Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ajann vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2006-3027
Multiple SQL injection vulnerabilities in Enthrallwebe ePhotos 2.2 and previous versions allow remote malicious users to execute arbitrary SQL commands via the (1) CAT_ID parameter in (a) subphotos.asp and (b) subLevel2.asp, the (2) AL_ID parameter in (c) photo.asp, and the (3) S...
Enthrallweb Ephotos
1 EDB exploit
NA
CVE-2007-0128
SQL injection vulnerability in info_book.asp in Digirez 3.4 and previous versions allows remote malicious users to execute arbitrary SQL commands via the book_id parameter.
Digiappz Digirez
1 EDB exploit
NA
CVE-2007-0129
SQL injection vulnerability in main.asp in LocazoList 2.01a beta5 and previous versions allows remote malicious users to execute arbitrary SQL commands via the subcatID parameter.
Locazo Locazolist Classifieds
1 EDB exploit
NA
CVE-2007-0196
SQL injection vulnerability in admin_check_user.asp in Motionborg Web Real Estate 2.1 and previous versions allows remote malicious users to execute arbitrary SQL commands via the username field (txtUserName parameter) and possibly other parameters. NOTE: some details were obtain...
Motionborg Motionborg Web Real Estate
1 EDB exploit
NA
CVE-2007-0224
SQL injection vulnerability in shopgiftregsearch.asp in VP-ASP Shopping Cart 6.09 and previous versions allows remote malicious users to execute arbitrary SQL commands via the LoginLastname parameter.
Virtual Programming Vp-asp 6.09
1 EDB exploit
NA
CVE-2007-0226
SQL injection vulnerability in wbsearch.aspx in uniForum 4 and previous versions allows remote malicious users to execute arbitrary SQL commands via the "by User" field (aka the TXbyuser parameter).
Uniforum Uniforum
1 EDB exploit
NA
CVE-2007-0306
SQL injection vulnerability in visu_user.asp in Digiappz DigiAffiliate 1.4 and previous versions allows remote malicious users to execute arbitrary SQL commands via the id parameter.
Digiappz Digiaffiliate
1 EDB exploit
NA
CVE-2006-4733
PHP remote file inclusion vulnerability in sipssys/code/box.inc.php in Haakon Nilsen simple, integrated publishing system (SIPS) 0.3.1 and previous versions allows remote malicious users to execute arbitrary PHP code via a URL in the config[sipssys] parameter. NOTE: the product...
Sips Sips
Sips Sips 0.3.0pl1
Sips Sips 0.3.0pl2
Sips Sips 0.2.2
Sips Sips 0.2.4
Sips Sips 0.3.0
1 EDB exploit
NA
CVE-2006-4796
Cross-site scripting (XSS) vulnerability in forum.asp in Snitz Forums 2000 3.4.06 allows remote malicious users to inject arbitrary web script or HTML via the sortorder parameter (strtopicsortord variable).
Snitz Communications Snitz Forums 2000 3.4.06
1 EDB exploit
NA
CVE-2006-4852
SQL injection vulnerability in browse.asp in QuadComm Q-Shop 3.5 allows remote malicious users to execute arbitrary SQL commands via the OrderBy parameter.
Quadcomm Q-shop 3.5
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
type confusion
IMAP
CVE-2024-36103
CVE-2024-28995
CVE-2024-37325
CVE-2024-30078
CVE-2024-30082
SQL injection
CVE-2024-30052
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »