Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cwh vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2008-2997
Cross-site scripting (XSS) vulnerability in index.php in Gravity Board X (GBX) 2.0 Beta allows remote malicious users to inject arbitrary web script or HTML via the subject parameter in a postnewsubmit (aka create new thread) action.
Gravityboardx Gravity Board X 2.0
1 EDB exploit
NA
CVE-2008-3027
SQL injection vulnerability in get_article.php in VanGogh Web CMS 0.9 allows remote malicious users to execute arbitrary SQL commands via the article_ID parameter to index.php.
Vangogh Web Cms Vangogh Web Cms 0.9
1 EDB exploit
NA
CVE-2008-3026
SQL injection vulnerability in index.php in OneClick CMS (aka Sisplet CMS) 2008-01-24 allows remote malicious users to execute arbitrary SQL commands via the id parameter.
Oneclick Cms Oneclick Cms 2008-01-24
1 EDB exploit
NA
CVE-2008-3036
Directory traversal vulnerability in index.php in CMS little 0.0.1 allows remote malicious users to include and execute arbitrary local files, and probably remote files, via a .. (dot dot) in the template parameter.
Cms Little Cms Little 0.0.1
1 EDB exploit
NA
CVE-2008-3133
SQL injection vulnerability in admin/index.php in BareNuked CMS 1.1.0, when magic_quotes_gpc is disabled, allows remote malicious users to execute arbitrary SQL commands via the password parameter.
Barenuked Barenuked Cms 1.1.0
1 EDB exploit
NA
CVE-2008-3191
Multiple SQL injection vulnerabilities in usercp.php in mForum 0.1a, when magic_quotes_gpc is disabled, allow remote malicious users to execute arbitrary SQL commands via the (1) City, (2) Interest, (3) Email, (4) Icq, (5) msn, or (6) Yahoo Messenger field in an edit_profile acti...
Marcioforum Mforum 0.1a
1 EDB exploit
NA
CVE-2008-2398
Cross-site scripting (XSS) vulnerability in index.php in AppServ Open Project 2.5.10 and previous versions allows remote malicious users to inject arbitrary web script or HTML via the appservlang parameter.
Appserv Open Project Appserv 1.4.0
Appserv Open Project Appserv 1.5.0
Appserv Open Project Appserv 2.2.0
Appserv Open Project Appserv 2.3.0
Appserv Open Project Appserv 2.4.5
Appserv Open Project Appserv 2.4.6
Appserv Open Project Appserv 2.5.4
Appserv Open Project Appserv 2.5.4a
Appserv Open Project Appserv 1.8.0
Appserv Open Project Appserv 1.9.0
Appserv Open Project Appserv 2.4.2
Appserv Open Project Appserv 2.4.3
Appserv Open Project Appserv 2.4.9
Appserv Open Project Appserv 2.5
Appserv Open Project Appserv 2.5.1
Appserv Open Project Appserv 2.5.7
Appserv Open Project Appserv 2.5.8
Appserv Open Project Appserv 1.6.0
Appserv Open Project Appserv 1.7.0
Appserv Open Project Appserv 2.4
Appserv Open Project Appserv 2.4.1
Appserv Open Project Appserv 2.4.7
1 EDB exploit
NA
CVE-2008-2417
SQL injection vulnerability in showQAnswer.asp in How2ASP.net Webboard 4.1 allows remote malicious users to execute arbitrary SQL commands via the qNo parameter.
How2asp Webboard 4.1
1 EDB exploit
NA
CVE-2008-2458
Cross-site scripting (XSS) vulnerability in index.php in Starsgames Control Panel 4.6.2 and previous versions allows remote malicious users to inject arbitrary web script or HTML via the st parameter.
4shared Starsgames Control Panel
1 EDB exploit
NA
CVE-2008-2561
Multiple cross-site scripting (XSS) vulnerabilities in 427BB 2.3.1 allow remote malicious users to inject arbitrary web script or HTML via the (1) PATH_INFO to (a) register.php, (b) reminder.php, and (c) search.php; the (2) uname, (3) email, and (4) email2 parameters to register....
Fourtwosevenbb 427bb 2.3.1
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
authentication bypass
CVE-2024-30043
camera
CVE-2023-40404
CVE-2024-2793
client side
CVE-2024-4469
CVE-2024-3565
CVE-2024-29825
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »