Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
injection vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2008-5781
SQL injection vulnerability in right.php in Cant Find A Gaming CMS (CFAGCMS) 1.0 Beta 1 allows remote malicious users to execute arbitrary SQL commands via the title parameter.
Cfagcms Cfagcms 1.0
2 EDB exploits
NA
CVE-2010-1740
SQL injection vulnerability in newsletter.php in GuppY 4.5.18 allows remote malicious users to execute arbitrary SQL commands via the lng parameter.
Freeguppy Guppy 4.5.18
1 EDB exploit
NA
CVE-2010-4278
operation/agentes/networkmap.php in Pandora FMS prior to 3.1.1 allows remote authenticated users to execute arbitrary commands via shell metacharacters in the layout parameter in an operation/agentes/networkmap action to index.php.
Artica Pandora Fms 1.3
Artica Pandora Fms 1.2
Artica Pandora Fms 2.1.1
Artica Pandora Fms
Artica Pandora Fms 3.0
Artica Pandora Fms 2.0
Artica Pandora Fms 1.3.1
Artica Pandora Fms 2.1
Artica Pandora Fms 3.1
1 EDB exploit
NA
CVE-2008-4178
SQL injection vulnerability in tr.php in DownlineGoldmine Special Category Addon, Downline Builder Pro, New Addon, and Downline Goldmine Builder allows remote malicious users to execute arbitrary SQL commands via the id parameter. NOTE: some of these details are obtained from thi...
Downline Goldmine Builder Unknown
Downline Goldmine Builder Special Category Addon
Downline Goldmine Builder
Downline Goldmine New Addon Pro
Downline Goldmine New Addon
4 EDB exploits
7.8
CVSSv3
CVE-2018-10063
The Convert Forms extension prior to 2.0.4 for Joomla! is vulnerable to Remote Command Execution using CSV Injection that is mishandled when exporting a Leads file.
Convert Forms Project Convert Forms
1 EDB exploit
NA
CVE-2009-1049
SQL injection vulnerability in articleCall.php in Bloginator 1A allows remote malicious users to execute arbitrary SQL commands via the id parameter.
Kamads Bloginator 1a
2 EDB exploits
NA
CVE-2009-3703
Multiple SQL injection vulnerabilities in the WP-Forum plugin prior to 2.4 for WordPress allow remote malicious users to execute arbitrary SQL commands via (1) the search_max parameter in a search action to the default URI, related to wpf.class.php; (2) the forum parameter to an ...
Fahlstad Wp-forum
Fahlstad Wp-forum 1.5
Fahlstad Wp-forum 1.6
Fahlstad Wp-forum 1.7
Fahlstad Wp-forum 1.7.3
Fahlstad Wp-forum 1.7.4
Fahlstad Wp-forum 1.7.8
Fahlstad Wp-forum 1.8
Fahlstad Wp-forum 2.0
Fahlstad Wp-forum 2.1
1 EDB exploit
9.8
CVSSv3
CVE-2017-7997
Multiple SQL injection vulnerabilities in Gespage prior to 7.4.9 allow remote malicious users to execute arbitrary SQL commands via the (1) show_prn parameter to webapp/users/prnow.jsp or show_month parameter to (2) webapp/users/blhistory.jsp or (3) webapp/users/prhistory.jsp.
Gespage Gespage
1 EDB exploit
9.8
CVSSv3
CVE-2017-17970
Multiple SQL injection vulnerabilities in Muviko 1.1 allow remote malicious users to execute arbitrary SQL commands via the (1) email parameter to login.php; the (2) season_id parameter to themes/flixer/ajax/load_season.php; the (3) movie_id parameter to themes/flixer/ajax/get_ra...
Muvikoscript Muviko 1.1
1 EDB exploit
NA
CVE-2010-4006
Multiple SQL injection vulnerabilities in search.php in WSN Links 5.0.x prior to 5.0.81, 5.1.x prior to 5.1.51, and 6.0.x prior to 6.0.1 allow remote malicious users to execute arbitrary SQL commands via the (1) namecondition or (2) namesearch parameter.
Wsnlinks Wsn Links 5.0.72
Wsnlinks Wsn Links 5.0.58
Wsnlinks Wsn Links 5.0.25
Wsnlinks Wsn Links 5.0.34
Wsnlinks Wsn Links 5.0.70
Wsn Wsn Links 5.1.38
Wsn Wsn Links 5.1.4
Wsn Links 5.1.25
Wsnlinks Wsn Links 5.0.51
Wsnlinks Wsn Links 5.0.49
Wsn Wsn Links 5.1.48
Wsn Wsn Links 5.1.45
Wsnlinks Wsn Links 5.0.13
Wsn Wsn Links 5.1.14
Wsnlinks Wsn Links 5.0.11
Wsn Wsn Links 5.1.37
Wsnlinks Wsn Links 5.0.77
Wsn Links 5.1.34
Wsnlinks Wsn Links 5.0.44
Wsnlinks Wsn Links 5.0.31
Wsn Wsn Links 5.1.35
Wsnlinks Wsn Links 5.0.21
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
buffer overflow
type confusion
server-side request forgery
CVE-2024-38440
CVE-2024-27801
CVE-2024-5868
CVE-2024-0582
CVE-2024-37643
CVE-2024-3105
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »