manager 0.9 and previous versions allow remote malicious users to execute arbitrary SQL commands via the (1) detail[], (2) orderdir, and (3) orderby parameters to find.php, and the (4) id parameter to...
Helpdesk Issue Manager Helpdesk Issue Manager 0.7
Helpdesk Issue Manager Helpdesk Issue Manager 0.8
Helpdesk Issue Manager Helpdesk Issue Manager 0.3
Helpdesk Issue Manager Helpdesk Issue Manager 0.4
Helpdesk Issue Manager Helpdesk Issue Manager 0.1
Helpdesk Issue Manager Helpdesk Issue Manager 0.2
Helpdesk Issue Manager Helpdesk Issue Manager 0.9
Helpdesk Issue Manager Helpdesk Issue Manager 0.5
Helpdesk Issue Manager Helpdesk Issue Manager 0.6
2 EDB exploits
760
VMScore
CVE-2005-4001
Multiple SQL injection vulnerabilities in phpYellowTM Pro Edition and Lite Edition 5.33 allow remote malicious users to execute arbitrary SQL commands via the (1) haystack parameter to search_result.php or (2) ckey parameter to print_me.php.
Phpyellow Phpyellowtm Lite 5.33
Phpyellow Phpyellowtm Pro 5.33
2 EDB exploits
760
VMScore
CVE-2005-4003
Multiple SQL injection vulnerabilities in Absolute Shopping Package Solutions (ASPS) Shopping Cart Professional 2.9d and previous versions, and Lite 2.1 and previous versions, allow remote malicious users to execute arbitrary SQL commands via the (1) srch_product_name parameter t...
Asps Shopping Cart 2.9d
Asps Shopping Cart 2.1
2 EDB exploits
440
VMScore
CVE-2005-4374
Multiple cross-site scripting (XSS) vulnerabilities in Allinta 2.3.2 and previous versions allow remote malicious users to inject arbitrary web script or HTML via the (1) s parameter to faq.asp and (2) searchQuery parameter to search.asp.
Allinta Allinta
2 EDB exploits
760
VMScore
CVE-2005-4486
SQL injection vulnerability in Quantum Art QP7.Enterprise (formerly Q-Publishing) allows remote malicious users to execute arbitrary SQL commands via the p_news_id parameter to (1) news_and_events_new.asp and (2) news.asp. NOTE: on 20060227, the vendor disputed the accuracy of th...
Quantum Art Qp7 Enterprise
2 EDB exploits
440
VMScore
CVE-2005-4489
Cross-site scripting (XSS) vulnerability in Scoop 1.1 RC1 and previous versions allows remote malicious users to inject arbitrary web script or HTML via the (1) type and (2) count parameters, and (3) the query string in a story.
Scoop Scoop
2 EDB exploits
440
VMScore
CVE-2005-4306
Multiple cross-site scripting (XSS) vulnerabilities in SiteNet BBS 2.0 and previous versions allow remote malicious users to inject arbitrary web script or HTML via the (1) pg, (2) tid, (3) cid, and (4) fid parameters to netboardr.cgi, or (5) cid parameter to search.cgi.
Focalmedia.net Sitenet Bbs
2 EDB exploits
685
VMScore
CVE-2005-4476
Cross-site scripting (XSS) vulnerability in store/search/results.html in OpenEdit 4.0 and previous versions allows remote malicious users to inject arbitrary web script or HTML via the (1) oe-action and (2) page parameters.
Openedit Inc Openedit
1 EDB exploit
755
VMScore
CVE-2005-4479
SQL injection vulnerability in article.php in phpSlash 0.8.1 and previous versions allows remote malicious users to execute arbitrary SQL commands via the story_id parameter.
Phpslash Phpslash 0.8.1
1 EDB exploit
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4956
validation
CVE-2024-35221
remote attackers
CVE-2023-30309
CVE-2024-36112
CVE-2024-23109
CVE-2023-43850
stored XSS
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »