Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
g4n0k vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2008-6230
SQL injection vulnerability in Tour.php in Pre Projects Pre Podcast Portal allows remote malicious users to execute arbitrary SQL commands via the id parameter.
Preprojects Pre Podcast Portal -
1 EDB exploit
7.5
CVSSv2
CVE-2008-6268
SQL injection vulnerability in detail.php in WEBBDOMAIN Multi Languages WebShop Online 1.02 allows remote malicious users to execute arbitrary SQL commands via the id parameter.
Sadi Samami Multi Languages Webshop Online 1.02
1 EDB exploit
7.5
CVSSv2
CVE-2008-6289
SQL injection vulnerability in cityview.php in Tours Manager 1.0 allows remote malicious users to execute arbitrary SQL commands via the cityid parameter.
Toursmanager Tours Manager 1.0
1 EDB exploit
7.5
CVSSv2
CVE-2008-6302
TurnkeyForms Local Classifieds allows remote malicious users to bypass authentication and gain administrative access via a direct request to Site_Admin/admin.php.
Turnkeyforms Local Classifieds
1 EDB exploit
7.5
CVSSv2
CVE-2008-6941
SQL injection vulnerability in the login functionality in TurnkeyForms Web Hosting Directory allows remote malicious users to execute arbitrary SQL commands via the password field.
Turnkeyforms Web Hosting Directory -
1 EDB exploit
7.5
CVSSv2
CVE-2008-6965
AJ Square AJ Auction OOPD, Pro Platinum Skin #1, Pro Platinum Skin #2, and Web 2.0 send a redirect but do not exit when certain scripts are called directly, which allows remote malicious users to bypass authentication via a direct request to (1) site.php, (2) auction.php, (3) mai...
Aj Square Aj Auction Web 2.0
Aj Square Aj Auction 2.0
Aj Square Aj Auction 1.0
Aj Square Aj Auction
1 EDB exploit
7.5
CVSSv2
CVE-2008-7041
AJ Classifieds allows remote malicious users to bypass authentication and gain administrator privileges via a direct request to admin/home.php.
Ajsquare Aj Classifieds -
1 EDB exploit
7.5
CVSSv2
CVE-2008-7044
SQL injection vulnerability in admin/include/newpoll.php in AJ Square Free Polling Script (AJPoll) Database version allows remote malicious users to execute arbitrary SQL commands via the ques parameter.
Ajsquare Free Polling Script
1 EDB exploit
6.4
CVSSv2
CVE-2008-7046
AJ Square Free Polling Script (AJPoll) allows remote malicious users to bypass authentication and create new polls via a direct request to admin/include/newpoll.php, a different vector than CVE-2008-7045. NOTE: the provenance of this information is unknown; the details are obtain...
Ajsquare Free Polling Script
1 EDB exploit
7.5
CVSSv2
CVE-2008-7051
AJ Square AJ Article allows remote malicious users to bypass authentication and access administrator functionality via a direct request to (1) user.php, (2) articles.php, (3) articlesuspend.php, (4) site.php, (5) statistics.php, (6) mail.php, (7) category.php, (8) subcategory.php...
Ajsquare Aj Article
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
validation
CVE-2012-1823
malicious code
CVE-2024-5770
CVE-2023-45866
CVE-2024-35687
local users
CVE-2024-31246
CVE-2024-35730
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
NEXT »