Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
don vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2008-0832
SQL injection vulnerability in index.php in the Kemas Antonius com_quran 1.1 and previous versions component for Mambo and Joomla! allows remote malicious users to execute arbitrary SQL commands via the surano parameter in a viewayat action.
Joomla Kemas Antonius Com Quran
Mambo Kemas Antonius Com Quran
1 EDB exploit
7.5
CVSSv2
CVE-2008-1297
SQL injection vulnerability in index.php in the eWriting (com_ewriting) 1.2.1 module for Mambo and Joomla! allows remote malicious users to execute arbitrary SQL commands via the cat parameter in a selectcat action.
Joomla Com Ewriting 1.2.1
Mambo Com Ewriting 1.2.1
Ewriting Ewriting 1.2.1
1 EDB exploit
4.3
CVSSv2
CVE-2008-3708
Multiple directory traversal vulnerabilities in dotCMS 1.6.0.9 allow remote malicious users to read arbitrary files via a .. (dot dot) in the id parameter to (1) news/index.dot and (2) getting_started/macros/macros_detail.dot.
Dotcms Dotcms 1.6.0.9
1 EDB exploit
7.5
CVSSv2
CVE-2007-4653
SQL injection vulnerability in links.php in the Links MOD 1.2.2 and previous versions for phpBB 2.0.22 and previous versions allows remote malicious users to execute arbitrary SQL commands via the start parameter in a search action.
Phpbb Phpbb
1 EDB exploit
7.5
CVSSv2
CVE-2008-7042
PHP remote file inclusion vulnerability in url.php in FreshScripts Fresh Email Script 1.0 up to and including 1.11 allows remote malicious users to execute arbitrary PHP code via a URL in the tmp_sid parameter.
Freshscripts Fresh Email Script 1.0
Freshscripts Fresh Email Script 1.11
1 EDB exploit
4.3
CVSSv2
CVE-2008-7043
Cross-site scripting (XSS) vulnerability in register.php in FreshScripts Fresh Email Script 1.0 up to and including 1.11 allows remote malicious users to inject arbitrary web script or HTML via the Email parameter. NOTE: this can be leveraged to modify cookies and conduct session...
Freshscripts Fresh Email Script 1.0
Freshscripts Fresh Email Script 1.11
1 EDB exploit
7.5
CVSSv2
CVE-2010-0761
SQL injection vulnerability in index.php in CommodityRentals Books/eBooks Rentals Script allows remote malicious users to execute arbitrary SQL commands via the cat_id parameter in a gamecatalog action.
Commodityrentals Books\\/ebooks Rentals Script
1 EDB exploit
7.5
CVSSv2
CVE-2010-0762
SQL injection vulnerability in index.php in CommodityRentals CD Rental Software allows remote malicious users to execute arbitrary SQL commands via the cat_id parameter in a catalog action.
Commodityrentals Cd Rental Software
1 EDB exploit
7.5
CVSSv2
CVE-2009-4604
PHP remote file inclusion vulnerability in mamboleto.php in the Fernando Soares Mamboleto (com_mamboleto) component 2.0 RC3 for Joomla! allows remote malicious users to execute arbitrary PHP code via a URL in the mosConfig_absolute_path parameter.
Fernando Soares Com Mamboleto 2.0
1 EDB exploit
7.5
CVSSv2
CVE-2009-3835
SQL injection vulnerability in the JShop (com_jshop) component for Joomla! allows remote malicious users to execute arbitrary SQL commands via the pid parameter in a product action to index.php.
Whorl Ltd Jshop
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
inject
CVE-2024-34001
CVE-2024-37018
LFI
CVE-2024-1275
CVE-2024-1086
CSRF
CVE-2024-31030
CVE-2024-24919
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
NEXT »