Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
condemned vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2008-3848
SQL injection vulnerability in single.php in Z-Breaknews 2.0 allows remote malicious users to execute arbitrary SQL commands via the id parameter.
Pdesigner Z-breaknews 2.0
1 EDB exploit
NA
CVE-2008-5794
Directory traversal vulnerability in system/admin/images.php in LoveCMS 1.6.2 Final allows remote malicious users to delete arbitrary files via a .. (dot dot) in the delete parameter.
Lovecms Lovecms 1.6.2
1 EDB exploit
NA
CVE-2008-2129
SQL injection vulnerability in index.php in Galleristic 1.0, when magic_quotes_gpc is disabled, allows remote malicious users to execute arbitrary SQL commands via the cat parameter.
Cine Galleristic 1.0
1 EDB exploit
NA
CVE-2008-2887
Directory traversal vulnerability in index.php in chaozz@work FubarForum 1.5 allows remote malicious users to include and execute arbitrary local files via a .. (dot dot) in the page parameter.
Chaozzatwork Fubarforum 1.5
1 EDB exploit
NA
CVE-2008-2337
Multiple SQL injection vulnerabilities in IMGallery 2.5, when magic_quotes_gpc is disabled, allow remote malicious users to execute arbitrary SQL commands via the (1) kategoria parameter to (a) galeria.php and the (2) id_phot parameter to (b) popup/koment.php and (c) popup/opis.p...
Imgallery Imgallery 2.5
1 EDB exploit
NA
CVE-2009-4426
Multiple directory traversal vulnerabilities in Ignition 1.2, when magic_quotes_gpc is disabled, allow remote malicious users to include and execute arbitrary local files via a .. (dot dot) in the blog parameter to (1) comment.php and (2) view.php.
Launchpad Ignition 1.2
1 EDB exploit
NA
CVE-2008-2896
Directory traversal vulnerability in index.php in FireAnt 1.3 allows remote malicious users to include and execute arbitrary local files via a .. (dot dot) in the page parameter.
Getfireant Fireant 1.3
1 EDB exploit
NA
CVE-2009-1853
Multiple SQL injection vulnerabilities in index.php in Kensei Board 2.0 BETA (aka 2.0.0b) and previous versions allow remote malicious users to execute arbitrary SQL commands via the (1) f and (2) t parameters in a showforum action.
Kenseiboard Kensei Board 1.1.0
Kenseiboard Kensei Board
1 EDB exploit
NA
CVE-2008-7062
Unrestricted file upload vulnerability in admin/index.php in Download Manager module 1.0 for LoveCMS 1.6.2 Final allows remote malicious users to execute arbitrary code by uploading a file with an executable extension, then accessing it via a direct request to the file in uploads...
Lovecms Lovecms 1.6.2
1 EDB exploit
NA
CVE-2008-5949
Multiple PHP remote file inclusion vulnerabilities in ccTiddly 1.7.4 and 1.7.6 allow remote malicious users to execute arbitrary PHP code via a URL in the cct_base parameter to (1) index.php; (2) handle/proxy.php; (3) header.php, (4) include.php, and (5) workspace.php in includes...
Tiddlywiki Cctiddly 1.7.4
Tiddlywiki Cctiddly 1.7.6
2 EDB exploits
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-49223
CVE-2024-0044
information disclosure
CVE-2024-35753
HTML injection
CVE-2024-21306
CVE-2024-35733
SQL injection
CVE-2024-35732
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
NEXT »