Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
silentz vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2007-3077
SQL injection vulnerability in listmembers.php in EQdkp 1.3.2 and previous versions allows remote malicious users to execute arbitrary SQL commands via the rank parameter.
Eqdkp Eqdkp
1 EDB exploit
6.8
CVSSv2
CVE-2007-3096
Directory traversal vulnerability in login.php in PBLang (PBL) 4.67.16.a and previous versions, when magic_quotes_gpc is disabled, allows remote malicious users to include and execute arbitrary local files via a .. (dot dot) in the lang parameter.
Pblang Pblang
1 EDB exploit
10
CVSSv2
CVE-2007-2598
SQL injection vulnerability in print.php in SimpleNews 1.0.0 FINAL allows remote malicious users to execute arbitrary SQL commands via the news_id parameter.
Simplenews Simplenews 1.0.0 Final
1 EDB exploit
7.5
CVSSv2
CVE-2007-3065
SQL injection vulnerability in viewimage.php in Particle Soft Particle Gallery 1.0.1 and previous versions allows remote malicious users to execute arbitrary SQL commands via the editcomment parameter, a different version and vector than CVE-2006-2862.
Particle Soft Particle Gallery 1.0.1
Particle Soft Particle Gallery 1.0.0
1 EDB exploit
7.8
CVSSv2
CVE-2007-3082
Directory traversal vulnerability in sendcard.php in Sendcard 3.4.1 and previous versions allows remote malicious users to include and execute arbitrary local files via a .. (dot dot) in the sc_language parameter.
Sendcard Sendcard
1 EDB exploit
7.5
CVSSv2
CVE-2007-6666
SQL injection vulnerability in rss.php in Zenphoto 1.1 up to and including 1.1.3 allows remote malicious users to execute arbitrary SQL commands via the albumnr parameter.
Zenphoto Zenphoto 1.1
Zenphoto Zenphoto 1.1.1
Zenphoto Zenphoto 1.1.2
Zenphoto Zenphoto 1.1.3
1 EDB exploit
7.5
CVSSv2
CVE-2007-2599
Multiple SQL injection vulnerabilities in TutorialCMS (aka Photoshop Tutorials) 1.00 and previous versions allow remote malicious users to execute arbitrary SQL commands via the (1) catFile parameter to (a) browseCat.php or (b) browseSubCat.php; the (2) id parameter to (c) openTu...
Wavelink Media Tutorialcms
1 EDB exploit
6.8
CVSSv2
CVE-2007-2600
Multiple cross-site scripting (XSS) vulnerabilities in TutorialCMS (aka Photoshop Tutorials) 1.00 and previous versions allow remote malicious users to inject arbitrary web script or HTML via the (1) catFile parameter to (a) browseCat.php or (b) browseSubCat.php; the (2) id param...
Wavelink Media Tutorialcms
1 EDB exploit
7.5
CVSSv2
CVE-2007-2622
Multiple SQL injection vulnerabilities in TaskDriver 1.2 and previous versions allow remote malicious users to execute arbitrary SQL commands via (1) the username parameter to login.php or (2) the taskid parameter to notes.php.
Taskdriver Taskdriver
1 EDB exploit
5
CVSSv2
CVE-2007-2749
SQL injection vulnerability in question.php in FAQEngine 4.16.03 and previous versions allows remote malicious users to execute arbitrary SQL commands via the questionref parameter in a display action.
Faqengine Faqengine
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-49223
CVE-2024-0044
information disclosure
CVE-2024-35753
HTML injection
CVE-2024-21306
CVE-2024-35733
SQL injection
CVE-2024-35732
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
NEXT »