Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ajann vulnerabilities and exploits
(subscribe to this query)
755
VMScore
CVE-2006-3027
Multiple SQL injection vulnerabilities in Enthrallwebe ePhotos 2.2 and previous versions allow remote malicious users to execute arbitrary SQL commands via the (1) CAT_ID parameter in (a) subphotos.asp and (b) subLevel2.asp, the (2) AL_ID parameter in (c) photo.asp, and the (3) S...
Enthrallweb Ephotos
1 EDB exploit
755
VMScore
CVE-2009-0426
SQL injection vulnerability in CategoryManager/upload_image_category.asp in DMXReady Classified Listings Manager 1.1 and previous versions allows remote malicious users to execute arbitrary SQL commands via the cid parameter.
Dmxready Classified Listings Manager 1.1
1 EDB exploit
755
VMScore
CVE-2007-0049
Geckovich TaskTracker Pro 1.5 and previous versions allows remote malicious users to add administrative or other accounts via an Add action with a modified GroupID in a direct request to Customize.asp.
Geckovich Tasktracker 1.4
Geckovich Tasktracker Pro
1 EDB exploit
755
VMScore
CVE-2007-0092
SQL injection vulnerability in productdetail.asp in E-SMARTCART 1.0 allows remote malicious users to execute arbitrary SQL commands via the product_id parameter.
E-smart Cart E-smart Cart 1.0
1 EDB exploit
755
VMScore
CVE-2007-0128
SQL injection vulnerability in info_book.asp in Digirez 3.4 and previous versions allows remote malicious users to execute arbitrary SQL commands via the book_id parameter.
Digiappz Digirez
1 EDB exploit
755
VMScore
CVE-2007-0129
SQL injection vulnerability in main.asp in LocazoList 2.01a beta5 and previous versions allows remote malicious users to execute arbitrary SQL commands via the subcatID parameter.
Locazo Locazolist Classifieds
1 EDB exploit
685
VMScore
CVE-2007-0144
Cross-site scripting (XSS) vulnerability in search.asp in Digitizing Quote And Ordering System 1.0 allows remote authenticated malicious users to inject arbitrary web script or HTML via the ordernum parameter.
Digitizing Quote And Ordering System Digitizing Quote And Ordering System 1.0
1 EDB exploit
755
VMScore
CVE-2007-0196
SQL injection vulnerability in admin_check_user.asp in Motionborg Web Real Estate 2.1 and previous versions allows remote malicious users to execute arbitrary SQL commands via the username field (txtUserName parameter) and possibly other parameters. NOTE: some details were obtain...
Motionborg Motionborg Web Real Estate
1 EDB exploit
755
VMScore
CVE-2007-0224
SQL injection vulnerability in shopgiftregsearch.asp in VP-ASP Shopping Cart 6.09 and previous versions allows remote malicious users to execute arbitrary SQL commands via the LoginLastname parameter.
Virtual Programming Vp-asp 6.09
1 EDB exploit
685
VMScore
CVE-2007-0225
Cross-site scripting (XSS) vulnerability in shopcustadmin.asp in VP-ASP Shopping Cart 6.09 and previous versions allows remote malicious users to inject arbitrary web script or HTML via the msg parameter.
Virtual Programming Vp-asp 6.09
1 EDB exploit
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
bypass
open redirect
CVE-2024-4358
CVE-2024-24199
CVE-2024-5550
CVE-2024-5305
CVE-2024-30373
CVE-2024-1800
deserialization
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »