Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
virangar security vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2006-3917
PHP remote file inclusion vulnerability in inc/gabarits.php in R. Corson PHP Forge 3 beta 2 and previous versions allows remote malicious users to execute arbitrary PHP code via a URL in the cfg_racine parameter.
R. Corson Php Forge
1 EDB exploit
NA
CVE-2008-2906
SQL injection vulnerability in lista_anexos.php in WebChamado 1.1 allows remote malicious users to execute arbitrary SQL commands via the tsk_id parameter.
Webchamado Webchamado 1.1
1 EDB exploit
NA
CVE-2008-3564
Multiple directory traversal vulnerabilities in index.php in Dayfox Blog 4 allow remote malicious users to include and execute arbitrary local files via a .. (dot dot) in the (1) p, (2) cat, and (3) archive parameters. NOTE: in some environments, this can be leveraged for remote ...
Dayfox Designs Dayfox Blog 4
1 EDB exploit
NA
CVE-2008-3598
Multiple SQL injection vulnerabilities in psipuss 1.0 allow remote malicious users to execute arbitrary SQL commands via (1) the Cid parameter to categories.php or (2) the Username parameter to login.php.
Psi-labs Psipuss 1.0
1 EDB exploit
NA
CVE-2008-3602
admin/wr_admin.php in PHP-Ring Webring System (aka uPHP_ring_website) 0.9.1 allows remote malicious users to bypass authentication and gain administrative access by setting the admin cookie to 1.
Psychdaily Php Ring Webring System 0.9.1
1 EDB exploit
NA
CVE-2008-2115
Multiple cross-site scripting (XSS) vulnerabilities in editor.php in ScriptsEZ.net Power Editor 2.0 allow remote malicious users to inject arbitrary web script or HTML via the (1) te and (2) dir parameters in a tempedit action.
Scriptsez Power Editor 2.0
1 EDB exploit
NA
CVE-2008-3292
constants.inc in EZWebAlbum 1.0 allows remote malicious users to bypass authentication and gain administrator privileges by setting the photoalbumadmin cookie, as demonstrated via addpage.php.
Ezwebalbum Ezwebalbum 1.0
1 EDB exploit
NA
CVE-2008-2301
SQL injection vulnerability in Kostenloses Linkmanagementscript allows remote malicious users to execute arbitrary SQL commands via the id parameter to (1) view.php and (2) top_view.php.
Phpway Kostenloses Linkmanagementscript
1 EDB exploit
NA
CVE-2008-6473
_blogadata/include/init_pass2.php in Blogator-script 0.95 allows remote malicious users to change the password for arbitrary users via a modified "a" parameter with a "%" wildcard symbol in the b parameter.
Blogator-script Blogator-script 0.95
1 EDB exploit
NA
CVE-2008-6634
SQL injection vulnerability in RoomPHPlanning 1.5 allows remote malicious users to execute arbitrary SQL commands via the idroom parameter to weekview.php.
Beaussier Roomphplanning 1.5
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27802
template injection
CVE-2024-0044
code injection
CVE-2024-35474
CVE-2024-27857
CVE-2024-23251
CVE-2024-23692
physical
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
NEXT »