Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
r45c4l vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2008-4361
Directory traversal vulnerability in PowerPortal 2.0.13 allows remote malicious users to list and possibly read arbitrary files via a .. (dot dot) in the path parameter to the default URI.
Powerportal Powerportal 2.0.13
1 EDB exploit
NA
CVE-2008-4458
SQL injection vulnerability in listings.php in E-Php B2B Trading Marketplace Script allows remote malicious users to execute arbitrary SQL commands via the cid parameter in a product action.
E-php Scripts B2b Trading Marketplace Script
1 EDB exploit
NA
CVE-2008-4738
SQL injection vulnerability in gallery.php in MyCard 1.0.2 allows remote malicious users to execute arbitrary SQL commands via the id parameter.
Tufat Mycard 1.0.2
1 EDB exploit
NA
CVE-2008-6026
SQL injection vulnerability in tienda.php in BlueCUBE CMS allows remote malicious users to execute arbitrary SQL commands via the id parameter.
Bluecube Bluecube Cms
1 EDB exploit
NA
CVE-2008-3774
SQL injection vulnerability in index.php in Simasy CMS allows remote malicious users to execute arbitrary SQL commands via the id parameter.
Simasy Simasy Cms
1 EDB exploit
NA
CVE-2008-4187
Directory traversal vulnerability in index.php in ProActive CMS allows remote malicious users to read arbitrary files via a .. (dot dot) in the template parameter.
Proactive Cms Proactive Cms
1 EDB exploit
NA
CVE-2008-4347
SQL injection vulnerability in newskom.php in Powie pNews 2.03 allows remote malicious users to execute arbitrary SQL commands via the newsid parameter.
Powie Pnews 2.03
1 EDB exploit
NA
CVE-2008-4625
SQL injection vulnerability in stnl_iframe.php in the ShiftThis Newsletter (st_newsletter) plugin for WordPress allows remote malicious users to execute arbitrary SQL commands via the newsletter parameter, a different vector than CVE-2008-0683.
Shiftthis Shifthis Newsletter
1 EDB exploit
NA
CVE-2008-7120
SQL injection vulnerability in Mr. CGI Guy Hot Links SQL-PHP 3 and previous versions allows remote malicious users to execute arbitrary SQL commands via the news.php parameter.
Mrcgiguy Hot Links Sql-php
1 EDB exploit
NA
CVE-2008-5988
SQL injection vulnerability in scripts/recruit_details.php in Jadu CMS for Government allows remote malicious users to execute arbitrary SQL commands via the id parameter.
Jadu Jadu Cms For Government
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
authentication bypass
CVE-2024-30051
remote
CVE-2024-27954
CVE-2023-51483
CVE-2023-47782
SSRF
CVE-2024-24715
CVE-2023-52424
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
NEXT »