Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
blackhawk vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2007-2988
A certain admin script in Inout Meta Search Engine sends a redirect to the web browser but does not exit when administrative credentials are missing, which allows remote malicious users to inject arbitrary PHP code, as demonstrated by a request to admin/create_engine.php followed...
Inout Scripts Inout Meta Search Engine
1 EDB exploit
7.5
CVSSv2
CVE-2007-3051
SQL injection vulnerability in inc/class_users.php in RevokeSoft RevokeBB 1.0 RC4 and previous versions allows remote malicious users to execute arbitrary SQL commands via the revokebb_user cookie.
Revokesoft Revokebb
1 EDB exploit
7.5
CVSSv2
CVE-2007-3585
PHP remote file inclusion vulnerability in games.php in MyCMS 0.9.8 and previous versions allows remote malicious users to execute arbitrary PHP code via a URL in the id parameter.
Mycms Mycms
1 EDB exploit
7.5
CVSSv2
CVE-2007-3587
MyCMS 0.9.8 and previous versions allows remote malicious users to gain privileges via the admin cookie parameter, as demonstrated by a post to admin/settings.php that injects PHP code into settings.inc, which can then be executed via a direct request to index.php.
Mycms Mycms
1 EDB exploit
5
CVSSv2
CVE-2008-0351
admin/config.php in Evilsentinel 1.0.9 and previous versions allows remote malicious users to bypass the CAPTCHA test by omitting the es_security_captcha parameter and not invoking captcha.php.
Evilsentinel Evilsentinel
1 EDB exploit
6.5
CVSSv2
CVE-2007-5374
cp_memberedit.php in LightBlog 8.4.1.1 does not check for administrative credentials when processing an admin action, which allows remote authenticated users to increase the privileges of any account.
Lightblog Lightblog 8.4.1.1
1 EDB exploit
5
CVSSv2
CVE-2006-0658
Incomplete blacklist vulnerability in connector.php in FCKeditor 2.0 and 2.2, as used in products such as RunCMS, allows remote malicious users to upload and execute arbitrary script files by giving the files specific extensions that are not listed in the Config[DeniedExtensions]...
Fckeditor Fckeditor 2.0
Fckeditor Fckeditor 2.2
2 EDB exploits
5
CVSSv2
CVE-2005-0613
Unknown vulnerability in FCKeditor 2.0 RC2, when used with PHP-Nuke, allows remote malicious users to upload arbitrary files.
Fckeditor Fckeditor 2.0 Rc2
2 EDB exploits
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-23692
CVE-2012-1823
memory leak
CVE-2024-0627
CVE-2024-31402
privilege escalation
CVE-2024-36418
remote code execution
CVE-2024-27844
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3