Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
alphanix vulnerabilities and exploits
(subscribe to this query)
755
VMScore
CVE-2008-5888
Multiple SQL injection vulnerabilities in Click&Rank allow remote malicious users to execute arbitrary SQL commands via the id parameter to (1) hitcounter.asp, (2) user_delete.asp, and (3) user_update.asp; (4) the userid parameter to admin_login.asp (aka the USERNAME field in...
Icash Click\\&rank Nil
1 EDB exploit
505
VMScore
CVE-2008-5981
PacPoll 4.0 stores sensitive information under the web root with insufficient access control, which allows remote malicious users to download a database via a direct request for (1) poll.mdb or (2) poll97.mdb.
Pacosdrivers Pacpoll 4.0
1 EDB exploit
755
VMScore
CVE-2008-6319
SQL injection vulnerability in calendarevent.cfm in CF_Calendar allows remote malicious users to execute arbitrary SQL commands via the calid parameter.
Cfmsource Cf Calendar -
1 EDB exploit
755
VMScore
CVE-2008-6320
SQL injection vulnerability in index.cfm in CF Shopkart 5.2.2 allows remote malicious users to execute arbitrary SQL commands via the Category parameter in a ViewCategory action.
Cfshopkart Cf Shopkart 5.2.2
1 EDB exploit
505
VMScore
CVE-2008-6321
CF Shopkart 5.2.2 stores cfshopkart52.mdb under the web root with insufficient access control, which allows remote malicious users to obtain sensitive information, such as usernames and passwords, via a direct request.
Cfshopkart Cf Shopkart 5.2.2
1 EDB exploit
755
VMScore
CVE-2008-6322
SQL injection vulnerability in index.cfm in CFMSource CFMBlog allows remote malicious users to execute arbitrary SQL commands via the categorynbr parameter.
Cfmsource Cfmblog -
1 EDB exploit
755
VMScore
CVE-2008-6324
SQL injection vulnerability in forummessages.cfm in CF_Forum allows remote malicious users to execute arbitrary SQL commands via the categorynbr parameter.
Cfmsource Cf Forum -
1 EDB exploit
505
VMScore
CVE-2008-6354
The Net Guys ASPired2poll stores sensitive information under the web root with insufficient access control, which allows remote malicious users to download a database containing the username and password via a direct request to ASPired2poll.mdb.
Thenetguys Aspired2poll -
1 EDB exploit
505
VMScore
CVE-2008-6355
The Net Guys ASPired2Protect stores sensitive information under the web root with insufficient access control, which allows remote malicious users to download a database containing the username and password via a direct request to ASPired2Protect.mdb.
Thenetguys Aspired2protect -
1 EDB exploit
755
VMScore
CVE-2008-5588
SQL injection vulnerability in rankup.asp in Katy Whitton RankEm allows remote malicious users to execute arbitrary SQL commands via the siteID parameter.
Katywhitton Rankem
1 EDB exploit
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-33572
CVE-2024-24919
CVE-2024-0230
CVE-2024-32714
HTML injection
local file inclusion
CVE-2024-31098
CVE-2024-31244
privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
NEXT »