Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
blackhawk vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2007-2002
InoutMailingListManager 3.1 and previous versions allows remote malicious users to access certain restricted functionality, and upload and execute arbitrary PHP code, by setting an arbitrary admin cookie.
Inoutmailinglistmanager Inoutmailinglistmanager
1 EDB exploit
NA
CVE-2007-2004
Multiple SQL injection vulnerabilities in InoutMailingListManager 3.1 and previous versions allow remote malicious users to execute arbitrary SQL commands via the id parameter to changename.php and other unspecified vectors.
Inoutmailinglistmanager Inoutmailinglistmanager
1 EDB exploit
NA
CVE-2007-2371
admin/index.php in Gregory Kokanosky phpMyNewsletter 0.8 beta5 and previous versions provides access to configuration modification before login, which allows remote malicious users to cause a denial of service (loss of configuration data), and possibly perform direct static code ...
Gregory Kokanosky Phpmynewsletter
1 EDB exploit
NA
CVE-2007-2372
admin/send_mod.php in Gregory Kokanosky phpMyNewsletter 0.8 beta5 and previous versions prints a Location header but does not exit when administrative credentials are missing, which allows remote malicious users to compose an e-mail message via a post with the subject, message, f...
Gregory Kokanosky Phpmynewsletter
1 EDB exploit
NA
CVE-2008-0350
admin/index.php in Evilsentinel 1.0.9 and previous versions sends a redirect to the web browser but does not exit, which allows remote malicious users to gain administrative privileges and make arbitrary configuration changes.
Evilsentinel Evilsentinel
1 EDB exploit
NA
CVE-2008-0351
admin/config.php in Evilsentinel 1.0.9 and previous versions allows remote malicious users to bypass the CAPTCHA test by omitting the es_security_captcha parameter and not invoking captcha.php.
Evilsentinel Evilsentinel
1 EDB exploit
NA
CVE-2006-0658
Incomplete blacklist vulnerability in connector.php in FCKeditor 2.0 and 2.2, as used in products such as RunCMS, allows remote malicious users to upload and execute arbitrary script files by giving the files specific extensions that are not listed in the Config[DeniedExtensions]...
Fckeditor Fckeditor 2.0
Fckeditor Fckeditor 2.2
2 EDB exploits
NA
CVE-2005-0613
Unknown vulnerability in FCKeditor 2.0 RC2, when used with PHP-Nuke, allows remote malicious users to upload arbitrary files.
Fckeditor Fckeditor 2.0 Rc2
2 EDB exploits
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-23316
SQL injection
type confusion
CVE-2024-20697
CVE-2024-4344
local
CVE-2024-30043
CVE-2024-3821
CVE-2024-5041
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3