Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
k1tk4t vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2007-4156
Multiple SQL injection vulnerabilities in wolioCMS allow remote malicious users to execute arbitrary SQL commands via (1) the id parameter to member.php in a page action, related to a SELECT statement in common.php; and the (2) loginid parameter (uid variable), and possibly the (...
Woliocms Woliocms
1 EDB exploit
7.5
CVSSv2
CVE-2007-4171
SQL injection vulnerability in komentar.php in the Forum Module for auraCMS (Modul Forum Sederhana) allows remote malicious users to execute arbitrary SQL commands via the id parameter to the default URI. NOTE: some of these details are obtained from third party information.
Auracms Modul Forum Sederhana
1 EDB exploit
7.5
CVSSv2
CVE-2006-7130
PHP remote file inclusion vulnerability in backend/primitives/cache/media.php in Jinzora 2.1 and previous versions allows remote malicious users to execute arbitrary PHP code via a URL in the include_path parameter, a different vector than CVE-2006-6770.
Jinzora Jinzora 0.3
Jinzora Jinzora 0.5
Jinzora Jinzora 0.1.1
Jinzora Jinzora 0.9.2
Jinzora Jinzora 0.9.1
Jinzora Jinzora 0.2
Jinzora Jinzora 0.9.5
Jinzora Jinzora 1.0.1
Jinzora Jinzora 0.9.4
Jinzora Jinzora 0.9.3
Jinzora Jinzora
Jinzora Jinzora 1.1
Jinzora Jinzora 0.4
Jinzora Jinzora 0.8.1
Jinzora Jinzora 0.7
Jinzora Jinzora 2.0
Jinzora Jinzora 2.0.1
Jinzora Jinzora 0.3.1
Jinzora Jinzora 0.6.2
Jinzora Jinzora 0.9
Jinzora Jinzora 0.8.2
1 EDB exploit
7.5
CVSSv2
CVE-2007-4714
SQL injection vulnerability in error_view.php in Yvora 1.0 allows remote malicious users to execute arbitrary SQL commands via the ID parameter.
Yvora Yvora 1.0
1 EDB exploit
7.5
CVSSv2
CVE-2007-4804
Multiple SQL injection vulnerabilities in AuraCMS 1.5rc allow remote malicious users to execute arbitrary SQL commands via the id parameter in (1) hal.php, (2) cetak.php, (3) lihat.php, (4) pesan.php, and (5) teman.php, different vectors than CVE-2007-4171. NOTE: the scripts may ...
Auracms Auracms 1.5 Rc
1 EDB exploit
7.5
CVSSv2
CVE-2007-4808
Multiple SQL injection vulnerabilities in TLM CMS 3.2 allow remote malicious users to execute arbitrary SQL commands via (1) the id parameter to news.php in a lirenews action, (2) the idnews parameter to goodies.php in a lire action, (3) the id parameter to file.php in a voir act...
Tlm Cms Tlm Cms 3.2
Tlm Cms Tlm Cms 1.1
1 EDB exploit
6.4
CVSSv2
CVE-2007-5261
Multiple SQL injection vulnerabilities in MultiCart 1.0 allow remote malicious users to execute arbitrary SQL commands via the (1) catid parameter to categorydetail.php and the (2) ddlCategory parameter to search.php.
Iscripts Multicart 1.0
1 EDB exploit
7.5
CVSSv2
CVE-2007-4736
SQL injection vulnerability in category.php in CartKeeper CKGold Shopping Cart 2.0 allows remote malicious users to execute arbitrary SQL commands via the category_id parameter.
Cartkeeper Ckgold Shopping Cart 2.0
1 EDB exploit
7.5
CVSSv2
CVE-2007-4845
Multiple SQL injection vulnerabilities in UPLOAD/index.php in RW::Download 2.0.3 lite allow remote malicious users to execute arbitrary SQL commands via the (1) dlid or (2) cid parameter.
Rwscripts.com Rw Download Lite 2.0.3
1 EDB exploit
7.5
CVSSv2
CVE-2007-4846
SQL injection vulnerability in start.php in Webace-Linkscript (wls) 1.3 Special Edition (SE) allows remote malicious users to execute arbitrary SQL commands via the id parameter in a rubrik go action.
Webace Webace-linkscript 1.3
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-5248
CVE-2024-3110
CVE-2024-5552
CVE-2024-29415
HTML injection
CVE-2024-3095
TCP
type confusion
CVE-2024-1800
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
NEXT »