Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
condemned vulnerabilities and exploits
(subscribe to this query)
6.8
CVSSv2
CVE-2008-3190
Directory traversal vulnerability in list.php in 1Scripts CodeDB 1.1.1 allows remote malicious users to include and execute arbitrary local files via a .. (dot dot) in the lang parameter.
1scripts Codedb 1.1.1
1 EDB exploit
5
CVSSv2
CVE-2008-5794
Directory traversal vulnerability in system/admin/images.php in LoveCMS 1.6.2 Final allows remote malicious users to delete arbitrary files via a .. (dot dot) in the delete parameter.
Lovecms Lovecms 1.6.2
1 EDB exploit
5
CVSSv2
CVE-2008-5218
ScriptsEz FREEze Greetings 1.0 stores pwd.txt under the web root with insufficient access control, which allows remote malicious users to obtain cleartext passwords.
Scriptsez Freeze Greetings 1.0
1 EDB exploit
7.5
CVSSv2
CVE-2008-5287
SQL injection vulnerability in catagorie.php in Werner Hilversum FAQ Manager 1.2 allows remote malicious users to execute arbitrary SQL commands via the cat_id parameter.
Scripts4you Faq Manager 1.2
1 EDB exploit
7.5
CVSSv2
CVE-2008-3377
SQL injection vulnerability in picture.php in phpTest 0.6.3 allows remote malicious users to execute arbitrary SQL commands via the image_id parameter.
Brandon Tallent Phptest 0.6.3
1 EDB exploit
7.5
CVSSv2
CVE-2009-1509
SQL injection vulnerability in ajaxp_backend.php in MyioSoft AjaxPortal 3.0 allows remote malicious users to execute arbitrary SQL commands via the page parameter.
Myiosoft Ajaxportal 3.0
1 EDB exploit
6.8
CVSSv2
CVE-2009-4426
Multiple directory traversal vulnerabilities in Ignition 1.2, when magic_quotes_gpc is disabled, allow remote malicious users to include and execute arbitrary local files via a .. (dot dot) in the blog parameter to (1) comment.php and (2) view.php.
Launchpad Ignition 1.2
1 EDB exploit
7.5
CVSSv2
CVE-2008-2337
Multiple SQL injection vulnerabilities in IMGallery 2.5, when magic_quotes_gpc is disabled, allow remote malicious users to execute arbitrary SQL commands via the (1) kategoria parameter to (a) galeria.php and the (2) id_phot parameter to (b) popup/koment.php and (c) popup/opis.p...
Imgallery Imgallery 2.5
1 EDB exploit
6.8
CVSSv2
CVE-2008-5604
Directory traversal vulnerability in index.php in My Simple Forum 3.0 and 4.1, when magic_quotes_gpc is disabled, allows remote malicious users to include and execute arbitrary local files via a .. (dot dot) in the action parameter.
Drennansoft My Simple Forum 3.0
Drennansoft My Simple Forum 4.1
1 EDB exploit
7.5
CVSSv2
CVE-2008-2501
Multiple SQL injection vulnerabilities in PHPhotoalbum 0.5 allow remote malicious users to execute arbitrary SQL commands via the (1) album parameter to thumbnails.php and the (2) pid parameter to displayimage.php.
Henning Stoverud Phphotoalbum 0.5
2 EDB exploits
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-49223
CVE-2024-0044
information disclosure
CVE-2024-35753
HTML injection
CVE-2024-21306
CVE-2024-35733
SQL injection
CVE-2024-35732
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
NEXT »