Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
g4n0k vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2008-6230
SQL injection vulnerability in Tour.php in Pre Projects Pre Podcast Portal allows remote malicious users to execute arbitrary SQL commands via the id parameter.
Preprojects Pre Podcast Portal -
1 EDB exploit
NA
CVE-2008-6268
SQL injection vulnerability in detail.php in WEBBDOMAIN Multi Languages WebShop Online 1.02 allows remote malicious users to execute arbitrary SQL commands via the id parameter.
Sadi Samami Multi Languages Webshop Online 1.02
1 EDB exploit
NA
CVE-2008-6302
TurnkeyForms Local Classifieds allows remote malicious users to bypass authentication and gain administrative access via a direct request to Site_Admin/admin.php.
Turnkeyforms Local Classifieds
1 EDB exploit
NA
CVE-2008-6628
Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2008-6268. Reason: This candidate is a duplicate of CVE-2008-6268. Notes: All CVE users should reference CVE-2008-6268 instead of this candidate. All references and descriptions in this candidate have been removed...
1 EDB exploit
NA
CVE-2008-6716
homeadmin/adminhome.php in Pre ADS Portal 2.0 and previous versions does not require administrative authentication, which allows remote malicious users to have an unspecified impact via a direct request.
Preprojects Pre Ads Portal
1 EDB exploit
NA
CVE-2008-6718
U&M Software JustBookIt 1.0 does not require administrative authentication for all scripts in the admin/ directory, which allows remote malicious users to have an unspecified impact via a direct request to (1) user_manual.php, (2) user_config.php, (3) user_kundnamn.php, (4) u...
Uochm Justbookit 1.0
1 EDB exploit
NA
CVE-2008-6752
adminlogin/password.php in the Twitter Clone (TClone) plugin for ReVou Micro Blogging does not verify the original password before changing passwords, which allows remote malicious users to change the administrator's password and gain privileges via a direct request with mod...
Revou Revou
1 EDB exploit
NA
CVE-2008-6939
TurnkeyForms Web Hosting Directory allows remote malicious users to bypass authentication and (1) gain administrative privileges by setting the adm cookie to 1 or (2) gain privileges as another user by setting the logged cookie to the target username.
Turnkeyforms Web Hosting Directory -
1 EDB exploit
NA
CVE-2008-6940
TurnkeyForms Web Hosting Directory stores sensitive information under the web root with insufficient access control, which allows remote malicious users to obtain a database backup via a direct request to admin/backup/db.
Turnkeyforms Web Hosting Directory -
1 EDB exploit
NA
CVE-2008-6941
SQL injection vulnerability in the login functionality in TurnkeyForms Web Hosting Directory allows remote malicious users to execute arbitrary SQL commands via the password field.
Turnkeyforms Web Hosting Directory -
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3380
CVE-2024-1694
local file inclusion
CVE-2024-5645
CVE-2024-24919
XSS
CVE-2024-36774
CVE-2024-21306
SQL
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
NEXT »