Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
aliaksandr hartsuyeu vulnerabilities and exploits
(subscribe to this query)
755
VMScore
CVE-2006-0462
SQL injection vulnerability in comentarios.php in AndoNET Blog 2004.09.02 allows remote malicious users to execute arbitrary SQL commands via the entrada parameter.
Andonet Andonet Blog 2004.09.02
1 EDB exploit
755
VMScore
CVE-2006-0345
Multiple SQL injection vulnerabilities in SaralBlog 1.0 allow remote malicious users to execute arbitrary SQL commands via the search parameter to search.php. NOTE: the id/viewprofile.php issue is already covered by CVE-2005-4058.
Saral Kaushik Saralblog 1.0
1 EDB exploit
755
VMScore
CVE-2006-0491
SQL injection vulnerability in SZUserMgnt.class.php in SZUserMgnt 1.4 allows remote malicious users to execute arbitrary SQL commands via the username parameter.
Subzane Szusermgnt 1.4
1 EDB exploit
435
VMScore
CVE-2006-0310
Cross-site scripting (XSS) vulnerability in aoblogger 2.3 allows remote malicious users to inject arbitrary Javascript via a javascript URI in the BBcode url tag.
Mike Helton Aoblogger 2.3
1 EDB exploit
755
VMScore
CVE-2006-0311
SQL injection vulnerability in login.php in aoblogger 2.3 allows remote malicious users to execute arbitrary SQL commands via the username parameter.
Mike Helton Aoblogger 2.3
1 EDB exploit
505
VMScore
CVE-2006-0312
create.php in aoblogger 2.3 allows remote malicious users to bypass authentication and create new blog entries by setting the uza parameter to 1.
Mike Helton Aoblogger 2.3
1 EDB exploit
755
VMScore
CVE-2006-0318
SQL injection vulnerability in index.php in BlogPHP 1.0, when magic_quotes_gpc is disabled, allows remote malicious users to execute arbitrary SQL commands and bypass authentication via the username parameter in a login action.
Insane Visions Blogphp 1.0
1 EDB exploit
755
VMScore
CVE-2006-0320
SQL injection vulnerability in admin/processlogin.php in Bit 5 Blog 8.01 allows remote malicious users to execute arbitrary SQL commands and bypass authentication via the (1) username and (2) password parameter.
Bit 5 Blog Bit 5 Blog
1 EDB exploit
755
VMScore
CVE-2006-0324
SQL injection vulnerability in WebspotBlogging 3.0 allows remote malicious users to execute arbitrary SQL commands and bypass authentication via the username parameter to login.php.
Webspot Webspotblogging 3.0
1 EDB exploit
435
VMScore
CVE-2006-0361
Cross-site scripting (XSS) vulnerability in addcomment.php in Bit 5 Blog 8.01 allows remote malicious users to inject arbitrary web script or HTML via a javascript URI in an <a> tag in the comment parameter, which strips most tags but not <a>.
Bit 5 Blog Bit 5 Blog 8.01
1 EDB exploit
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
bypass
open redirect
CVE-2024-4358
CVE-2024-24199
CVE-2024-5550
CVE-2024-5305
CVE-2024-30373
CVE-2024-1800
deserialization
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »